Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/0fd5f4-56c0-48ba-b02b-d138a9c4e43f/1/pkqDy8qCwTyJO81QdZUKwn7-JQI.roa
File: pkqDy8qCwTyJO81QdZUKwn7-JQI.roa (raw, json)
Hash identifier: qaVaRnK1CnwSHMEhmC4mkUN+A1y6SwsdrLI7GKfsF68=
Subject key identifier: A6:4A:83:CB:CA:82:C1:3C:89:3B:CD:50:75:95:0A:C2:7E:FE:25:02
Certificate issuer: /CN=ea93edfc2aa748e4981050ec06e3a66920265e17
Certificate serial: 01856E38E97F9DA06A4C295F219D0B8191DB
Authority key identifier: EA:93:ED:FC:2A:A7:48:E4:98:10:50:EC:06:E3:A6:69:20:26:5E:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6pPt_CqnSOSYEFDsBuOmaSAmXhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/0fd5f4-56c0-48ba-b02b-d138a9c4e43f/1/pkqDy8qCwTyJO81QdZUKwn7-JQI.roa
Signing time: Sun 01 Jan 2023 16:45:01 +0000
ROA not before: Sun 01 Jan 2023 16:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 378
IP address blocks: 132.72.0.0/15 maxlen: 15
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:e9:7f:9d:a0:6a:4c:29:5f:21:9d:0b:81:91:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea93edfc2aa748e4981050ec06e3a66920265e17
Validity
Not Before: Jan 1 16:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a64a83cbca82c13c893bcd5075950ac27efe2502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b9:50:c5:75:13:5b:29:fa:db:25:71:c2:bd:
4a:60:50:62:30:34:b4:6f:5e:22:e8:04:f3:2d:54:
1f:63:d1:3f:0f:94:aa:eb:59:6f:63:7a:ca:9c:2b:
6e:c7:01:03:ad:7a:20:1b:63:e0:87:b7:9d:69:6a:
e5:36:51:3a:78:2a:0b:eb:16:5e:4a:06:9d:1b:40:
93:ea:20:4b:c2:c1:a2:21:0e:e5:11:70:e9:03:51:
f2:0d:a2:2b:ce:1c:3c:a0:15:3d:85:70:20:89:29:
10:ab:b9:8f:64:45:91:db:a8:3f:04:62:59:00:df:
7b:04:95:dc:3c:61:ac:28:e3:5e:3a:42:14:fa:ff:
85:de:bc:b9:9a:ea:37:52:ed:6a:9c:62:43:37:1d:
73:d0:24:4d:67:b2:ef:79:88:50:98:39:20:fd:14:
d0:f6:21:a2:8e:e8:49:b5:57:02:ca:25:89:6e:18:
6f:46:13:bf:80:38:48:15:f6:c0:01:0f:bc:39:74:
57:7e:fb:84:05:dc:19:0f:d0:e3:6a:9b:cb:08:66:
9f:d2:6c:84:72:19:fd:b2:f7:fa:29:d5:87:ff:ac:
42:03:71:d9:37:d5:a6:57:e4:78:ff:65:c8:04:81:
e6:53:d4:70:b3:47:53:19:0f:59:32:bd:67:52:31:
4a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:4A:83:CB:CA:82:C1:3C:89:3B:CD:50:75:95:0A:C2:7E:FE:25:02
X509v3 Authority Key Identifier:
keyid:EA:93:ED:FC:2A:A7:48:E4:98:10:50:EC:06:E3:A6:69:20:26:5E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6pPt_CqnSOSYEFDsBuOmaSAmXhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0fd5f4-56c0-48ba-b02b-d138a9c4e43f/1/pkqDy8qCwTyJO81QdZUKwn7-JQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0fd5f4-56c0-48ba-b02b-d138a9c4e43f/1/6pPt_CqnSOSYEFDsBuOmaSAmXhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.72.0.0/15
Signature Algorithm: sha256WithRSAEncryption
0f:74:6f:56:61:9b:0d:6e:47:2d:ea:a7:29:a3:ca:9d:03:2d:
d7:4f:28:fe:23:52:b7:25:04:1a:35:09:fa:3d:0d:33:42:74:
5e:4d:4f:5a:0a:40:9b:27:e5:a1:13:4f:ab:54:6d:30:6e:f9:
43:72:c0:57:2c:2a:4f:36:1e:bb:ce:8a:1b:1b:de:8f:24:50:
ab:75:be:32:f2:dc:ee:03:04:c0:52:9f:16:57:a3:ec:f8:0c:
b4:df:a2:37:cd:b5:e3:b8:e8:56:1b:12:d3:e8:45:eb:fd:31:
bb:31:e8:ca:44:cd:97:30:dc:1f:43:f4:f2:a1:a4:fb:7a:83:
31:cf:02:c8:a7:34:29:87:03:ba:3f:ef:82:8e:73:f5:11:a4:
44:57:4b:08:e0:63:cb:f2:88:02:69:51:bf:ad:53:75:10:8c:
de:1b:b6:f8:a2:8d:26:a7:c2:7b:1f:d0:aa:e2:28:8c:23:4e:
64:db:00:4d:5d:f9:6f:b0:ae:17:4f:47:8e:a5:da:ee:f9:0d:
74:22:39:aa:59:1d:51:f2:20:9e:55:12:7c:80:da:3b:71:23:
33:25:e7:19:11:fd:1b:fb:df:c0:43:0d:17:6f:01:60:e8:1c:
46:76:ca:00:17:91:6a:67:65:fe:fe:fa:03:dd:ad:f1:15:35:
81:23:85:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:51 2023 by rpki-client on console-fra.rpki-client.org