Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/kXotwygnMUT-yARkkw3UxXHw2JE.roa
File: kXotwygnMUT-yARkkw3UxXHw2JE.roa (raw, json)
Hash identifier: p41zNCIH4T6g/itJN4R+ruDxKmpqOvlMBFsizwYgJRs=
Subject key identifier: 91:7A:2D:C3:28:27:31:44:FE:C8:04:64:93:0D:D4:C5:71:F0:D8:91
Certificate issuer: /CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Certificate serial: 018AFC1AA13498191F7831EC02867445B5EF
Authority key identifier: 3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/kXotwygnMUT-yARkkw3UxXHw2JE.roa
Signing time: Wed 04 Oct 2023 19:11:58 +0000
ROA not before: Wed 04 Oct 2023 19:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 2a07:db83::/32 maxlen: 32
2a07:db80::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 06 Oct 2023 15:49:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fc:1a:a1:34:98:19:1f:78:31:ec:02:86:74:45:b5:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Validity
Not Before: Oct 4 19:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=917a2dc328273144fec80464930dd4c571f0d891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f9:38:66:67:49:07:ff:a9:6a:f3:c7:c7:15:
d8:0f:e6:da:bb:bd:1c:c8:1a:01:d9:9a:64:f9:15:
93:c2:ca:60:19:bc:5f:a0:18:00:c4:4a:5b:d0:09:
7e:ef:f4:e7:b3:66:5e:12:2e:ac:ea:6b:41:c3:7c:
36:cc:ed:47:33:99:92:24:d0:33:9b:23:25:35:86:
55:31:74:d0:38:6e:d7:73:34:23:8d:bf:00:00:5b:
1a:2a:89:12:a2:0b:67:de:7a:3a:fc:a1:be:e0:11:
44:1e:1f:7c:a8:3a:b1:0d:19:46:56:9b:43:39:1a:
d9:c4:b1:ab:99:03:e6:65:03:0a:66:12:02:0e:fa:
e6:c7:d3:b1:f7:e1:bd:06:cb:21:f0:a1:4a:49:65:
e3:65:df:7f:7c:fd:c6:51:e1:5c:f3:7a:67:59:2a:
57:7e:59:e6:d4:34:aa:c2:52:30:61:0d:0d:99:55:
28:81:7f:81:02:e5:45:8b:ae:94:9d:51:06:47:40:
ab:20:2c:51:51:9b:c4:e8:09:4a:e1:58:12:99:5b:
8b:50:31:3d:00:b0:0c:3f:1f:17:17:d2:e0:f1:73:
2f:03:33:3f:1c:db:76:eb:f1:37:85:52:e1:04:cc:
8f:19:26:53:5d:b2:27:95:18:71:e8:95:c9:15:e0:
f7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7A:2D:C3:28:27:31:44:FE:C8:04:64:93:0D:D4:C5:71:F0:D8:91
X509v3 Authority Key Identifier:
keyid:3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/kXotwygnMUT-yARkkw3UxXHw2JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/PijW8T41ndC7RTSiRlWXTFfSsP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:db80::/32
2a07:db83::/32
Signature Algorithm: sha256WithRSAEncryption
4c:a4:19:11:22:ff:8d:5c:8c:06:dd:b2:eb:61:7d:09:6f:04:
56:50:20:df:40:a0:f5:35:c5:0c:bd:92:5d:82:64:d8:5c:f8:
aa:13:4e:5b:51:37:53:fa:67:bb:b5:a7:de:b9:da:31:96:42:
79:da:31:3f:95:93:a8:1e:fd:bf:07:51:77:62:98:80:55:39:
f8:ec:d7:6b:2e:88:19:02:87:bb:e7:a0:8d:22:53:e9:d7:26:
14:cf:0b:fd:27:83:75:18:b1:ae:b5:82:0b:69:81:80:35:8b:
d7:2c:63:3f:38:79:6b:ae:85:f2:24:d7:16:aa:4d:58:5e:b3:
56:42:f8:aa:83:4a:cd:ad:c7:8c:4c:8c:8a:bf:13:ab:5a:7a:
3a:35:7b:99:6f:b6:1d:97:6a:cb:b6:f3:8d:4e:fc:7b:c6:e8:
62:48:26:6a:21:75:d2:13:33:62:87:91:10:2f:fd:40:72:39:
8a:b6:b7:bd:9a:e5:5b:99:b1:b1:68:b8:b1:c7:1a:5c:d4:ae:
f3:bd:ce:16:c9:38:ec:d5:3a:7c:d7:12:3d:8d:4f:80:44:d4:
17:5f:7a:e1:5d:2e:db:95:a3:d9:c0:16:b9:54:6d:27:40:c0:
72:d7:c4:13:42:80:86:eb:4d:e6:59:44:c2:4d:4e:67:93:13:
f4:72:51:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:11 2024 by rpki-client on console-ams.rpki-client.org