Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/lFWR0llxxD-ZDBWEf4ZNnuS8CSU.roa
File: lFWR0llxxD-ZDBWEf4ZNnuS8CSU.roa (raw, json)
Hash identifier: zBa4NeQ2aSpFl4YaC9gN6rkGHT9g89VuD8uf3z4Qxv0=
Subject key identifier: 94:55:91:D2:59:71:C4:3F:99:0C:15:84:7F:86:4D:9E:E4:BC:09:25
Certificate issuer: /CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Certificate serial: 018BC955FE197B0C504AD77C53B2CE300A7B
Authority key identifier: 3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/lFWR0llxxD-ZDBWEf4ZNnuS8CSU.roa
Signing time: Mon 13 Nov 2023 15:38:57 +0000
ROA not before: Mon 13 Nov 2023 15:38:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 2a07:db86::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:55:fe:19:7b:0c:50:4a:d7:7c:53:b2:ce:30:0a:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Validity
Not Before: Nov 13 15:38:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=945591d25971c43f990c15847f864d9ee4bc0925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:63:e5:43:07:18:7c:e1:d3:63:5c:07:22:b4:
f9:d0:a9:ab:09:bc:b4:58:f4:2f:72:06:f2:26:4b:
da:81:b0:97:39:5a:11:d1:6d:d2:89:27:03:55:69:
b6:31:79:1d:20:0c:2b:34:7f:79:4c:4b:bf:b1:4b:
71:9c:81:a3:53:e0:e7:d3:ce:8b:1d:19:c0:a1:07:
ef:ed:ff:d5:f4:9e:a3:67:9b:de:2b:d2:bd:39:13:
1f:8c:f9:6f:f8:f2:07:12:13:bd:58:9e:20:ba:7e:
90:e9:41:bd:62:a0:d7:3e:7a:35:16:79:3e:18:2d:
6d:c1:c7:81:9e:4a:94:4c:07:28:6f:95:74:d7:09:
c6:b7:96:13:ca:c7:1e:b4:7d:23:55:4f:fa:cd:94:
7c:f3:b4:9d:aa:1e:48:7b:3e:18:f6:53:0c:32:a0:
c4:a4:4c:fa:9a:ef:04:70:e2:d1:66:8f:6a:44:1a:
6b:50:d7:a7:e1:54:b8:29:80:b5:f1:a6:52:7c:c0:
46:55:d3:75:58:01:f6:89:d8:2d:3c:16:22:a4:49:
3b:27:de:0c:c2:0f:17:80:18:53:1c:11:d6:82:96:
89:8a:c0:ce:36:7c:3f:46:77:df:0d:8f:22:83:0d:
68:7b:85:0c:db:57:8f:78:12:5b:7c:f5:ac:86:48:
36:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:55:91:D2:59:71:C4:3F:99:0C:15:84:7F:86:4D:9E:E4:BC:09:25
X509v3 Authority Key Identifier:
keyid:3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/lFWR0llxxD-ZDBWEf4ZNnuS8CSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/PijW8T41ndC7RTSiRlWXTFfSsP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:db86::/32
Signature Algorithm: sha256WithRSAEncryption
0a:7b:3b:16:bb:ce:f7:44:61:f6:d2:57:f6:5d:f6:cf:78:dd:
7a:2c:bd:ac:7c:00:69:91:51:ba:2b:37:18:9b:8f:7e:26:64:
1f:ca:e0:61:3b:5d:6c:f6:b9:d8:fd:37:ca:a4:c4:31:65:a6:
98:dc:17:bf:32:ce:c5:9a:91:a6:17:be:3c:70:74:c8:ac:b4:
ea:e3:1d:33:70:6c:68:ee:d8:6e:5c:d0:85:22:9d:38:ad:09:
1e:8d:c6:71:c3:a6:b6:bf:59:11:21:3c:dd:62:bf:a9:1e:91:
54:57:75:3a:f3:2a:f1:ee:43:df:87:6d:42:03:ef:28:b8:19:
82:4e:08:4a:38:53:06:10:0f:45:26:73:40:73:47:d2:0e:52:
db:10:31:18:6c:6b:74:ef:d6:a3:bf:e9:e9:a5:28:47:4b:1a:
59:33:77:e9:59:cc:40:af:ed:db:3c:63:88:f5:ce:bb:43:d4:
b1:0e:ef:47:cc:a9:49:8b:64:be:10:3d:06:10:16:10:68:f6:
f0:99:53:f1:34:14:f7:41:76:2c:c1:13:55:5d:0b:0b:e5:e0:
c7:a4:82:89:f6:98:ee:8e:25:e5:27:47:03:de:31:08:43:8a:
1a:09:a1:cf:3e:74:44:98:ef:e4:87:c6:de:18:ad:15:da:19:
fd:0a:b9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:11 2024 by rpki-client on console-ams.rpki-client.org