Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/X3tFXuP5fcqqYgNczD-uh9e-vVc.roa
File: X3tFXuP5fcqqYgNczD-uh9e-vVc.roa (raw, json)
Hash identifier: GTRST/B3nDz3QOIUG6+1zgKlUPYkw2LyV16qCxQMWv8=
Subject key identifier: 5F:7B:45:5E:E3:F9:7D:CA:AA:62:03:5C:CC:3F:AE:87:D7:BE:BD:57
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C415F98F6FCC969C15DE08A204992E4
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/X3tFXuP5fcqqYgNczD-uh9e-vVc.roa
Signing time: Sun 01 Jan 2023 07:35:01 +0000
ROA not before: Sun 01 Jan 2023 07:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57401
IP address blocks: 2a0c:e640:1000::/44 maxlen: 48
Validation: Failed, certificate revoked on Sun 18 Jun 2023 21:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:5f:98:f6:fc:c9:69:c1:5d:e0:8a:20:49:92:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f7b455ee3f97dcaaa62035ccc3fae87d7bebd57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b3:4a:c3:b0:36:fa:14:4a:8e:c1:00:a6:c4:
4a:61:a8:df:9a:ac:9c:8a:3b:3a:21:a1:5a:11:5c:
d2:a2:f1:1a:6c:3a:63:19:4e:b4:8f:ec:51:35:5c:
93:cb:50:8c:56:d9:b0:b1:ce:8d:f5:cf:4a:3d:a2:
fd:aa:5b:f7:63:c0:2c:56:11:98:1d:7c:da:44:26:
31:5f:4c:d0:24:a5:73:41:74:95:02:5a:55:e2:0b:
94:e7:78:1f:2f:8d:25:df:7b:48:17:00:1c:d3:44:
a7:be:78:81:e3:f2:13:f1:38:48:18:aa:35:77:b8:
9d:f2:31:c1:14:f1:de:89:db:8a:fa:b8:dd:8c:c4:
8c:a7:a4:f1:a8:ed:0a:0a:50:40:e1:ec:dd:7e:0e:
3c:7b:5e:cf:c6:41:56:9b:70:16:06:d6:5b:b6:82:
53:5e:dd:ac:19:14:c3:d5:a3:53:1a:6b:a2:4a:c9:
a4:c1:37:c7:5a:e0:88:aa:21:34:7b:4e:40:e1:98:
7b:f6:d8:03:32:2b:94:ae:6d:ee:3e:df:62:5b:6b:
dd:de:15:91:a7:3d:93:aa:39:79:75:df:ea:23:b8:
c1:20:1a:0f:5c:17:33:5b:e0:97:39:3f:c4:f3:04:
61:cf:3a:f4:94:ce:33:d9:07:a0:c3:bc:7a:48:fe:
2e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7B:45:5E:E3:F9:7D:CA:AA:62:03:5C:CC:3F:AE:87:D7:BE:BD:57
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/X3tFXuP5fcqqYgNczD-uh9e-vVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e640:1000::/44
Signature Algorithm: sha256WithRSAEncryption
98:91:8c:43:38:0c:5b:c6:cc:b8:3e:c6:35:09:64:14:de:1d:
74:79:d2:69:55:b9:50:7c:7a:7c:f7:40:3f:c1:43:e6:98:bf:
27:ee:c1:5f:d5:8f:ce:82:b5:8e:c8:f9:b5:e4:1c:89:a6:5c:
21:2a:a9:c0:d4:fc:39:d4:db:ce:45:80:7b:5a:ca:3c:12:49:
33:7d:8d:47:15:d2:f9:6b:f2:81:48:69:a4:71:75:6c:bb:33:
31:47:5b:d1:a8:16:f5:02:f6:cf:85:93:fd:40:d7:26:15:69:
a4:22:f0:6a:d6:85:8c:d3:35:7e:75:4d:6d:44:52:86:78:f3:
8f:81:f3:8f:2a:1a:89:25:90:14:18:f5:15:c4:18:a0:5d:e2:
a4:9a:a6:68:a5:0e:6d:42:bf:aa:08:e7:a1:bf:bd:0e:00:86:
fc:6f:d9:a5:d0:f1:bd:0c:1b:3e:ec:8e:45:2e:52:73:f8:39:
da:58:ce:64:09:6f:9f:01:5f:e7:2b:0f:f7:a0:30:2c:cf:bc:
af:fe:30:84:e7:bc:b2:d4:d6:8f:f0:e4:26:7f:b1:fb:96:9b:
10:ae:6f:fc:31:8f:ad:57:c7:79:b9:02:db:37:a0:5b:af:6e:
50:1a:92:3c:88:58:bc:af:ce:2b:5e:8b:b1:74:73:5f:b1:d8:
56:39:d2:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:48 2024 by rpki-client on console-ams.rpki-client.org