Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/f35JC1wb3RaNbem0DqrPGBd4S08.roa
File: f35JC1wb3RaNbem0DqrPGBd4S08.roa (raw, json)
Hash identifier: 9FIg24qPsXCr+E+c42/o4b8uwpkn/EPhACBr9yF1wKc=
Subject key identifier: 7F:7E:49:0B:5C:1B:DD:16:8D:6D:E9:B4:0E:AA:CF:18:17:78:4B:4F
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 01887D12046DB2FE1E5B0300F69A28A564FA
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/f35JC1wb3RaNbem0DqrPGBd4S08.roa
Signing time: Fri 02 Jun 2023 17:05:12 +0000
ROA not before: Fri 02 Jun 2023 17:05:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3360
IP address blocks: 2a03:5000:22::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:42::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 02 Jun 2023 17:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7d:12:04:6d:b2:fe:1e:5b:03:00:f6:9a:28:a5:64:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Jun 2 17:05:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f7e490b5c1bdd168d6de9b40eaacf1817784b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:dd:34:2d:cf:3f:52:3b:fc:93:df:d6:c3:7a:
70:88:f7:d5:08:79:f1:18:75:ce:72:60:3d:a9:75:
ef:05:b9:87:8c:6e:0d:4b:4d:63:00:36:36:c4:3b:
b7:e1:f6:a3:1f:6d:f0:ca:9d:b7:b7:36:c6:08:fd:
c5:c8:40:c8:5a:ae:b1:6f:62:78:c3:7c:69:3a:49:
96:d6:28:d5:92:1e:06:4e:17:1f:cb:1a:60:cf:c0:
36:f4:c4:45:eb:d0:97:55:31:df:c8:1b:92:5e:00:
ec:f1:fa:ab:46:02:00:80:58:12:37:45:14:ec:ff:
e7:53:12:22:5a:ab:2a:a7:d1:6b:8b:1f:8b:aa:89:
f4:27:b2:43:0e:79:d0:98:c1:a0:3d:0a:e2:ba:7e:
3f:88:95:3e:af:f3:c2:57:d0:75:24:e4:83:67:f5:
90:ab:47:22:70:02:85:12:3f:1f:ae:c6:b6:cf:5b:
ce:c0:86:ad:63:65:39:72:00:2b:8a:39:63:d8:82:
9d:a0:3f:6f:9c:f5:30:80:fa:87:3f:ad:16:7e:ed:
3b:29:eb:91:17:98:b4:3a:24:97:46:b6:b2:c8:21:
32:74:d5:67:1f:91:a9:2b:ce:0f:5c:93:80:f3:3f:
6a:a2:ca:1f:2f:5a:0d:a0:34:d9:43:c8:71:55:38:
08:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:7E:49:0B:5C:1B:DD:16:8D:6D:E9:B4:0E:AA:CF:18:17:78:4B:4F
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/f35JC1wb3RaNbem0DqrPGBd4S08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5000:21::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:31::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::/48
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
26:f0:77:b5:35:b2:5d:80:05:58:80:1d:8f:06:70:f5:37:4f:
04:d1:cf:ae:d4:ee:60:3d:22:93:f7:20:27:86:cf:a9:74:28:
56:b0:f8:a6:78:2b:10:04:98:86:5e:79:83:8f:fc:7e:1e:07:
a3:f0:64:ff:fa:66:30:98:58:e6:36:fd:c3:1f:01:11:e3:7b:
cc:e0:cf:3c:de:fe:bc:c2:21:87:a0:1b:70:cc:07:86:8d:4a:
c7:2a:db:f2:58:dd:fe:42:5e:95:69:91:18:e9:81:e4:93:67:
57:57:cb:2f:00:a4:da:ce:0b:90:0c:78:9c:e0:9f:5c:b3:23:
ac:c7:51:89:e1:f0:0a:d3:be:38:91:1a:71:9c:02:82:66:80:
97:4e:48:c6:6e:96:52:e1:98:a1:f9:38:44:b4:47:2a:66:f9:
33:12:1d:af:5e:2b:e3:15:b6:63:39:49:f9:04:e3:53:91:43:
d7:38:9a:aa:02:6a:8e:9a:b0:3e:f1:2a:22:25:ba:74:a4:38:
78:f7:79:03:8e:02:b9:09:72:59:39:ca:b2:da:e8:e8:16:72:
8e:a5:e8:a6:72:c7:6f:5f:56:5a:49:5c:f7:ca:cc:00:b2:f6:
ca:38:95:3a:70:0e:ff:14:ac:4b:cc:b7:86:4b:03:dc:55:9b:
5e:25:6c:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:11 2024 by rpki-client on console-fra.rpki-client.org