Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/sSfQg8IFuoyMZ-8uZ7DANwePAtw.roa
File: sSfQg8IFuoyMZ-8uZ7DANwePAtw.roa (raw, json)
Hash identifier: 91sqbjRwIaur5zkYFiTx+KBqCtWancmTCYaThwLxsTU=
Subject key identifier: B1:27:D0:83:C2:05:BA:8C:8C:67:EF:2E:67:B0:C0:37:07:8F:02:DC
Certificate issuer: /CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Certificate serial: 018C3ABB7CA775D5EF13D8951F9C94C0A13D
Authority key identifier: C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/sSfQg8IFuoyMZ-8uZ7DANwePAtw.roa
Signing time: Tue 05 Dec 2023 16:06:54 +0000
ROA not before: Tue 05 Dec 2023 16:06:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56534
IP address blocks: 2a11:3187::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3a:bb:7c:a7:75:d5:ef:13:d8:95:1f:9c:94:c0:a1:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Validity
Not Before: Dec 5 16:06:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b127d083c205ba8c8c67ef2e67b0c037078f02dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:95:14:3e:60:82:2f:5a:57:68:de:e7:be:f0:
08:fd:fa:93:4d:c3:1a:e2:b6:02:fe:51:d1:b6:c0:
a1:65:ae:55:50:19:e4:c3:76:ae:93:25:c7:53:fa:
84:f5:56:d5:17:c4:45:3b:7c:a7:fc:c2:96:22:21:
f4:ea:7f:e9:e8:88:80:b7:05:a8:12:bb:b5:53:aa:
38:5a:73:e3:18:98:ca:5b:99:dc:b8:18:ca:fa:d5:
d4:f8:a8:75:bc:d4:6a:3c:f5:96:b8:e1:f6:c5:97:
87:b9:e7:4f:a4:9d:d0:b2:5c:86:16:02:74:84:cb:
8d:75:8a:bf:a2:dc:dd:5a:51:07:11:f5:df:7c:33:
a7:b9:39:60:98:dc:2b:67:32:2f:0c:61:00:47:65:
62:41:3c:40:1d:88:d0:8a:45:1c:22:ee:db:07:95:
ac:19:8a:ad:30:cb:cf:b3:fd:65:3d:44:f7:d5:ad:
ff:53:f6:3a:e5:a4:96:39:7b:4b:c6:0f:5b:40:88:
e7:de:53:b8:3a:17:24:fe:75:7f:f8:e9:2f:38:9e:
9b:65:6c:fc:a3:c2:8f:dc:63:fb:2a:38:24:78:4e:
d9:a7:29:68:e6:7a:66:76:b1:58:2f:f1:3b:a1:4c:
46:49:16:c8:c3:c1:cf:80:d3:ff:e0:6c:ba:c3:a5:
f7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:27:D0:83:C2:05:BA:8C:8C:67:EF:2E:67:B0:C0:37:07:8F:02:DC
X509v3 Authority Key Identifier:
keyid:C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/sSfQg8IFuoyMZ-8uZ7DANwePAtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/w4KAxTALdIiKx-tL-mQX2aLnsL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3187::/32
Signature Algorithm: sha256WithRSAEncryption
9f:67:bf:36:d8:43:2e:36:82:3d:fa:1f:1f:23:1d:85:06:af:
30:05:44:cc:03:eb:db:fc:a5:b4:02:ed:e1:7d:47:54:64:bf:
4a:a0:62:e0:e9:46:a3:65:3d:86:58:46:76:10:91:c7:0e:e8:
01:50:b2:81:dd:74:4a:32:6d:c8:62:24:46:d3:85:7d:e6:55:
a9:32:bb:0d:62:a3:d8:7c:76:a7:b6:6d:39:49:3a:e8:4b:f8:
02:0e:da:c3:21:22:16:bd:10:48:0f:b2:84:3e:32:9f:8f:70:
ab:4b:aa:c5:45:6b:89:b5:91:99:c0:cd:ac:0b:6b:e6:a3:e4:
78:d9:10:8f:6c:94:64:9b:78:57:1a:86:a6:8c:43:38:fd:4e:
95:88:d8:f5:4f:84:fd:7a:0e:67:2b:9d:dd:a0:85:05:fe:ff:
32:5c:d0:cb:73:c2:d4:a7:7e:41:78:8e:75:d5:2f:b0:77:f8:
fa:88:71:a0:85:62:f4:b7:b9:19:8d:dc:cc:57:92:b5:6b:86:
f1:ad:a3:70:ab:f3:3f:15:66:d4:1f:7f:5b:3d:bc:84:b3:f1:
25:08:0b:b7:66:d9:eb:ee:c9:63:db:a1:42:1e:cc:b5:3b:48:
aa:22:3d:3b:ea:bc:66:57:5c:08:d4:bf:e0:b1:20:c8:d1:5d:
70:e5:d4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:27 2024 by rpki-client on console-ams.rpki-client.org