Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/PSoWCRmuujscDAi-2OdjjvCbo60.roa
File: PSoWCRmuujscDAi-2OdjjvCbo60.roa (raw, json)
Hash identifier: dYZfOVUqGJoU5pc9KiYef0PIWGzjYq5TfS1Zdzzdd+4=
Subject key identifier: 3D:2A:16:09:19:AE:BA:3B:1C:0C:08:BE:D8:E7:63:8E:F0:9B:A3:AD
Certificate issuer: /CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Certificate serial: 01928268FF95B1DDDFC1F307839A2CA09426
Authority key identifier: 78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/PSoWCRmuujscDAi-2OdjjvCbo60.roa
Signing time: Sat 12 Oct 2024 20:26:12 +0000
ROA not before: Sat 12 Oct 2024 20:26:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57271
IP address blocks: 2a0d:cdc4::/32 maxlen: 32
2a0e:eec3::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 17 Oct 2024 20:09:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:82:68:ff:95:b1:dd:df:c1:f3:07:83:9a:2c:a0:94:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Validity
Not Before: Oct 12 20:26:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d2a160919aeba3b1c0c08bed8e7638ef09ba3ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:22:4e:32:6b:85:56:58:c7:7c:06:55:f7:9e:
29:43:2f:37:af:2e:b3:2a:84:fa:a0:cb:ff:95:09:
a6:e2:1e:f6:ba:5d:aa:16:27:49:53:dd:a9:72:f3:
0f:da:4f:85:d9:34:84:09:d6:70:6a:6a:df:ce:25:
35:3f:80:b6:18:a6:b3:74:d3:c0:ce:03:2c:e0:02:
b4:3a:5e:7e:3e:4c:ec:cf:07:1d:69:61:da:09:60:
16:f2:3d:6e:ae:00:4d:c9:ed:a5:a7:f2:4e:60:50:
d4:de:47:3e:1a:ac:98:f7:f8:75:a0:6d:35:a6:20:
75:05:d7:d9:db:03:fa:56:40:98:86:67:dc:6c:4c:
5e:8d:a3:5f:1c:ed:b8:25:3b:92:45:3e:f0:d8:39:
97:5e:dd:03:5e:47:71:f0:b4:0a:d4:af:72:72:ff:
22:be:5e:a6:a4:39:8f:f9:63:76:e8:1c:5a:b9:f5:
e1:34:2f:8a:9b:33:91:d3:58:38:65:87:8b:09:5c:
7f:3b:42:02:11:34:ad:10:d1:53:e3:4b:e2:4a:d5:
29:b6:7e:a8:72:df:2f:d6:6b:05:5e:cd:12:4c:a3:
62:79:ee:98:c9:a4:1a:90:39:5b:40:85:a3:7b:a9:
d7:b1:98:06:41:a6:a0:65:33:19:fd:3a:48:fc:c9:
83:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2A:16:09:19:AE:BA:3B:1C:0C:08:BE:D8:E7:63:8E:F0:9B:A3:AD
X509v3 Authority Key Identifier:
keyid:78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/PSoWCRmuujscDAi-2OdjjvCbo60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/eANVjqblFls4dgl691vx6SoULPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:cdc4::/32
2a0e:eec3::/32
Signature Algorithm: sha256WithRSAEncryption
7a:f9:e8:44:d9:11:e0:70:48:8c:c9:0f:67:46:0b:c6:e2:43:
73:e8:bc:14:cd:83:7a:1f:ed:5b:68:13:0a:93:65:24:f0:43:
0b:9c:ff:a1:c4:8e:55:28:75:38:1b:9c:95:2e:16:31:4c:cb:
98:19:d0:f6:f5:08:bd:50:d4:3b:72:9b:32:32:9d:8c:a7:f4:
78:27:87:ec:b0:c4:62:fc:ad:a2:23:a1:a7:92:de:8c:5f:63:
a3:6b:02:9c:d0:2a:e9:5a:1a:9e:3e:44:e5:e6:8e:de:ce:f8:
f9:90:5f:69:9d:a3:7a:56:46:91:9c:75:d4:54:4a:8d:66:17:
a8:71:fa:aa:c5:0b:e5:40:24:ab:69:76:41:99:0f:fd:81:d1:
5c:a7:50:54:5a:23:96:02:0b:14:fe:91:74:10:61:30:74:4f:
0c:52:2c:5f:be:9f:1e:c3:01:93:85:6d:00:83:d9:d2:d4:04:
ec:e3:7f:5c:39:6f:7a:34:ea:9d:0b:46:45:b0:5a:a8:90:13:
2b:9d:3e:45:45:6b:f2:7f:b2:e6:2b:7a:8f:20:38:61:e1:d1:
18:14:cd:5b:36:70:86:19:63:d9:01:92:f2:d9:e4:41:aa:79:
02:ca:5b:a2:bb:58:57:b1:bf:34:d0:de:86:8d:a2:ad:2f:63:
61:d5:44:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 23:19:43 2024 by rpki-client on console-fra.rpki-client.org