Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/JDtuNbrEScVSNhLAu-cTB1zaOKg.roa
File: JDtuNbrEScVSNhLAu-cTB1zaOKg.roa (raw, json)
Hash identifier: Ee91rz2SmBiUE2czObAsHkMnRVUrZ+u55lV77j2V6Qg=
Subject key identifier: 24:3B:6E:35:BA:C4:49:C5:52:36:12:C0:BB:E7:13:07:5C:DA:38:A8
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018572BA6F0835A4DC80958101659FC4AB4B
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/JDtuNbrEScVSNhLAu-cTB1zaOKg.roa
Signing time: Mon 02 Jan 2023 13:44:58 +0000
ROA not before: Mon 02 Jan 2023 13:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39355
IP address blocks: 2a0c:6dc0::/29 maxlen: 56
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:6f:08:35:a4:dc:80:95:81:01:65:9f:c4:ab:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 2 13:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=243b6e35bac449c5523612c0bbe713075cda38a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:61:4e:66:65:de:29:73:0c:86:07:09:6c:86:
13:5f:12:b3:31:76:ba:d9:cb:52:3b:5c:36:e8:65:
53:9e:8c:21:90:f3:1c:b9:a1:5a:13:d1:2a:a5:a5:
08:d1:6f:20:4b:f4:e7:dd:4a:b6:d6:4c:4d:71:e4:
b3:23:aa:74:dc:3d:a9:35:9f:2e:b4:d1:b4:49:1d:
c9:2a:b4:3d:7c:97:3c:70:f2:61:69:11:7b:53:95:
ad:26:5d:6d:be:f8:67:72:13:8b:83:f9:2b:0e:fb:
15:cb:06:2f:c3:08:21:ce:29:73:e0:5e:bd:66:0d:
0a:10:8b:54:e3:8b:2a:0b:fe:81:a7:91:21:c9:1a:
6f:51:69:64:5a:33:b0:09:87:9e:20:47:58:38:6e:
4e:b6:65:38:ef:a3:da:dd:95:b5:45:3b:24:d0:31:
f2:fa:e7:b2:6e:95:68:bb:35:48:40:70:00:10:05:
68:56:c2:95:c0:c1:02:44:e2:d0:a1:5a:43:d0:59:
0c:b2:d3:01:86:02:5d:b6:51:89:62:86:c3:bf:4e:
3d:04:9c:8e:10:e3:65:22:fd:5a:a0:fa:3f:bc:cf:
bb:a4:d0:23:ec:ec:fd:bc:02:7f:a8:26:ca:e0:8f:
d0:7c:f8:cd:1e:4f:34:ec:ed:c7:0a:ea:17:78:a8:
75:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3B:6E:35:BA:C4:49:C5:52:36:12:C0:BB:E7:13:07:5C:DA:38:A8
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/JDtuNbrEScVSNhLAu-cTB1zaOKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:6dc0::/29
Signature Algorithm: sha256WithRSAEncryption
87:a2:7e:3e:70:86:d5:c6:30:1d:2e:a8:44:48:21:06:55:96:
af:90:10:9c:ce:bb:67:1e:3d:fd:61:75:12:68:db:ec:c0:f7:
9a:5a:b2:46:e9:02:48:ac:41:15:bc:4c:37:b7:1b:2c:50:8a:
bb:56:29:2a:1b:30:02:30:66:8f:7d:45:e1:3c:1a:1f:a2:e9:
16:03:f0:b9:1b:95:b8:60:53:fe:a5:fa:a5:26:0f:43:c0:7e:
c5:33:ca:bc:aa:33:a6:fd:9f:70:78:59:c7:5c:8d:37:6e:2c:
0a:72:39:a2:fa:a0:52:e6:6c:40:78:52:24:77:47:86:59:79:
e1:57:ae:73:7f:fa:67:32:92:ea:c7:fb:a3:fc:55:dd:b3:5d:
83:a0:fe:ec:4c:52:8e:b0:30:f7:4c:56:d0:a0:b2:4c:f0:f5:
8e:d9:92:15:ef:bd:82:58:dc:0c:88:7b:e8:94:9e:5d:b5:26:
b1:1e:4d:05:79:3b:64:0e:50:52:73:61:b9:7f:2e:6b:d6:5d:
27:96:09:75:62:31:be:85:00:d2:70:2f:cc:8b:a6:75:1d:eb:
5c:0a:a6:eb:a8:a6:0c:d0:db:f8:41:d9:1e:21:e2:36:71:c3:
ff:b2:0b:3b:62:ba:b7:b1:1b:42:30:bc:32:85:d7:c3:23:ba:
95:ac:cc:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:49 2024 by rpki-client on console-fra.rpki-client.org