Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/cd6a7b-1580-4102-9aa6-a4b6e3d0d830/1/aIeE7iDvWgYTSw8kcftYO6JUvRU.roa
File: aIeE7iDvWgYTSw8kcftYO6JUvRU.roa (raw, json)
Hash identifier: SzvJ4PHSsEvUIX+QKfoQ0tsPgNVhQgddofPOh1Hsrq4=
Subject key identifier: 68:87:84:EE:20:EF:5A:06:13:4B:0F:24:71:FB:58:3B:A2:54:BD:15
Certificate issuer: /CN=3c2a267dce072238e9c04515e67eb992672e351b
Certificate serial: 01856DC1E2A764558C8BC30F5301238819DE
Authority key identifier: 3C:2A:26:7D:CE:07:22:38:E9:C0:45:15:E6:7E:B9:92:67:2E:35:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PComfc4HIjjpwEUV5n65kmcuNRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/cd6a7b-1580-4102-9aa6-a4b6e3d0d830/1/aIeE7iDvWgYTSw8kcftYO6JUvRU.roa
Signing time: Sun 01 Jan 2023 14:35:01 +0000
ROA not before: Sun 01 Jan 2023 14:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204867
IP address blocks: 2001:678:b28::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:e2:a7:64:55:8c:8b:c3:0f:53:01:23:88:19:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c2a267dce072238e9c04515e67eb992672e351b
Validity
Not Before: Jan 1 14:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=688784ee20ef5a06134b0f2471fb583ba254bd15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:de:fb:6a:c7:fe:54:55:9f:bb:40:85:43:62:
f0:d2:10:c3:68:23:8a:66:f9:cf:30:6f:61:6f:5a:
a7:4b:0d:77:c2:b5:02:0b:2b:9e:26:ed:de:d8:80:
66:93:aa:6f:30:f5:c1:40:e9:eb:bb:f9:e7:c9:f0:
a5:50:f3:e9:8c:0e:79:62:d0:da:13:09:dc:82:12:
ec:d8:0e:0a:b4:42:6c:06:d1:48:58:91:b3:44:d7:
19:13:4f:6f:63:7f:2b:78:3f:b4:85:03:1e:ea:41:
5f:b7:85:5f:37:2c:67:ec:ed:da:34:60:2a:01:b9:
43:27:61:90:8a:49:c9:17:2b:9f:ff:7d:89:78:4d:
11:de:a3:fd:59:27:f5:1d:c4:22:89:b8:2b:89:11:
ae:0d:82:c3:00:72:81:68:ee:1d:04:74:34:13:59:
4e:60:57:86:9e:ac:cd:a9:c4:2c:aa:8d:d2:db:57:
af:83:3e:b3:81:7b:b1:e2:93:93:0f:d8:5d:b6:78:
ef:f1:77:a1:38:47:d2:d0:bf:05:e8:39:c5:8a:83:
01:32:96:7b:68:45:d2:a2:ed:53:21:38:27:78:e5:
b6:53:4a:b6:11:2d:9d:9d:5d:a4:24:d8:15:46:4f:
e0:55:c3:91:6f:74:ff:e3:3a:79:4b:26:4c:d2:ad:
e8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:87:84:EE:20:EF:5A:06:13:4B:0F:24:71:FB:58:3B:A2:54:BD:15
X509v3 Authority Key Identifier:
keyid:3C:2A:26:7D:CE:07:22:38:E9:C0:45:15:E6:7E:B9:92:67:2E:35:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PComfc4HIjjpwEUV5n65kmcuNRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/cd6a7b-1580-4102-9aa6-a4b6e3d0d830/1/aIeE7iDvWgYTSw8kcftYO6JUvRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/cd6a7b-1580-4102-9aa6-a4b6e3d0d830/1/PComfc4HIjjpwEUV5n65kmcuNRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:b28::/48
Signature Algorithm: sha256WithRSAEncryption
41:25:0a:13:e2:eb:7f:1b:cf:03:99:b7:50:7e:03:a0:1b:20:
a5:85:f2:62:f3:18:4d:3f:c9:8f:09:de:79:e3:89:91:76:84:
a7:b2:83:dc:f7:6c:3e:6a:36:26:08:42:23:d2:b4:38:82:ed:
a4:90:83:64:ac:75:ba:43:65:07:4e:03:bf:de:3e:55:ff:73:
57:7f:d6:21:08:ac:e0:87:6c:bf:d0:dd:86:47:c6:bd:96:9c:
3f:72:8f:70:63:29:11:d9:95:4c:81:53:4d:54:39:99:0d:00:
64:78:c4:42:1f:40:1c:d6:8e:13:68:25:80:9b:38:d9:08:cb:
93:21:8c:66:8c:9f:1d:50:2a:23:d7:cd:32:69:1a:c5:09:d2:
3a:bf:82:4e:25:2b:3d:36:69:33:c0:bd:97:b4:97:3d:51:47:
93:76:97:21:67:9f:5f:52:e7:ca:63:2e:7e:eb:fd:92:3b:55:
54:78:ab:3a:66:2c:c8:ef:3f:e5:02:4b:71:4d:64:8c:5c:79:
b6:39:0d:11:74:7a:6f:c5:70:72:34:d4:09:12:8e:c8:31:49:
40:d2:1f:34:59:e3:03:e2:ea:67:e4:b1:a1:a3:41:0a:58:84:
88:80:03:f3:07:f4:0d:ac:b3:a0:14:49:ee:0e:e4:8b:c1:ee:
b1:90:e8:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:16 2024 by rpki-client on console-fra.rpki-client.org