Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/3v53PzU-tNiFSqbzyxaYjR0eu5Y.roa
File: 3v53PzU-tNiFSqbzyxaYjR0eu5Y.roa (raw, json)
Hash identifier: aFM8f/j95RxHNyZlNjRDBal/iPnmhOqJznxHpy9/hPw=
Subject key identifier: DE:FE:77:3F:35:3E:B4:D8:85:4A:A6:F3:CB:16:98:8D:1D:1E:BB:96
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 0187AA3B8B0E430C859653D992169194F4D4
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/3v53PzU-tNiFSqbzyxaYjR0eu5Y.roa
Signing time: Sat 22 Apr 2023 18:30:41 +0000
ROA not before: Sat 22 Apr 2023 18:30:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51741
IP address blocks: 2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:aa:3b:8b:0e:43:0c:85:96:53:d9:92:16:91:94:f4:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Apr 22 18:30:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=defe773f353eb4d8854aa6f3cb16988d1d1ebb96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:89:2d:d5:36:2c:8e:8f:d8:44:89:30:0d:46:
b1:af:c3:99:ea:26:7e:87:59:13:54:30:d2:22:af:
53:6e:d7:2f:2b:9d:24:15:f6:c0:93:51:c3:56:97:
85:e2:d6:0f:0c:e7:17:8f:ab:34:42:c8:df:93:cd:
d8:a5:37:7b:9c:d8:d3:56:53:c6:dd:57:2e:15:7f:
a4:c2:6a:0a:9c:e4:71:5a:82:41:11:db:ca:c0:b3:
3f:a2:a7:b4:35:6d:f0:fc:68:2f:d6:19:42:6a:a9:
80:e5:c7:9d:54:d9:90:6a:5f:26:48:9c:82:40:60:
f9:99:56:75:ee:4d:3a:cf:d3:8c:01:62:03:ac:0b:
9f:bf:2d:a7:a8:28:81:58:a3:05:c8:c3:2e:40:19:
d8:75:63:c0:cc:bd:50:9b:14:85:1f:f4:83:5a:40:
2b:d6:20:ec:f4:c2:6c:be:d1:f5:13:0e:6f:40:3d:
ac:08:38:20:75:1d:74:eb:9b:10:52:48:b3:4e:d0:
b8:72:8a:b4:49:56:b6:2e:15:c3:2a:4b:ee:ed:83:
2b:14:ef:2a:6a:1b:28:19:55:86:2c:1d:54:93:94:
a4:9e:5b:08:ea:92:c5:62:c9:29:78:ac:53:f6:bb:
ff:c8:10:e6:51:dc:bb:07:d1:26:6d:55:99:81:66:
4e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FE:77:3F:35:3E:B4:D8:85:4A:A6:F3:CB:16:98:8D:1D:1E:BB:96
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/3v53PzU-tNiFSqbzyxaYjR0eu5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
60:ed:8a:66:30:f9:97:f9:c0:71:6e:80:d4:21:08:fc:15:a8:
75:66:e2:6a:57:33:fc:30:33:e5:da:81:3c:03:c5:35:70:4a:
02:18:a8:8a:85:54:8b:a8:a4:9a:0e:d6:5c:d6:83:d4:8b:21:
8e:38:61:15:04:1e:a1:d9:62:25:65:0b:02:0d:c4:08:ec:71:
5f:3f:cf:97:1e:0c:2d:13:eb:02:71:7d:9f:4a:5f:92:17:34:
fa:f2:a9:3c:ee:10:85:61:66:84:23:01:44:21:0e:c0:05:07:
25:57:e8:a8:ed:10:b4:59:b7:2d:62:e8:bc:25:d2:c0:51:7e:
f4:89:71:d3:20:3f:90:a6:36:4d:b3:30:0a:e0:84:9f:89:ad:
a3:9b:25:f3:44:3e:d6:4d:47:eb:a4:c3:d7:c3:32:ab:79:8d:
9f:a8:3f:20:a0:5b:eb:e5:46:88:fe:32:4c:f9:9f:18:7f:5e:
65:8b:71:4e:70:ae:c8:ac:95:db:29:f8:f3:ef:a9:6e:f1:36:
94:7c:d1:95:fe:fe:7d:6c:e5:a5:d6:bb:0c:c4:f6:b7:ed:83:
be:7c:f6:1b:91:f4:51:44:fd:ce:89:40:60:93:d1:5e:3d:f3:
ac:55:bd:31:75:d8:11:a3:57:66:0b:2e:71:73:22:13:9c:e2:
c9:89:93:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:13 2023 by rpki-client on console-ams.rpki-client.org