Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/3y73mAqv-UqEadwJw8UisiGjCAI.roa
File: 3y73mAqv-UqEadwJw8UisiGjCAI.roa (raw, json)
Hash identifier: gZ/XGYtMqmTyP9hLpi3HfRohwckhEUrjqLRUWv7EMik=
Subject key identifier: DF:2E:F7:98:0A:AF:F9:4A:84:69:DC:09:C3:C5:22:B2:21:A3:08:02
Certificate issuer: /CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81
Certificate serial: 019189EAA7DCB2F456E973AAA670BB016B0D
Authority key identifier: 69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/3y73mAqv-UqEadwJw8UisiGjCAI.roa
Signing time: Sun 25 Aug 2024 14:22:22 +0000
ROA not before: Sun 25 Aug 2024 14:22:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211380
IP address blocks: 2a01:e280:b200::/40 maxlen: 128
Validation: Failed, certificate revoked on Sun 25 Aug 2024 16:21:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:89:ea:a7:dc:b2:f4:56:e9:73:aa:a6:70:bb:01:6b:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81
Validity
Not Before: Aug 25 14:22:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df2ef7980aaff94a8469dc09c3c522b221a30802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6b:3b:e2:a0:38:79:ef:83:3e:bf:5f:f4:07:
cf:e8:82:78:06:9f:47:1c:af:ab:4e:09:f6:b6:4a:
af:03:d2:3a:ac:c2:3b:b8:37:48:38:02:d5:ca:51:
97:12:12:6e:f7:23:c6:61:23:07:96:aa:39:ed:f6:
75:66:18:1d:5a:29:94:75:6e:3a:df:91:67:b7:c1:
fe:36:fd:d8:20:b0:71:a0:63:a9:cf:ed:3e:19:ff:
f8:71:dd:a1:46:b5:5f:45:f7:59:b2:73:01:50:d3:
b8:9c:b7:d9:7f:c7:1d:2b:1f:16:29:25:27:cc:c2:
5b:a1:b4:c9:8c:d1:03:32:61:66:df:1a:dc:85:3f:
f6:48:60:64:09:69:e8:26:4b:f1:e8:10:ad:23:9c:
e9:93:0a:d8:bb:74:96:59:e3:f7:3c:0e:3f:a6:2c:
4a:ee:03:58:e6:6e:d0:9d:eb:81:18:63:14:c0:65:
f3:33:77:b7:55:a1:9c:ed:ac:aa:bb:9b:3a:2b:77:
22:6a:24:a8:94:a4:12:d1:f0:cf:19:68:a9:e9:a3:
15:d1:c3:3f:62:88:ca:20:f5:56:a6:8e:05:a7:e7:
a5:e2:57:a6:35:be:7b:a1:32:a5:b9:49:e9:95:9b:
e0:15:52:36:e0:45:91:f4:77:d1:ad:27:cf:e4:65:
63:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:2E:F7:98:0A:AF:F9:4A:84:69:DC:09:C3:C5:22:B2:21:A3:08:02
X509v3 Authority Key Identifier:
keyid:69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/3y73mAqv-UqEadwJw8UisiGjCAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:e280:b200::/40
Signature Algorithm: sha256WithRSAEncryption
4c:0c:87:b0:06:c7:a8:56:02:d0:90:8b:25:3c:aa:1c:20:b2:
29:73:a0:62:04:84:04:f2:7c:fd:4c:40:77:21:98:9f:f4:2e:
df:2e:29:62:af:67:c2:b8:bc:52:89:af:4e:ba:4b:cd:c1:7d:
db:e5:9e:53:63:4c:97:8b:22:f6:51:6d:4e:86:e0:95:52:9d:
0c:42:0e:3c:1b:05:d2:24:9f:37:ff:4b:df:8e:bb:7f:04:e2:
7c:1e:f5:19:70:83:9a:e3:5b:60:8b:26:fe:9f:a5:8b:74:39:
58:93:25:72:03:e1:30:c2:95:bf:c2:e0:9d:6d:ab:a6:3d:5e:
61:07:6e:b9:95:fc:b2:75:ad:f1:7f:3f:84:d8:bc:0d:81:48:
fd:f6:a9:8c:36:65:88:8a:31:2f:97:1f:06:02:ae:73:ab:f0:
50:0a:7a:ac:13:82:10:22:50:49:e2:c6:09:17:33:e5:7d:5b:
40:f5:62:8c:fc:3d:b6:52:7f:57:61:0e:62:f7:16:f8:35:7b:
ed:34:fc:11:98:0d:31:6b:71:ea:48:ea:76:c6:d5:b9:0c:20:
6b:d9:1a:7d:57:53:ab:79:fe:68:39:1d:fb:37:b0:2a:77:9c:
05:a7:7b:26:65:db:26:9f:ac:af:b1:c8:b4:51:ac:e0:98:5f:
84:3f:55:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 25 18:56:15 2024 by rpki-client on console-fra.rpki-client.org