Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/x8yQ3T44rFrSnbxps6-zpEk2kyQ.roa
File: x8yQ3T44rFrSnbxps6-zpEk2kyQ.roa (raw, json)
Hash identifier: ZF7FpvBxllKeVegUw1jPEGNJdTSuiX9zLj7239GHd7Y=
Subject key identifier: C7:CC:90:DD:3E:38:AC:5A:D2:9D:BC:69:B3:AF:B3:A4:49:36:93:24
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018CAD016279C08EDD3138BB53473C1423A8
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/x8yQ3T44rFrSnbxps6-zpEk2kyQ.roa
Signing time: Wed 27 Dec 2023 20:39:58 +0000
ROA not before: Wed 27 Dec 2023 20:39:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 2a0f:f400::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ad:01:62:79:c0:8e:dd:31:38:bb:53:47:3c:14:23:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Dec 27 20:39:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7cc90dd3e38ac5ad29dbc69b3afb3a449369324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:88:85:a2:67:cb:73:02:f0:50:68:27:2d:25:
d2:04:1c:bf:4c:51:f4:29:f7:46:b6:23:44:f1:1d:
3b:73:28:40:17:26:05:dd:56:6c:44:30:0d:f4:30:
60:99:87:d8:48:a8:c1:fa:6e:34:2a:e4:6e:31:84:
87:aa:44:76:62:23:4d:ee:4f:8e:56:82:80:43:af:
7c:e3:5c:e9:29:0d:e7:b8:b7:bd:19:ab:74:1c:8e:
0a:db:32:ec:b2:7b:56:ed:fc:fd:c2:57:4b:93:72:
a0:fb:1d:2f:e6:29:a8:50:dc:1b:64:88:ad:21:98:
5f:47:86:06:66:3a:5f:e6:15:a3:fb:eb:6f:fa:84:
93:33:32:78:35:c4:76:19:31:5b:fe:29:6e:c9:ea:
91:8f:f3:86:58:3d:3f:ff:89:3b:20:70:b8:7d:f4:
c2:01:da:e3:58:f7:52:da:68:34:17:47:5c:5b:bd:
c5:cf:36:5a:fb:de:84:a1:47:f6:d0:0e:b8:6c:a6:
82:3a:30:eb:78:a2:70:13:39:b3:ad:a9:b7:c4:00:
9a:53:e6:5d:14:b9:e4:03:05:23:12:a8:d1:85:4c:
0d:cf:79:d2:52:2f:52:7b:50:71:f9:85:46:40:08:
53:d0:6f:61:d1:b3:ee:90:cd:14:b6:2c:72:99:66:
d4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CC:90:DD:3E:38:AC:5A:D2:9D:BC:69:B3:AF:B3:A4:49:36:93:24
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/x8yQ3T44rFrSnbxps6-zpEk2kyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:f400::/29
Signature Algorithm: sha256WithRSAEncryption
0c:de:57:81:39:6f:96:1c:24:70:91:ba:dd:9d:f6:aa:a3:50:
a9:f4:65:e7:9f:a5:6e:86:f4:9a:0a:77:99:6f:19:46:e2:a0:
b4:85:ea:ef:5d:06:38:be:b9:69:b2:52:b4:a3:2b:c2:15:ef:
d6:03:01:f1:e1:17:10:b3:f2:95:da:7c:dc:26:1d:ab:e2:7a:
75:88:00:6a:94:1b:59:04:19:36:9c:be:f7:45:7d:48:df:0d:
91:f8:04:db:18:c5:56:fb:a2:c1:c2:6a:f6:c1:66:33:67:80:
0b:38:2a:28:1c:f5:af:a9:b4:c7:45:27:bf:12:16:bd:05:65:
86:b5:8a:31:c1:20:a0:63:64:25:5f:7a:56:e9:2b:b7:3e:1f:
35:65:a4:d2:f1:bd:ef:c8:9f:4a:e5:43:ac:89:da:10:3c:37:
a4:4b:55:11:c0:5d:b1:d9:c4:35:33:97:89:90:a0:00:10:19:
c4:6e:ea:88:dd:5e:77:47:57:f1:1a:6c:02:9a:f5:87:dd:46:
19:aa:0e:45:f7:18:2a:fd:f8:f1:8b:4c:a5:3b:e7:4b:48:92:
34:ad:07:3a:47:12:b8:d6:39:8b:cf:db:1f:1c:9a:70:14:09:
74:7c:e1:00:10:fb:4b:3e:ab:78:6b:30:88:02:8c:b1:07:f1:
5c:1a:22:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org