Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/fDvQgfZ5VKIc8mmnhALigscc4z0.roa
File: fDvQgfZ5VKIc8mmnhALigscc4z0.roa (raw, json)
Hash identifier: ZLPpHdxp8+Q5w9ueTEJdXeS5iPnIQQyU9gkTyD6r4do=
Subject key identifier: 7C:3B:D0:81:F6:79:54:A2:1C:F2:69:A7:84:02:E2:82:C7:1C:E3:3D
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C41713E32FB2D9A359233B2C4AF72A5
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/fDvQgfZ5VKIc8mmnhALigscc4z0.roa
Signing time: Sun 01 Jan 2023 07:35:06 +0000
ROA not before: Sun 01 Jan 2023 07:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209650
IP address blocks: 2a0d:2687::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:71:3e:32:fb:2d:9a:35:92:33:b2:c4:af:72:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c3bd081f67954a21cf269a78402e282c71ce33d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:75:4c:d3:d6:82:58:85:d2:58:99:06:07:
8e:74:a5:40:07:ca:62:d9:40:83:51:83:a0:7d:c1:
89:f0:0d:cc:04:c3:57:b8:d5:4f:75:7f:a4:6a:2b:
4a:07:78:e1:4f:c1:a2:27:0f:e6:e9:33:62:9b:d4:
0b:cd:15:fd:de:20:40:fd:46:2e:51:3d:a0:2e:2a:
73:0a:7b:1a:95:0b:e8:46:49:36:3c:94:1d:aa:09:
70:84:67:73:56:54:03:fb:bb:e2:27:d5:bb:fe:fe:
62:a3:f9:c1:9c:7e:36:df:30:6a:8a:ad:80:c7:8a:
23:b5:ad:4e:4d:79:b0:2c:6a:89:73:1f:ef:df:ed:
55:d1:e9:e3:ff:16:f1:57:75:04:e5:f9:bd:00:05:
5f:ec:01:09:2d:81:9f:e7:8c:82:c5:40:8d:53:53:
55:d0:da:ff:6e:2f:72:57:72:fe:cf:7c:51:1c:12:
e4:b5:56:b2:17:fa:51:23:36:5e:e3:6b:ef:f6:bf:
e8:ee:64:05:b6:30:69:df:00:c7:06:75:12:4d:69:
ee:ad:32:8c:04:ef:31:44:95:40:ea:33:eb:cd:26:
7b:f7:fb:de:19:c5:44:42:83:c3:34:64:82:09:33:
4a:eb:6a:8a:95:9b:f1:09:fb:93:ff:e5:e0:45:89:
7d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3B:D0:81:F6:79:54:A2:1C:F2:69:A7:84:02:E2:82:C7:1C:E3:3D
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/fDvQgfZ5VKIc8mmnhALigscc4z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2687::/32
Signature Algorithm: sha256WithRSAEncryption
a1:a0:b7:cc:94:e9:71:52:13:d8:5e:4b:bc:be:9b:ae:e9:c6:
e5:6d:08:6f:05:0d:5d:cd:0e:c7:10:56:e9:62:37:6e:a5:99:
47:ff:b6:db:83:31:4e:67:5f:6b:04:3a:06:d5:3d:f1:20:d6:
03:b3:ce:0c:65:38:50:93:97:b3:cf:89:38:b5:6e:a2:21:19:
0f:93:34:a0:bb:07:b7:23:a8:df:91:5a:91:a3:62:d9:69:e8:
fe:97:1c:47:25:bc:37:29:54:ee:13:22:0b:30:a3:bf:5c:18:
e4:8b:e1:c2:47:1e:c5:bd:4c:d1:50:26:9c:5b:c0:c8:2e:02:
7d:57:c7:80:e5:c0:d2:b7:13:be:38:5f:64:1e:63:32:18:f6:
9c:a1:9b:fa:3b:ac:8f:ca:d9:9d:de:ac:64:f0:42:46:34:41:
39:59:21:ad:7e:9d:70:0b:78:fc:98:92:3b:4c:24:fa:8b:be:
81:5a:82:ba:21:fb:8a:a1:a6:d9:d5:0a:a7:e6:d0:95:1e:0b:
21:3c:a9:1e:4e:d5:9c:82:49:ee:97:a8:93:b2:f8:74:6f:cb:
2e:46:dc:6b:2e:cc:90:d3:79:bc:3e:b1:52:4f:1f:49:e9:65:
60:61:b4:9d:a5:0d:7a:22:fb:b7:c4:5f:f6:de:3b:05:92:e4:
e6:f6:e5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org