Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/72faed-a8f8-4a33-8ddc-5cef04b79737/1/D7RwTo-oY7mZVqg1DcGvGZ-6m4Q.roa
File: D7RwTo-oY7mZVqg1DcGvGZ-6m4Q.roa (raw, json)
Hash identifier: y9ECFb8NzMIE3b11rKNuaHavmKj6EOsakqgB/8ruOHs=
Subject key identifier: 0F:B4:70:4E:8F:A8:63:B9:99:56:A8:35:0D:C1:AF:19:9F:BA:9B:84
Certificate issuer: /CN=0d23064e3c27ec92b7eab667649d204e5673838e
Certificate serial: 01856FA6E4EFE0EC7CBD83A53399FBAA2584
Authority key identifier: 0D:23:06:4E:3C:27:EC:92:B7:EA:B6:67:64:9D:20:4E:56:73:83:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSMGTjwn7JK36rZnZJ0gTlZzg44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/72faed-a8f8-4a33-8ddc-5cef04b79737/1/D7RwTo-oY7mZVqg1DcGvGZ-6m4Q.roa
Signing time: Sun 01 Jan 2023 23:24:46 +0000
ROA not before: Sun 01 Jan 2023 23:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50178
IP address blocks: 2a11:f00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:e4:ef:e0:ec:7c:bd:83:a5:33:99:fb:aa:25:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d23064e3c27ec92b7eab667649d204e5673838e
Validity
Not Before: Jan 1 23:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fb4704e8fa863b99956a8350dc1af199fba9b84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ee:a7:b6:5b:65:6b:14:40:40:34:64:5f:32:
fd:47:93:ec:57:82:f8:fe:bf:46:b4:53:8e:0a:20:
5b:af:ed:a2:6c:39:52:31:68:8d:4c:0f:06:b9:8b:
f4:fc:d7:ec:f0:3e:b5:5c:e8:66:74:9b:9b:b7:07:
96:90:1e:fa:f7:02:5f:0a:d3:2d:e0:51:b3:a7:ba:
3e:d3:7c:84:09:06:14:72:ff:67:f6:c4:4d:93:41:
dd:b1:62:5a:81:04:ab:25:d5:65:dc:10:7b:a5:0b:
5c:55:46:a5:fe:8b:f5:ab:d7:dd:9b:38:b8:dd:2f:
24:e6:40:45:b8:49:55:e4:3a:72:1e:b3:ee:e3:b8:
a4:d0:08:09:3a:59:ae:12:af:93:9f:3e:7c:e0:8b:
f3:cb:d3:e9:79:5e:02:7f:ae:72:fc:01:3d:f0:88:
3d:12:7a:bb:09:cd:ae:8c:48:de:5e:23:e7:86:30:
26:8e:2f:03:40:e6:c4:e3:78:a5:d4:24:41:6b:94:
17:f8:33:f5:5e:de:16:b2:1c:55:d4:3d:1f:b7:62:
eb:8c:6e:0d:2b:bf:77:15:b1:7a:ef:47:b4:d1:ae:
31:66:02:a2:00:e5:4f:79:b8:f4:fe:e9:5f:00:82:
1c:3e:e5:9a:03:3f:67:ea:a7:59:e3:41:8b:cb:ca:
6c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B4:70:4E:8F:A8:63:B9:99:56:A8:35:0D:C1:AF:19:9F:BA:9B:84
X509v3 Authority Key Identifier:
keyid:0D:23:06:4E:3C:27:EC:92:B7:EA:B6:67:64:9D:20:4E:56:73:83:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSMGTjwn7JK36rZnZJ0gTlZzg44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/72faed-a8f8-4a33-8ddc-5cef04b79737/1/D7RwTo-oY7mZVqg1DcGvGZ-6m4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/72faed-a8f8-4a33-8ddc-5cef04b79737/1/DSMGTjwn7JK36rZnZJ0gTlZzg44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f00::/29
Signature Algorithm: sha256WithRSAEncryption
3c:54:c4:b0:2b:d9:34:7c:ba:ca:c9:7a:49:a7:b4:43:c1:7e:
38:68:b5:18:43:25:6b:09:30:ff:da:10:14:1e:f4:35:bb:74:
40:15:67:e4:6b:35:cf:55:ad:04:ab:38:be:b5:8f:67:25:31:
f9:98:a9:2e:9b:d5:8f:f0:2b:61:84:a3:70:c1:e4:21:9a:90:
ee:55:ae:24:75:9d:45:5c:c2:20:05:49:37:3d:40:7e:7e:11:
de:db:30:24:60:b0:d2:a6:05:b4:4b:07:52:93:c9:26:48:9d:
54:5e:27:68:7b:d3:2d:49:30:22:39:7e:92:d9:11:29:1f:48:
17:c8:02:9f:dc:05:5c:67:c2:f7:e3:84:8b:fa:b1:d8:2d:08:
38:97:7c:a0:33:0e:06:fb:07:63:1e:d0:a8:4f:21:88:eb:11:
9e:1d:c5:df:1e:cc:7d:14:2f:c0:a5:ed:4b:f2:7a:3c:39:df:
8f:3b:cd:11:65:ca:e0:bf:54:9f:e4:9a:1d:d6:0d:93:90:c6:
02:94:a5:34:62:c4:62:e1:72:1b:b0:48:e0:4b:3a:04:9a:cd:
82:79:33:8f:b9:ab:7b:9f:02:36:ac:a2:f0:cd:70:10:8f:45:
0e:03:3c:07:d7:09:75:31:b9:9d:b9:2c:d4:67:a2:cd:c7:94:
0f:9f:a8:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:11 2024 by rpki-client on console-fra.rpki-client.org