Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/IxdhMiCC7_2FmvHfc-CaB7P-DkQ.roa
File: IxdhMiCC7_2FmvHfc-CaB7P-DkQ.roa (raw, json)
Hash identifier: xtluBK2E3dl9j034fv3vDJIWm7kkK/6WOxdohXjvRzM=
Subject key identifier: 23:17:61:32:20:82:EF:FD:85:9A:F1:DF:73:E0:9A:07:B3:FE:0E:44
Certificate issuer: /CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Certificate serial: 018E9AB87B0109F21F6901C5EC06CC9B2C34
Authority key identifier: 78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/IxdhMiCC7_2FmvHfc-CaB7P-DkQ.roa
Signing time: Mon 01 Apr 2024 17:32:45 +0000
ROA not before: Mon 01 Apr 2024 17:32:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57271
IP address blocks: 2a0d:cdc4::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 12 Oct 2024 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9a:b8:7b:01:09:f2:1f:69:01:c5:ec:06:cc:9b:2c:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Validity
Not Before: Apr 1 17:32:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=231761322082effd859af1df73e09a07b3fe0e44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:22:4a:c4:59:f2:ad:b6:9c:5a:d9:2b:b9:eb:
24:d8:f2:b7:29:f8:4e:d9:af:df:a3:7b:1c:fd:9f:
58:5b:9f:5a:9d:df:2d:5d:84:ef:12:93:87:19:bc:
6b:59:be:d8:32:33:f1:5c:a9:41:52:f7:1f:c1:8a:
f3:fb:c7:23:d0:85:09:ff:5f:02:04:45:38:54:16:
0b:07:aa:5f:8d:2e:fc:af:aa:5f:68:db:15:cd:ba:
4a:aa:f2:99:30:e7:b1:fe:86:b0:33:8a:fd:5d:43:
81:bf:30:24:70:4f:3c:f6:ac:00:1c:24:f7:e9:ac:
69:5d:e0:cf:b9:70:ff:db:25:31:38:ca:5f:ff:1f:
f2:ce:b5:9b:d2:3a:e6:7e:36:1e:71:42:87:68:a3:
b1:9f:54:d3:94:d0:1d:00:ad:b4:3c:b9:a5:a9:3e:
9b:67:22:b5:11:41:3e:7d:da:a0:75:e3:d1:b9:e7:
43:e8:03:e6:b6:d9:03:fd:6f:37:c7:11:76:6f:16:
3d:50:43:64:e1:35:22:21:f7:dc:e9:ed:b6:48:e3:
40:2a:2f:da:38:c2:2c:c9:dc:7a:5d:03:31:1d:11:
7c:07:57:50:18:53:f3:aa:4a:8a:b1:9b:06:ef:ff:
38:61:cd:01:2a:60:6d:ba:b4:f5:60:a4:3d:96:3c:
61:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:17:61:32:20:82:EF:FD:85:9A:F1:DF:73:E0:9A:07:B3:FE:0E:44
X509v3 Authority Key Identifier:
keyid:78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/IxdhMiCC7_2FmvHfc-CaB7P-DkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/eANVjqblFls4dgl691vx6SoULPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:cdc4::/32
Signature Algorithm: sha256WithRSAEncryption
96:e6:7a:d2:8e:a2:52:d4:d2:cd:a3:d6:d4:e0:16:58:d5:9b:
8c:35:0e:0a:2e:f4:f9:cd:39:80:87:dc:1d:38:01:d6:a1:93:
ff:5b:c9:a3:be:dd:f5:69:4e:6f:6e:c2:39:07:cb:07:7d:f3:
cf:89:fa:02:69:b1:21:42:b3:dc:51:8e:37:1e:18:b6:9c:54:
da:00:58:89:d2:3f:01:aa:5b:25:49:7f:ea:e3:0e:48:03:d1:
44:45:58:0b:af:b3:49:f8:e6:52:07:ff:c8:80:26:9f:b2:e1:
d6:b4:10:81:87:73:82:e5:b6:b2:26:39:99:c4:2f:76:77:e4:
81:15:b2:e7:3f:07:ca:df:5f:2d:d7:b5:3f:6a:9e:4c:bd:43:
5e:3c:ef:72:5a:24:b0:ee:0d:a1:e2:b0:74:30:7d:1d:f4:6c:
0f:dc:d1:a0:6f:73:01:1e:6f:b6:23:45:56:85:e7:f4:9d:74:
6a:82:36:00:9f:fd:2a:47:e8:e3:e8:50:dd:22:cd:88:02:f4:
2a:71:ea:da:e8:77:43:85:5b:7f:5a:5d:b7:a1:d6:fc:60:b7:
a1:bc:f5:db:8b:25:75:ec:11:35:f3:a3:cf:c7:01:5b:14:a9:
6e:6f:de:5e:06:a1:72:09:fd:c8:8b:42:4b:0e:14:1f:27:05:
38:4c:7d:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 22:36:01 2024 by rpki-client on console-fra.rpki-client.org