Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/P7x9gMGRVi7nf_7YleEooUUklnA.roa
File: P7x9gMGRVi7nf_7YleEooUUklnA.roa (raw, json)
Hash identifier: oe2KgfmdtrIh4zBN4mGKG0WcDUn/7pP+4RdbPNPOc60=
Subject key identifier: 3F:BC:7D:80:C1:91:56:2E:E7:7F:FE:D8:95:E1:28:A1:45:24:96:70
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0185714C3DD7C15A0A3CEA6A59E614E77288
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/P7x9gMGRVi7nf_7YleEooUUklnA.roa
Signing time: Mon 02 Jan 2023 07:04:59 +0000
ROA not before: Mon 02 Jan 2023 07:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26415
IP address blocks: 2a00:11c0:48:5::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:3d:d7:c1:5a:0a:3c:ea:6a:59:e6:14:e7:72:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 2 07:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fbc7d80c191562ee77ffed895e128a145249670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:fe:66:48:36:79:fd:02:87:7a:3d:0c:52:2e:
3a:69:23:16:00:41:8d:17:7e:ed:c6:a0:f9:a7:7b:
2d:02:cf:49:10:47:c0:4b:80:75:86:ef:85:40:55:
19:99:a7:b5:88:98:33:69:44:c8:d2:71:77:12:a7:
af:7e:c6:00:b6:08:81:df:c4:76:b4:9f:77:f1:1f:
41:b3:40:0d:de:a6:c4:5c:e5:c3:89:2d:0a:da:87:
d8:53:67:3a:68:12:8c:2f:5d:6a:89:12:c2:f3:b1:
73:1e:54:dd:71:a8:0c:09:85:91:46:f4:81:a2:ec:
17:30:0d:ec:74:05:90:ff:da:59:34:32:8f:1f:67:
2a:f8:af:d0:b3:21:85:2a:e3:10:02:f3:40:3f:b4:
0c:d7:83:f0:24:63:fe:b1:ae:af:47:54:ae:be:f5:
bc:68:d5:14:a9:b4:57:c8:13:e2:2d:dd:dc:a1:e1:
25:2d:1f:ea:3a:61:81:f3:b6:86:5c:72:5c:16:7d:
9a:15:b5:30:4f:00:e7:57:31:96:30:c5:e5:0b:d3:
e5:00:d5:2f:00:d2:9c:f1:9b:0f:95:7d:e6:b4:c2:
bd:e0:31:98:49:7a:ad:44:4b:fa:24:9a:3c:92:5d:
fe:68:ac:fe:c9:00:4d:b0:56:70:83:58:b4:1c:34:
b3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BC:7D:80:C1:91:56:2E:E7:7F:FE:D8:95:E1:28:A1:45:24:96:70
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/P7x9gMGRVi7nf_7YleEooUUklnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:11c0:48:5::/64
Signature Algorithm: sha256WithRSAEncryption
28:72:41:2e:a1:ef:c3:d7:ba:ab:3b:3c:78:2d:d9:6b:dd:11:
92:16:b3:79:8f:25:1a:ef:20:95:31:58:7a:ab:ec:95:bc:0e:
65:1c:fa:ca:23:04:d4:d0:89:78:d9:5e:6f:9e:20:9a:62:9b:
98:4c:aa:4f:e6:9a:8f:9c:df:0d:df:8b:50:d8:8a:c7:b6:23:
20:c1:e1:41:20:26:a3:16:fe:fe:54:a3:12:23:42:04:62:c9:
d3:33:55:f7:1e:1c:cb:fe:3f:a7:00:77:9d:4a:73:9b:34:c1:
94:93:eb:67:a8:3d:9e:26:58:97:3f:c6:2a:b7:57:27:5b:da:
be:87:89:c2:ca:e0:ba:36:5d:ff:06:92:33:8f:c5:d3:43:56:
d8:f8:8c:9c:a2:a7:07:af:ad:ce:bb:f9:3c:1a:f8:c9:8d:25:
35:c5:fa:fa:53:9b:04:d1:96:24:a9:dc:25:b8:18:ca:7d:93:
92:4d:c4:a3:02:c2:fa:75:db:7c:ff:16:44:c4:c7:42:9b:e3:
69:a9:1d:92:8c:03:55:5d:5e:a9:be:39:1d:59:d9:6f:67:82:
a7:ba:16:6c:d6:b3:8e:dc:f6:af:11:c3:8f:09:05:cd:9f:c7:
57:3a:07:cb:2d:b5:a0:aa:42:68:b8:9c:92:71:d8:72:ab:7d:
ed:3a:ea:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org