Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/3hCqW1c3ZWQvchIV5ZAgLZwsIn8.roa
File: 3hCqW1c3ZWQvchIV5ZAgLZwsIn8.roa (raw, json)
Hash identifier: L1lqL6k1g985p5V7SlEtgW42hVq7akfNaoohmhLnz+4=
Subject key identifier: DE:10:AA:5B:57:37:65:64:2F:72:12:15:E5:90:20:2D:9C:2C:22:7F
Certificate issuer: /CN=dfb8d9140502c9e035305189bf658234db14f54c
Certificate serial: 0186383B7EEA6C7BD37D4D673F002DF7B671
Authority key identifier: DF:B8:D9:14:05:02:C9:E0:35:30:51:89:BF:65:82:34:DB:14:F5:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37jZFAUCyeA1MFGJv2WCNNsU9Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/3hCqW1c3ZWQvchIV5ZAgLZwsIn8.roa
Signing time: Thu 09 Feb 2023 22:11:08 +0000
ROA not before: Thu 09 Feb 2023 22:11:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47584
IP address blocks: 2a12:df40::/29 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:38:3b:7e:ea:6c:7b:d3:7d:4d:67:3f:00:2d:f7:b6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb8d9140502c9e035305189bf658234db14f54c
Validity
Not Before: Feb 9 22:11:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de10aa5b573765642f721215e590202d9c2c227f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a1:c0:d2:df:4d:23:a2:92:24:6e:9c:83:19:
82:7b:09:da:f8:b6:77:17:25:c5:9a:97:f6:91:2a:
03:d3:c2:14:79:6b:e1:0e:23:04:3f:64:7a:dc:4a:
8d:0f:93:6c:a7:d7:1d:0e:4e:69:72:ac:7a:39:7b:
50:de:63:60:cd:63:95:db:37:83:75:bb:29:0b:ea:
ae:ce:52:0e:e3:1b:78:b5:64:f9:cf:b1:7d:49:64:
73:23:5c:b7:06:a8:08:eb:c9:4f:df:4e:09:7b:52:
6e:2b:e4:0f:f3:b3:7f:ed:5c:6e:d5:de:85:62:00:
6c:9e:32:9a:50:9e:80:68:9a:c7:b5:01:b4:2c:03:
bd:9e:a5:1b:07:72:f6:48:c6:a9:d8:e3:fc:19:3b:
c4:ca:dc:6f:b8:c4:82:1f:fb:c0:62:54:cd:41:f9:
cd:a7:b7:eb:7f:4d:1c:af:22:0e:9e:94:13:62:60:
50:2c:d0:56:f1:7a:46:ce:14:79:e3:e8:a9:41:84:
b3:49:37:27:51:d1:81:7a:da:8c:ce:9e:21:e0:a2:
ca:f2:7d:ba:51:d3:34:bb:ed:59:93:23:c6:6b:14:
37:8f:b2:51:d4:ea:6c:b3:c8:05:23:d0:42:dc:1a:
c3:d0:2b:77:78:17:83:67:f3:bc:0d:a4:b2:8b:74:
07:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:10:AA:5B:57:37:65:64:2F:72:12:15:E5:90:20:2D:9C:2C:22:7F
X509v3 Authority Key Identifier:
keyid:DF:B8:D9:14:05:02:C9:E0:35:30:51:89:BF:65:82:34:DB:14:F5:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37jZFAUCyeA1MFGJv2WCNNsU9Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/3hCqW1c3ZWQvchIV5ZAgLZwsIn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/37jZFAUCyeA1MFGJv2WCNNsU9Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:df40::/29
Signature Algorithm: sha256WithRSAEncryption
23:4c:0f:ef:e8:d8:89:5c:9f:21:ce:56:42:be:1f:d9:a5:87:
35:8d:73:48:85:69:52:b1:1b:51:ef:07:f3:01:5a:ba:50:4c:
01:ce:b1:18:df:ee:02:cf:67:9e:48:a1:25:47:58:63:08:60:
ec:a7:b8:ac:f7:04:0f:b4:45:8f:0c:f0:69:0b:1c:0f:92:63:
1f:b0:d6:36:f2:af:3f:a7:89:2a:3a:30:ef:ec:4f:d3:4f:e6:
69:43:bf:d5:2b:4b:70:0b:a7:fa:11:f0:77:dc:40:84:03:fe:
a7:7e:4a:a0:a0:04:dc:f8:0e:09:a8:ff:de:11:a7:49:cc:84:
89:d9:f8:53:86:d7:17:2b:d5:3c:e9:56:db:5b:4f:f7:d8:f5:
c1:b8:08:b7:51:55:f4:30:13:43:6d:32:ce:03:ed:2b:7b:17:
6d:00:3c:1a:31:f9:63:72:1e:63:59:fd:16:f8:c8:32:fd:57:
0b:57:8a:38:39:17:ca:a4:33:19:16:f3:68:1b:18:a9:04:4f:
36:c1:59:44:a1:12:14:5e:1f:25:03:dc:23:62:cf:51:f4:d9:
fc:81:41:73:05:e3:c9:b7:7a:f1:79:2b:63:28:60:d9:47:c0:
6b:36:da:dc:ff:3f:a0:ea:90:53:71:cc:1c:3d:7f:95:af:55:
ef:b0:b6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-fra.rpki-client.org