Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/3oVqxebW0OtDiDmAHkSjlnopXxk.roa
File: 3oVqxebW0OtDiDmAHkSjlnopXxk.roa (raw, json)
Hash identifier: M0TOCQ71YHZ9PqqmApU2ANRAy/iyp4lbZY/sLStJxY8=
Subject key identifier: DE:85:6A:C5:E6:D6:D0:EB:43:88:39:80:1E:44:A3:96:7A:29:5F:19
Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0
Certificate serial: 01907074C267D161196BF0FDD40F4F5F28CF
Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/3oVqxebW0OtDiDmAHkSjlnopXxk.roa
Signing time: Mon 01 Jul 2024 22:40:18 +0000
ROA not before: Mon 01 Jul 2024 22:40:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214601
IP address blocks: 2a14:67c0:400::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 03 Jul 2024 05:09:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:70:74:c2:67:d1:61:19:6b:f0:fd:d4:0f:4f:5f:28:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0
Validity
Not Before: Jul 1 22:40:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de856ac5e6d6d0eb438839801e44a3967a295f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4c:38:24:3c:97:47:c0:61:5e:ca:ed:65:b2:
9a:a0:61:85:49:7f:7a:78:83:bc:3b:d1:8d:4d:a5:
61:9f:0e:39:84:1a:5c:5b:44:79:e1:5c:e5:a2:b8:
a4:55:03:1a:f2:65:43:bf:07:b5:ab:80:4c:a1:a9:
49:ed:dc:ad:5b:77:2a:a7:6e:21:42:64:57:b3:e7:
e5:4c:0b:b1:c7:27:08:e1:93:f5:47:26:dc:37:6f:
34:00:ec:ff:3e:45:dc:c5:c9:2b:97:77:31:df:5d:
94:99:12:70:13:77:86:a0:74:ca:75:e8:1f:70:0c:
6c:f2:82:13:2b:f7:11:55:f8:3a:5e:57:a6:f2:b8:
7b:ab:e2:29:04:93:44:f4:88:90:f9:a9:6f:06:d8:
86:14:be:6d:24:87:a9:7e:b2:0b:81:5e:1f:dc:39:
a5:b8:3a:c5:b8:7f:69:ae:27:a7:2d:12:fa:30:46:
0f:58:6b:0b:9a:d7:78:78:ac:84:81:b9:7b:5c:54:
75:4f:cd:3a:95:0a:69:09:ca:9d:be:1d:82:52:fa:
9b:40:68:26:3e:80:1d:1f:ec:82:cd:73:51:b9:3b:
e4:41:11:52:e7:bf:f9:7f:9d:54:70:99:47:84:7f:
6c:4b:8d:b2:d7:10:fd:12:f9:36:c0:41:09:f0:9c:
17:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:85:6A:C5:E6:D6:D0:EB:43:88:39:80:1E:44:A3:96:7A:29:5F:19
X509v3 Authority Key Identifier:
keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/3oVqxebW0OtDiDmAHkSjlnopXxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:67c0:400::/44
Signature Algorithm: sha256WithRSAEncryption
7a:4b:fa:12:c1:85:58:66:10:29:87:30:ca:4d:87:91:db:4b:
67:ce:28:1e:66:9e:ce:c5:02:2a:66:2b:cf:00:31:9e:f8:1f:
4d:f4:9c:74:a1:36:01:39:d5:79:04:e0:18:d9:41:44:47:4c:
25:47:ad:e5:b6:91:bb:9e:c3:c4:ab:c6:d2:09:c7:42:94:c2:
62:90:0f:5e:87:8d:1f:77:a0:61:a7:ba:70:f9:a0:e7:6c:df:
00:af:b5:76:14:1f:8a:c7:89:d2:49:38:79:4c:b7:09:2c:93:
90:43:1c:a7:d4:06:32:e7:27:e2:cf:0b:2f:60:ea:b6:1e:00:
ab:dc:11:8a:a7:42:75:ac:22:70:6d:b1:6c:0d:ab:b7:77:8f:
e0:72:73:31:63:b0:ef:0c:37:2b:c9:08:c0:2d:dc:ab:23:9f:
89:87:19:1c:eb:3f:1b:68:74:36:d3:7e:2c:32:60:3c:e4:4e:
a3:3c:97:79:97:81:79:38:c6:5f:9b:dd:b6:a5:61:30:7d:ce:
b9:db:8a:d9:a5:55:5e:e2:91:38:fb:2d:e2:33:26:9a:c4:38:
b5:74:96:91:b3:c9:b8:4b:e5:c5:2c:bd:f7:78:31:7e:55:e7:
39:89:ea:bf:36:c6:8f:fb:6f:eb:1b:db:28:d3:96:5f:b7:60:
11:7c:58:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 06:38:49 2024 by rpki-client on console-ams.rpki-client.org