Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/3IvrI6vON4sqMnEO4NHWT-ypAuM.roa
File: 3IvrI6vON4sqMnEO4NHWT-ypAuM.roa (raw, json)
Hash identifier: vqZ5bNsZil1GkpsJ64VAlJVYA6bECCF870f6bccwT74=
Subject key identifier: DC:8B:EB:23:AB:CE:37:8B:2A:32:71:0E:E0:D1:D6:4F:EC:A9:02:E3
Certificate issuer: /CN=03452c9dbfc9e4193c7e55e0d2016568d9465285
Certificate serial: 018724E985E0E214252838B61C48BD17F32F
Authority key identifier: 03:45:2C:9D:BF:C9:E4:19:3C:7E:55:E0:D2:01:65:68:D9:46:52:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A0Usnb_J5Bk8flXg0gFlaNlGUoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/3IvrI6vON4sqMnEO4NHWT-ypAuM.roa
Signing time: Mon 27 Mar 2023 21:11:36 +0000
ROA not before: Mon 27 Mar 2023 21:11:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400304
IP address blocks: 2a11:a100::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:24:e9:85:e0:e2:14:25:28:38:b6:1c:48:bd:17:f3:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03452c9dbfc9e4193c7e55e0d2016568d9465285
Validity
Not Before: Mar 27 21:11:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc8beb23abce378b2a32710ee0d1d64feca902e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:bf:29:c7:04:ac:e8:7d:7a:9f:32:6a:76:aa:
ae:63:0e:be:f0:76:33:9f:f8:de:7c:0e:51:b8:ed:
b0:73:f3:59:69:1b:24:2a:03:44:d3:14:10:cd:ad:
9a:cd:21:94:ee:c1:e0:64:bd:f8:3e:04:b9:ac:ae:
6b:b6:ef:88:9d:e2:7d:5e:0d:df:a1:c6:a0:e4:2c:
eb:9c:f4:36:0b:34:44:81:84:46:2a:c2:89:d1:a1:
57:8f:c3:b8:20:c9:a6:5c:f3:79:7a:e6:9c:3b:33:
6f:db:26:66:bb:4c:ac:97:c2:67:05:b5:9e:e4:4b:
51:b0:dd:dd:bb:24:4c:e6:a6:a3:2c:51:18:b9:bf:
c7:13:8e:b4:76:f7:67:76:07:b4:b1:cb:cd:a3:1c:
c5:5c:63:1a:a2:db:d1:89:22:bb:b3:0e:fd:a2:00:
86:78:50:68:e0:5c:ea:47:aa:20:7e:46:7d:e9:f7:
1d:4c:c6:39:0c:49:14:fa:85:39:70:77:d6:bd:ba:
69:d4:a3:0e:c2:58:6a:be:5d:91:cd:c9:c2:9c:7a:
a5:18:bf:09:c7:dd:da:a2:6a:d7:0f:f7:bc:52:d6:
41:0b:51:69:2e:9f:29:99:3f:09:ec:99:ca:49:12:
7c:d3:d6:65:08:6a:49:fb:f8:ea:1f:27:ae:66:4d:
56:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:8B:EB:23:AB:CE:37:8B:2A:32:71:0E:E0:D1:D6:4F:EC:A9:02:E3
X509v3 Authority Key Identifier:
keyid:03:45:2C:9D:BF:C9:E4:19:3C:7E:55:E0:D2:01:65:68:D9:46:52:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0Usnb_J5Bk8flXg0gFlaNlGUoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/3IvrI6vON4sqMnEO4NHWT-ypAuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/A0Usnb_J5Bk8flXg0gFlaNlGUoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:a100::/29
Signature Algorithm: sha256WithRSAEncryption
70:1b:fb:dc:d9:ca:cd:5d:61:e8:a4:b0:58:99:32:26:80:80:
ed:b2:3d:1e:32:58:ca:85:9f:8f:f5:7e:61:bd:70:b4:e7:7d:
eb:b5:6c:4b:e8:d6:c4:6d:f1:f0:97:a2:1c:58:53:10:35:cc:
a9:59:ef:d8:84:5a:3d:4c:8d:ff:44:da:d5:6f:a0:48:f8:ab:
c5:70:df:7f:89:d6:ee:7a:05:a2:5c:f7:88:1c:16:5c:94:69:
50:e1:3d:3e:cf:9a:8a:81:10:e0:74:14:89:b7:d1:90:95:c9:
b9:65:e0:d3:bf:ad:f1:27:9f:d6:02:d4:8e:95:9e:b2:ed:aa:
8e:f2:00:ce:18:b5:8c:55:cf:d5:5b:64:b9:90:60:31:e8:39:
44:4d:61:de:2c:6a:04:bf:e2:f9:91:8c:37:b1:f0:af:48:12:
91:88:fd:ac:af:e3:11:ef:91:f6:56:a5:52:3f:52:cc:18:96:
31:2b:50:f7:81:ae:22:a9:37:c6:90:9c:70:92:5b:05:76:b0:
b0:a0:cf:91:9d:a1:5b:c9:eb:28:67:7e:f2:25:dd:1a:83:ed:
ba:a0:5f:19:2c:7a:1e:4a:c1:08:b2:f3:fa:5e:e2:28:f3:1d:
a8:23:8d:39:ec:e6:fe:e7:ed:51:10:ea:a7:c8:79:f2:f9:32:
85:0f:c7:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:10 2023 by rpki-client on console-fra.rpki-client.org