Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/3BV1vS6RjsR_fRbNXOL3Inac8ts.roa
File: 3BV1vS6RjsR_fRbNXOL3Inac8ts.roa (raw, json)
Hash identifier: cclPBtatCMsakrFgJ7e2KdxUwfLwdLpnrvy7spgM1ZM=
Subject key identifier: DC:15:75:BD:2E:91:8E:C4:7F:7D:16:CD:5C:E2:F7:22:76:9C:F2:DB
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0190EEF57FF69DB9198D77742AB618562223
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/3BV1vS6RjsR_fRbNXOL3Inac8ts.roa
Signing time: Fri 26 Jul 2024 12:13:04 +0000
ROA not before: Fri 26 Jul 2024 12:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51082
IP address blocks: 2a06:b3c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 22 Aug 2024 06:11:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ee:f5:7f:f6:9d:b9:19:8d:77:74:2a:b6:18:56:22:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jul 26 12:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc1575bd2e918ec47f7d16cd5ce2f722769cf2db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f2:04:cb:28:f9:b3:13:46:5a:73:85:06:12:
13:05:3f:bf:2a:4e:92:46:bc:96:9a:4c:9d:f9:f8:
7a:82:50:c8:3c:e3:d4:6e:41:67:0f:fa:cc:e6:e3:
3e:38:fc:c7:33:f1:f3:d6:d8:ec:d8:2c:35:72:5a:
f4:47:87:90:df:7c:d7:40:a0:02:ab:63:07:ce:4f:
f7:2f:e5:2f:5c:2c:65:67:38:22:58:12:72:64:1b:
6e:5a:4a:49:88:26:1b:7a:b7:81:42:c3:7f:67:9d:
fa:5b:c4:0f:b5:73:02:15:39:10:cc:e4:f0:39:06:
1a:ae:94:c9:26:8f:9b:84:88:90:18:a6:14:4e:f2:
e8:17:07:10:58:cc:df:bf:47:15:b2:8d:c6:9c:01:
40:bf:39:9e:46:98:61:2e:27:64:70:8e:2d:42:d7:
6d:5a:57:bb:de:d1:3d:32:2c:f2:07:34:72:34:0e:
81:47:8f:fd:3d:43:7c:3b:22:fa:04:11:c8:9f:71:
be:04:fb:8a:b4:19:34:72:b1:0c:76:30:cb:e3:a3:
2e:44:12:c1:86:0e:c1:1a:52:d3:af:67:f0:15:aa:
aa:1c:6e:f0:64:b7:6c:eb:1c:45:1c:63:d9:2a:3e:
e7:af:23:43:8e:b0:cf:24:32:b6:da:42:e1:54:81:
b5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:15:75:BD:2E:91:8E:C4:7F:7D:16:CD:5C:E2:F7:22:76:9C:F2:DB
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/3BV1vS6RjsR_fRbNXOL3Inac8ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:b3c0::/29
Signature Algorithm: sha256WithRSAEncryption
45:db:5d:48:aa:e8:62:43:5b:bd:1b:37:6a:77:93:0b:a2:ee:
65:f9:f7:9b:b6:5d:0a:d4:4c:c8:43:bf:0b:29:62:9f:ff:fb:
63:71:c8:7c:90:ad:8b:0c:df:57:f3:39:76:46:66:e9:37:d4:
25:2a:71:59:0f:8f:92:0a:ee:b0:a0:75:a7:79:f0:25:b1:d5:
aa:a5:84:3b:34:ee:1e:5e:0e:e5:d4:54:ad:9b:42:a9:3d:05:
da:06:80:35:39:de:d5:75:84:ce:fa:c1:fc:09:f4:59:7b:93:
d6:a5:21:81:85:a7:a7:33:74:b4:61:68:98:7a:c1:0a:dc:e1:
6d:11:ab:e5:27:75:52:45:c5:bd:01:e0:09:4c:db:5d:49:fc:
31:e5:8a:0e:63:7e:e4:bd:9d:49:49:b9:30:e5:fa:42:90:b6:
a0:37:ca:7c:10:7a:b8:90:8c:45:6a:06:63:36:6d:3a:37:58:
0e:5e:48:9e:a4:b9:3b:f4:27:a5:40:5a:54:82:d1:81:7f:f3:
7b:19:c1:d3:00:0b:a1:83:81:e7:fa:85:f8:87:86:fb:5e:99:
56:bd:ef:5d:c1:49:5e:5b:12:d8:1b:e5:96:40:9a:05:7a:f5:
be:fc:39:e7:84:7e:22:ca:60:49:59:1b:fe:0b:0d:6a:64:73:
71:93:dd:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 09:45:30 2024 by rpki-client on console-ams.rpki-client.org