Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/PPi_PnPG95xzVD0FqCRpRpfu0pA.roa
File: PPi_PnPG95xzVD0FqCRpRpfu0pA.roa (raw, json)
Hash identifier: zUDWFXkK4Y8ETK62E2Vm0HamQoh4zQZ9UWtlWfFCkeY=
Subject key identifier: 3C:F8:BF:3E:73:C6:F7:9C:73:54:3D:05:A8:24:69:46:97:EE:D2:90
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 018E3983880252A0AD619F3CCBD0B0D7DE5B
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/PPi_PnPG95xzVD0FqCRpRpfu0pA.roa
Signing time: Wed 13 Mar 2024 20:31:45 +0000
ROA not before: Wed 13 Mar 2024 20:31:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215330
IP address blocks: 2a05:4140:49::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 18 Mar 2024 18:54:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:39:83:88:02:52:a0:ad:61:9f:3c:cb:d0:b0:d7:de:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Mar 13 20:31:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3cf8bf3e73c6f79c73543d05a824694697eed290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0a:1f:f2:91:a6:54:1e:83:0e:fa:a0:3b:68:
b8:17:eb:58:60:c2:49:1a:0a:b4:46:4a:0b:28:36:
62:a8:69:14:9d:18:72:ad:b3:84:bf:fa:e1:63:9f:
0a:3a:6c:f8:98:c7:62:d3:20:33:a8:90:30:c6:b8:
df:78:65:1a:dd:8e:70:80:2d:b4:ed:20:27:33:33:
a8:e2:8d:21:52:e6:d4:a3:6a:04:4e:59:f0:76:96:
48:fc:3a:6a:90:8b:fb:4e:85:fd:d0:a2:9d:5e:66:
78:6b:c0:5c:da:1c:d9:e8:9d:60:5d:2f:b6:98:b6:
eb:36:bd:5e:15:a8:41:bd:77:07:d6:74:12:51:5b:
6b:d6:a2:5d:11:6a:d2:2a:c7:3c:91:fa:c5:16:eb:
c8:9e:ca:f6:14:48:24:5f:ac:27:f4:5f:80:84:82:
3c:0b:15:29:96:fe:19:15:f9:2e:07:79:c1:33:64:
f7:bd:08:d3:a3:64:58:73:e4:e6:09:b2:1f:17:b0:
29:be:da:d6:46:3e:ce:0f:50:c4:29:01:c9:73:27:
c7:b7:03:67:18:fa:de:5d:0b:7b:7b:38:73:da:db:
d8:81:1b:d8:07:26:65:67:69:69:4e:5a:5e:e9:b9:
41:74:13:c7:d1:f9:4e:91:4d:fa:85:37:3f:ba:35:
81:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F8:BF:3E:73:C6:F7:9C:73:54:3D:05:A8:24:69:46:97:EE:D2:90
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/PPi_PnPG95xzVD0FqCRpRpfu0pA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:49::/48
Signature Algorithm: sha256WithRSAEncryption
0f:3c:5c:dc:71:1e:ac:63:bb:01:9b:d6:91:06:83:20:a2:2a:
a2:04:14:05:43:f1:50:3e:6a:e2:7a:fc:91:53:61:a1:78:1f:
f0:83:5c:d3:ba:1c:d3:f3:e0:6a:48:bd:0a:b5:77:4f:ba:e8:
66:ad:de:de:6c:09:7d:2b:f9:7a:16:4c:ad:25:7b:6c:52:ca:
7c:ea:c5:4e:52:c9:ed:f9:93:11:00:ba:b7:1d:95:ac:63:10:
dd:ec:a2:ab:a3:64:fd:3e:9d:7e:a5:b0:eb:74:f9:a8:1f:32:
83:0b:9f:15:d0:13:da:5a:f3:fc:38:05:33:79:b0:7e:68:e7:
7d:66:c5:6b:d5:0a:fb:6f:89:bf:2f:25:1d:55:5c:d2:d2:9e:
27:fa:80:b9:79:a0:4f:63:aa:fe:e2:ac:54:2c:f2:69:ac:fc:
0d:7c:98:56:23:ac:ee:58:44:1f:76:1d:d3:18:80:7c:8c:ce:
f9:9e:2c:2e:d0:d1:66:48:92:1f:b3:dd:88:7a:07:2f:3f:c3:
c2:68:61:a2:df:90:76:fc:07:ae:d4:57:87:09:9d:6a:9d:37:
aa:bd:35:15:32:21:43:03:99:35:07:83:33:e9:db:04:4b:cc:
c4:be:a8:05:6c:e8:51:8e:e1:ac:6f:92:6e:75:c2:cf:1d:d7:
c8:48:6f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 18 22:01:04 2024 by rpki-client on console-fra.rpki-client.org