Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/4oT1BTrtrR-_PI-vapU8KDJde8Q.roa
File: 4oT1BTrtrR-_PI-vapU8KDJde8Q.roa (raw, json)
Hash identifier: GEzBTdfPGSXkEI20PUJueMVkhfMjhLR8GzpJ24GbTMs=
Subject key identifier: E2:84:F5:05:3A:ED:AD:1F:BF:3C:8F:AF:6A:95:3C:28:32:5D:7B:C4
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 01876B8C30B3ADD99C563C5AA6D5C88E9530
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/4oT1BTrtrR-_PI-vapU8KDJde8Q.roa
Signing time: Mon 10 Apr 2023 14:22:42 +0000
ROA not before: Mon 10 Apr 2023 14:22:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 2a0e:c7c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 17 Apr 2023 15:38:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6b:8c:30:b3:ad:d9:9c:56:3c:5a:a6:d5:c8:8e:95:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Apr 10 14:22:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e284f5053aedad1fbf3c8faf6a953c28325d7bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:aa:21:a6:9c:a6:80:09:15:d3:0e:0a:18:c1:
35:5a:0b:0f:5a:64:7d:f3:eb:74:88:3a:e5:0e:ab:
c1:7e:4b:81:c3:a9:21:f6:6b:73:c2:ac:36:1d:e5:
8e:bc:68:e7:9f:df:b3:6e:61:f0:9e:72:04:71:19:
1f:0d:67:a6:5e:00:5a:68:aa:bd:2b:fe:b8:b3:9a:
e3:70:90:7b:50:82:06:6a:46:5c:8c:9f:52:88:9d:
2b:7d:d8:3e:89:c2:33:de:63:c0:33:e4:54:ea:a2:
34:79:17:57:dc:30:09:66:16:18:35:2a:8c:07:2a:
3f:24:4f:f7:c2:3b:89:b2:76:48:11:4f:16:f3:d6:
42:a7:aa:9f:8f:45:1a:12:c5:9b:0d:be:ed:f8:b5:
83:01:1d:b9:8a:3b:fc:a5:11:4c:2f:24:c5:8b:9c:
b8:6c:0b:b8:c2:3a:9d:8b:09:83:20:b2:c4:15:3d:
52:56:ba:89:4a:5a:4a:95:1f:02:fa:93:ef:f8:56:
11:d5:dd:2b:d4:97:60:f8:7a:b6:b5:7f:fb:86:ae:
88:d9:b4:cb:06:81:5a:42:5c:41:64:81:4f:55:10:
90:59:48:81:e6:bd:4f:1c:f4:a6:77:fd:d8:23:79:
86:e7:cf:b9:0f:3b:15:05:df:de:72:36:3d:ea:46:
54:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:84:F5:05:3A:ED:AD:1F:BF:3C:8F:AF:6A:95:3C:28:32:5D:7B:C4
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/4oT1BTrtrR-_PI-vapU8KDJde8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c7c0::/29
Signature Algorithm: sha256WithRSAEncryption
70:c9:e8:5c:de:5f:45:c6:0b:42:dc:25:86:2f:bf:ab:98:ee:
3c:04:a4:75:d6:6c:ad:85:dc:7e:34:72:ac:47:d4:33:9d:b5:
fb:2a:6d:b9:98:97:c2:e6:53:26:57:67:ff:f1:45:a2:9b:52:
68:79:b1:98:bc:39:df:50:de:a5:02:c1:12:34:c4:3b:d6:39:
ea:65:9f:61:5f:81:36:05:7c:78:a6:b8:e5:cb:0c:d7:e1:7d:
99:71:dc:d2:c5:90:13:d0:02:84:54:63:d9:cb:28:a2:03:43:
9c:3c:6e:20:46:3b:c2:40:25:87:d1:89:06:6c:61:c5:a7:23:
44:a0:db:58:15:50:5c:f9:b9:51:f8:92:8e:1d:aa:e1:ea:bf:
23:5c:f0:74:26:2a:79:27:2a:bd:64:e6:a8:ae:1d:b3:fa:a9:
49:08:09:e3:18:7f:ec:3c:c0:d7:f9:1e:ec:e5:4d:7c:c2:21:
b6:cc:93:ea:5a:8d:67:46:3b:ed:44:b9:03:14:3a:37:85:0b:
c8:4a:7d:82:38:34:22:89:94:0e:57:6e:b4:06:b1:da:26:d0:
97:87:63:99:39:a2:fd:35:f8:b9:9a:8f:07:e0:de:cd:25:d6:
20:a4:3b:85:24:08:f5:3d:e2:3a:ae:fc:99:66:c5:ec:7a:78:
37:33:99:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:48 2024 by rpki-client on console-fra.rpki-client.org