Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/8MdZ3sAQizXBtzdIZ44TY_M7ECM.roa
File: 8MdZ3sAQizXBtzdIZ44TY_M7ECM.roa (raw, json)
Hash identifier: L8gClQQ3tK0fOobtqx44/mw3G7bzAYgaU3UQZzgz3Zs=
Subject key identifier: F0:C7:59:DE:C0:10:8B:35:C1:B7:37:48:67:8E:13:63:F3:3B:10:23
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 018CF5B30B55A8A049B9BA3229FC927772DF
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/8MdZ3sAQizXBtzdIZ44TY_M7ECM.roa
Signing time: Wed 10 Jan 2024 23:26:40 +0000
ROA not before: Wed 10 Jan 2024 23:26:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206873
IP address blocks: 2a11:3c42::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 19 Sep 2024 07:33:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f5:b3:0b:55:a8:a0:49:b9:ba:32:29:fc:92:77:72:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Jan 10 23:26:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0c759dec0108b35c1b73748678e1363f33b1023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:56:7d:c2:a8:c3:ec:df:65:65:30:96:71:92:
51:73:b0:a0:69:4c:89:48:a4:e4:eb:c0:9a:f5:6e:
1e:ab:05:cf:3a:be:62:0a:5b:94:cf:92:f4:0b:7e:
da:b2:cc:dc:00:5b:1b:5e:86:5d:bb:c1:b7:07:2a:
b2:e5:31:3d:28:85:17:5a:d3:39:c1:e8:96:9e:cd:
52:3d:f5:83:2d:eb:f8:bb:1d:00:f7:46:9a:9a:88:
f6:61:02:a1:8d:e0:9b:60:9e:7e:ac:e0:cf:b9:c4:
5f:89:63:ec:7d:f6:33:f5:5a:16:67:ca:15:be:91:
6f:d8:32:7e:90:be:b8:46:8a:7a:62:df:b7:9e:af:
9b:cb:fc:35:4c:86:23:fe:6a:21:a7:8b:23:2e:47:
38:e4:0b:cd:39:da:8d:b5:6c:99:34:1d:03:20:ff:
1a:81:51:79:e8:23:43:bf:bf:9c:47:f6:9e:89:a5:
ea:a7:4f:28:e9:55:be:38:8e:f7:34:f6:70:ba:09:
4a:ed:bd:c1:e2:e3:c5:12:a2:19:8e:14:aa:94:1d:
21:eb:a7:6d:0e:af:ae:37:57:1f:84:da:ce:dd:6d:
61:c5:22:d5:aa:d3:b2:f6:31:55:c2:33:af:5c:aa:
a4:82:27:0e:2d:2d:29:4c:45:e5:5d:5d:98:0e:6d:
0a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C7:59:DE:C0:10:8B:35:C1:B7:37:48:67:8E:13:63:F3:3B:10:23
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/8MdZ3sAQizXBtzdIZ44TY_M7ECM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3c42::/32
Signature Algorithm: sha256WithRSAEncryption
cf:8f:9f:84:13:d9:f6:bc:c4:62:b0:5d:d9:f6:0e:00:27:f6:
de:74:20:ef:50:a3:6f:04:a5:fa:5c:ce:de:bc:cc:90:1f:71:
80:29:c8:e8:5d:64:c8:cc:6c:c3:ff:ed:94:b0:d5:43:e9:87:
f6:13:5f:dc:02:27:7c:da:9c:5e:35:64:6e:a0:f9:8d:a8:aa:
1c:a1:4e:5a:db:b2:9a:fb:66:e5:ce:65:92:91:7d:dd:91:29:
af:8f:53:bb:1d:93:67:59:ff:10:b5:4f:1d:9d:87:4e:67:39:
05:06:b7:ba:5e:23:ee:be:27:e1:80:ee:9b:b6:82:a3:a0:5a:
99:5c:49:d8:30:9c:aa:22:45:26:d9:16:5e:46:46:90:98:0e:
a8:58:03:5f:d4:9a:35:62:d5:73:d9:6d:fa:f4:d5:30:5c:1f:
80:92:62:35:ff:2c:48:6a:ed:74:2d:cc:1b:5e:32:44:61:aa:
de:b8:f8:e8:bd:5e:a4:dd:a7:c3:5e:da:34:c7:a2:76:49:ab:
df:e2:72:42:88:76:e8:0b:6a:59:dc:29:b3:ba:ad:74:b2:f3:
f6:38:5a:07:eb:3b:52:30:65:48:7a:98:97:66:85:d3:86:6d:
eb:cc:0d:40:b9:49:83:73:53:73:5b:86:8c:bb:fd:19:3d:66:
36:c4:98:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 09:22:50 2024 by rpki-client on console-fra.rpki-client.org