Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/PJET1wQDT5cxN1y0XpQ-5vw4KB0.roa
File: PJET1wQDT5cxN1y0XpQ-5vw4KB0.roa (raw, json)
Hash identifier: pQ2QStOqjjgIiHmpum9kzaIcK/FQOaPoRtBOj3/3jzI=
Subject key identifier: 3C:91:13:D7:04:03:4F:97:31:37:5C:B4:5E:94:3E:E6:FC:38:28:1D
Certificate issuer: /CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Certificate serial: 0185821834390A7DC4D316E935CEF26D573C
Authority key identifier: ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/PJET1wQDT5cxN1y0XpQ-5vw4KB0.roa
Signing time: Thu 05 Jan 2023 13:21:42 +0000
ROA not before: Thu 05 Jan 2023 13:21:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138987
IP address blocks: 2a0d:1a40:faf::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:18:34:39:0a:7d:c4:d3:16:e9:35:ce:f2:6d:57:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Validity
Not Before: Jan 5 13:21:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c9113d704034f9731375cb45e943ee6fc38281d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d3:07:1b:90:9a:ca:10:6e:ff:bd:5f:75:f7:
a5:30:45:8a:3d:27:c7:73:d2:20:9d:c1:58:a7:c8:
66:f1:8f:bf:d3:a8:b5:9e:6a:59:70:6f:1b:71:d6:
b8:1a:1d:0f:67:b4:27:1d:da:68:81:d7:cc:61:84:
ad:2e:2a:03:31:f4:db:6d:93:b5:53:72:e6:aa:b2:
25:6a:8f:84:28:02:e1:37:a4:d8:3e:28:1d:93:ed:
c3:28:5d:9b:75:31:57:bf:b4:18:fc:1b:f9:da:1b:
d0:1d:b5:f7:5e:33:24:3d:1d:c3:a5:43:31:05:5f:
1c:e7:be:aa:cf:09:7f:21:4b:04:43:59:b5:20:12:
e1:f1:7f:0b:b4:e5:5b:58:a1:94:e3:13:41:ee:2b:
44:64:92:5d:f0:6e:11:a6:ce:d1:4a:85:1e:ae:17:
be:07:af:72:aa:79:f7:3f:d0:1a:ab:ea:39:a9:8b:
53:26:fa:88:34:29:af:a0:7f:93:f3:75:2b:fd:02:
a3:5c:16:fb:b3:c4:13:59:10:75:95:ed:8e:a8:ef:
dd:f3:b9:2f:13:63:82:f0:e5:c7:07:d9:57:07:fb:
59:12:b4:e0:45:6b:8c:d1:75:41:5e:9f:93:33:1d:
aa:0f:9e:1f:59:55:95:58:aa:e9:3d:a9:99:31:04:
22:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:91:13:D7:04:03:4F:97:31:37:5C:B4:5E:94:3E:E6:FC:38:28:1D
X509v3 Authority Key Identifier:
keyid:ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/PJET1wQDT5cxN1y0XpQ-5vw4KB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/7XfmuSWzt6eruSiF1V1zPcX6YtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:1a40:faf::/48
Signature Algorithm: sha256WithRSAEncryption
5d:2b:8c:02:a7:16:41:50:29:e5:37:1d:4c:46:61:46:f6:cb:
7b:f0:2f:7d:e5:19:a2:17:a2:58:fc:a8:92:7b:fa:6c:5c:0d:
0a:fb:96:dc:e0:64:f2:c2:83:b7:cb:fb:5f:4f:3a:ff:ea:40:
ce:be:3f:20:3e:4b:90:6b:70:b7:a6:5a:94:5a:72:ad:e7:4d:
bd:5a:56:fa:53:26:29:12:db:3f:46:30:e0:3c:d7:c9:64:37:
fb:21:07:45:40:30:55:29:58:e5:e8:01:e1:88:55:5f:bd:61:
21:c1:2d:0a:e9:dd:84:45:c3:90:bc:92:9b:0a:53:c2:8e:44:
76:14:da:c1:e7:f2:3e:30:fe:b7:05:2b:be:30:5f:e7:87:55:
ad:a3:13:eb:62:0a:04:62:53:f4:03:77:ac:3b:7d:9d:02:1b:
e8:bd:c7:61:d1:6c:3f:e4:3c:35:5f:11:08:7b:f2:83:b8:c9:
7b:ec:29:c7:dc:83:43:23:65:67:35:8a:e6:93:3a:82:83:85:
8a:1e:b6:13:6f:96:0a:a4:66:9b:ef:dc:bc:7a:77:53:7b:b7:
30:32:e3:68:2f:45:b3:5f:eb:02:c8:74:1e:70:1f:c7:1d:4f:
71:3e:87:77:c3:c8:f2:f6:41:0e:a8:8c:d5:24:32:68:a9:5c:
72:8c:9a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:02 2024 by rpki-client on console-fra.rpki-client.org