Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/lRjYc6pKII43AOvplNm3b_E5hF4.roa
File: lRjYc6pKII43AOvplNm3b_E5hF4.roa (raw, json)
Hash identifier: 2W6IYeq4Cs6Oql8g1UO/gZKIHwm9GzclRyA32nVvgDU=
Subject key identifier: 95:18:D8:73:AA:4A:20:8E:37:00:EB:E9:94:D9:B7:6F:F1:39:84:5E
Certificate issuer: /CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Certificate serial: 0189995C4056C6F0DFECDE5C5D2E23655B64
Authority key identifier: 3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/lRjYc6pKII43AOvplNm3b_E5hF4.roa
Signing time: Thu 27 Jul 2023 21:58:27 +0000
ROA not before: Thu 27 Jul 2023 21:58:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198571
IP address blocks: 2a07:db83::/32 maxlen: 32
2a07:db82::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 02 Sep 2023 10:21:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:99:5c:40:56:c6:f0:df:ec:de:5c:5d:2e:23:65:5b:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Validity
Not Before: Jul 27 21:58:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9518d873aa4a208e3700ebe994d9b76ff139845e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5e:45:65:f7:a9:6a:f8:1c:8a:f5:53:ae:56:
95:68:84:38:45:f7:6b:a7:15:22:cd:2b:73:7e:ea:
e3:37:d5:dd:d0:f7:9f:ab:88:b2:95:f9:4b:28:7c:
9a:a4:ff:77:5a:10:af:d2:21:df:38:62:72:8e:40:
82:ae:c2:19:8a:2c:c9:79:c8:54:a4:9d:8f:33:04:
54:65:2c:3a:f1:41:90:f9:2d:f5:cd:1f:29:76:f4:
32:20:21:ad:0c:cc:02:04:3b:c6:c7:6b:f1:87:fc:
53:13:2a:b4:4e:9e:99:b7:86:ac:37:4f:de:32:c8:
74:5a:57:51:27:a4:88:a0:4e:a5:8a:eb:d1:41:89:
a6:4b:d0:3c:81:92:ce:d7:63:b6:9c:d0:f5:89:0a:
44:9b:41:c3:c2:a4:0c:c6:4e:5e:3c:e9:fb:6b:86:
6a:4e:16:e0:4a:85:2b:a0:aa:f7:69:6f:bf:44:0e:
e2:05:09:71:d9:71:50:00:b7:a7:57:02:3b:78:c8:
e6:81:bf:b4:69:d6:70:8b:5e:0d:b5:ba:da:73:d8:
bc:e6:75:41:48:bb:b3:8e:93:30:33:df:9a:82:a7:
44:c3:7b:ba:11:5e:76:cc:57:2d:fe:ee:10:4e:63:
5f:37:e4:f7:bd:34:0e:cc:9d:45:11:95:54:7f:14:
26:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:18:D8:73:AA:4A:20:8E:37:00:EB:E9:94:D9:B7:6F:F1:39:84:5E
X509v3 Authority Key Identifier:
keyid:3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/lRjYc6pKII43AOvplNm3b_E5hF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/PijW8T41ndC7RTSiRlWXTFfSsP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:db82::/31
Signature Algorithm: sha256WithRSAEncryption
aa:45:44:08:3d:9a:0d:26:9b:de:79:b5:98:5b:c2:6e:45:98:
ca:d4:8c:b6:18:1b:3a:aa:17:22:53:78:f5:d5:44:bc:8a:33:
1a:8f:0b:6e:75:00:99:53:34:e9:9f:48:51:c8:b1:1c:4b:c9:
09:73:0b:75:09:2e:b2:d2:49:22:d2:9a:b7:42:fe:70:af:e7:
4a:89:67:42:2c:a2:fb:8a:7f:75:12:c5:ff:f5:84:bc:81:a0:
b5:20:3f:ad:9b:4c:4a:be:b0:d0:7d:86:12:c6:b4:a5:12:48:
5f:d8:87:af:2b:56:84:d8:cc:9f:e9:2e:2c:a6:66:bc:0b:71:
6a:29:8e:0f:44:a7:dc:fa:d0:11:3c:5a:72:c7:44:c9:33:c7:
fa:35:17:d8:b8:e6:9d:5c:ab:2b:4d:90:60:77:4a:72:e7:ae:
5c:8c:e2:d4:d0:88:cd:cd:d8:e3:6f:4b:c0:3e:41:a0:74:eb:
cd:76:33:03:47:e3:c2:83:78:46:78:68:e7:4c:69:e7:99:60:
2b:95:b6:96:e0:39:f8:95:87:fc:a2:02:e4:3c:9c:35:6b:45:
8d:d6:6b:0e:c9:67:a9:5f:d4:1f:2e:0b:6d:64:a6:6c:5a:a5:
99:d8:09:31:3f:f7:90:17:c3:72:11:ee:ad:df:88:25:96:39:
65:89:98:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:14 2024 by rpki-client on console-fra.rpki-client.org