Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/Psn4N2MEKwpsIKWjscpATf0oggU.roa
File: Psn4N2MEKwpsIKWjscpATf0oggU.roa (raw, json)
Hash identifier: t03YKXeZmmMaAE79uJxay4QZgbmLRpyi7AoGoIkafQY=
Subject key identifier: 3E:C9:F8:37:63:04:2B:0A:6C:20:A5:A3:B1:CA:40:4D:FD:28:82:05
Certificate issuer: /CN=597a01de87e011803f890ae17749020f995f140c
Certificate serial: 018571830B6D3971EA25372A1705B06E4BC6
Authority key identifier: 59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/Psn4N2MEKwpsIKWjscpATf0oggU.roa
Signing time: Mon 02 Jan 2023 08:04:51 +0000
ROA not before: Mon 02 Jan 2023 08:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6878
IP address blocks: 2a07:b980:4000::/39 maxlen: 44
Validation: Failed, certificate revoked on Thu 29 Jun 2023 08:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:0b:6d:39:71:ea:25:37:2a:17:05:b0:6e:4b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=597a01de87e011803f890ae17749020f995f140c
Validity
Not Before: Jan 2 08:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ec9f83763042b0a6c20a5a3b1ca404dfd288205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:76:d4:19:5c:ab:31:ea:b9:6e:a1:bb:25:86:
c5:d7:c1:3f:3f:6d:58:8c:2e:69:0e:ec:35:34:e1:
16:8c:99:b5:f3:f2:3c:aa:84:37:1f:29:47:b1:53:
f2:56:db:7c:cd:80:d8:41:5d:ea:4f:57:cb:18:a4:
0f:cc:80:35:4e:c8:c5:60:e7:d6:de:f3:02:6e:8b:
67:fd:e1:a5:ae:fe:92:c5:ca:f0:78:74:cc:ec:d5:
50:ce:74:08:66:55:dd:57:93:f3:53:4f:75:cd:79:
3a:64:26:e3:d9:3b:3c:c7:c9:ef:8d:99:11:d1:f9:
dc:26:b8:cc:8f:b9:3f:91:94:69:0c:31:35:0c:21:
d0:52:ce:d1:3b:7a:92:1c:a7:c5:e0:cc:a3:05:91:
6e:01:62:1e:a6:35:3d:3d:40:78:6e:c1:33:f8:c6:
38:eb:0d:4e:8d:1e:24:65:48:ee:c3:ca:78:fc:bd:
0d:62:68:f4:23:1b:06:a4:4d:bf:48:ca:4a:4b:68:
0c:6a:80:90:3b:5c:b9:78:f1:08:d0:14:43:ac:51:
28:76:61:d3:70:bd:41:dc:23:73:62:c8:e5:23:4f:
53:0b:63:a8:af:32:b6:5a:1b:a4:3a:60:d1:74:ea:
92:63:3e:96:6a:05:13:fb:af:8e:1c:b2:75:a6:13:
8f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C9:F8:37:63:04:2B:0A:6C:20:A5:A3:B1:CA:40:4D:FD:28:82:05
X509v3 Authority Key Identifier:
keyid:59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/Psn4N2MEKwpsIKWjscpATf0oggU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:b980:4000::/39
Signature Algorithm: sha256WithRSAEncryption
6c:aa:21:a1:41:1c:c7:56:9b:b0:cb:c6:80:60:49:e1:24:b7:
f1:c2:66:a4:fb:dd:74:53:a4:52:27:14:87:8d:47:d7:89:35:
ea:6a:5a:f2:78:c0:65:a9:2c:1c:db:e0:6f:e6:73:c8:14:ba:
4c:fa:87:d7:84:b0:30:bf:b7:3f:dc:78:25:3c:88:23:5a:55:
34:6e:02:95:b1:9e:27:b1:0e:10:c4:18:64:65:54:31:eb:ac:
e2:ce:1b:15:fe:28:a3:63:b2:c0:04:d1:ee:df:ee:c5:0c:8b:
d7:67:f6:2b:e5:9b:cd:4c:26:13:39:6b:6a:72:45:17:39:98:
c2:29:11:f0:70:9f:97:b8:60:4f:c6:e2:17:75:6d:d1:2d:21:
e3:a9:9b:05:d3:1b:f2:a1:aa:6a:85:a9:e3:8f:64:f8:5f:00:
c2:bf:9f:f2:9b:b0:f1:da:cb:c5:83:5b:f0:ea:31:8e:11:a0:
4c:6b:8a:3d:2c:b2:58:42:e2:f2:6d:8d:ce:01:62:cb:9c:de:
d6:fb:cd:cc:aa:ee:d0:c9:7b:ca:7e:48:c9:e7:18:ea:c9:fb:
34:6d:3e:a7:e1:ff:c3:76:17:d7:a9:ed:38:db:71:c4:d3:20:
0d:fb:4b:37:83:c1:c8:fb:cb:5a:d2:91:06:53:c0:d9:52:2e:
bf:20:0f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:57 2024 by rpki-client on console-ams.rpki-client.org