Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/3JL_G0fcLc4QTuJmeUoh2Xq31O8.roa
File: 3JL_G0fcLc4QTuJmeUoh2Xq31O8.roa (raw, json)
Hash identifier: fdQkh3G8Jf4EZ23+V5+9vqywSoPlOBAU9fydNYbQnxA=
Subject key identifier: DC:92:FF:1B:47:DC:2D:CE:10:4E:E2:66:79:4A:21:D9:7A:B7:D4:EF
Certificate issuer: /CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Certificate serial: 0186B23543AA99691C16DF61B46219DE299F
Authority key identifier: 0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/3JL_G0fcLc4QTuJmeUoh2Xq31O8.roa
Signing time: Sun 05 Mar 2023 14:38:00 +0000
ROA not before: Sun 05 Mar 2023 14:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202777
IP address blocks: 2a06:ee80::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 10 Dec 2023 12:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b2:35:43:aa:99:69:1c:16:df:61:b4:62:19:de:29:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Validity
Not Before: Mar 5 14:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc92ff1b47dc2dce104ee266794a21d97ab7d4ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:57:12:5a:3a:c5:7f:2f:7b:32:0e:4a:f8:46:
a0:7d:e1:1e:f5:a0:59:d2:58:64:fb:b0:aa:21:90:
d0:56:64:24:67:98:db:c9:09:74:4f:0f:ee:09:8c:
f2:35:bd:13:75:c9:da:85:9a:dd:9d:ce:b1:9b:cd:
61:49:42:96:76:0c:49:4a:f2:5e:4e:b9:75:54:45:
e9:1b:6b:d4:a2:38:b5:60:fa:5d:65:ba:88:2f:b8:
92:54:f5:60:40:e7:7c:dd:bb:44:74:8a:05:b4:fe:
25:79:c7:ee:72:f3:f8:a2:5a:6c:2b:5b:9f:3b:01:
4a:55:b4:1e:1e:a1:2c:5a:8c:3a:c1:16:99:50:9f:
76:35:f3:bc:9e:78:cb:ca:3c:41:24:db:e0:81:c3:
54:d7:23:34:9c:32:c4:3a:ac:58:8c:2d:3e:ea:cf:
b1:18:24:44:8b:7b:90:5b:db:a6:8d:4b:ee:74:00:
17:23:4a:4b:45:2e:43:fe:97:46:c7:c0:40:84:f4:
0e:e5:31:f1:0f:17:48:09:94:c3:60:91:84:06:e0:
2c:10:31:9b:64:8d:c5:d1:66:51:25:cd:4d:4a:4a:
69:22:95:da:75:06:74:c7:8d:9b:22:d3:49:74:b2:
fe:f3:2d:17:ea:11:8b:20:e6:43:7e:ec:9d:4f:12:
0f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:92:FF:1B:47:DC:2D:CE:10:4E:E2:66:79:4A:21:D9:7A:B7:D4:EF
X509v3 Authority Key Identifier:
keyid:0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/3JL_G0fcLc4QTuJmeUoh2Xq31O8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Dy-LK5RyHpKPYYi1zxUFMUTe34w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:ee80::/29
Signature Algorithm: sha256WithRSAEncryption
ba:77:e6:75:51:79:bb:c3:80:99:79:c9:db:10:87:42:66:e6:
95:a3:2b:10:f1:d7:7a:f0:4d:dc:c2:c1:65:5b:3a:e0:af:11:
f2:fc:94:94:a9:9c:ab:f2:df:f3:de:81:96:90:e7:f1:8e:5f:
60:80:58:4f:e6:f1:f9:75:e6:9a:48:ea:5e:df:bb:98:3d:ae:
74:46:74:2d:07:58:e8:88:7b:0b:40:00:3d:bd:6d:5f:c0:38:
90:18:b3:90:f7:35:b3:10:64:95:ab:3c:72:5e:ba:d0:7b:2a:
8f:8f:5c:a3:a0:c7:f0:17:67:99:18:de:cc:e9:0c:b5:1d:80:
40:3b:1d:c4:11:b8:1f:b0:28:5e:b0:34:cb:24:64:f7:ff:fa:
ec:eb:f3:81:9d:f5:82:96:21:24:9a:d7:da:87:c8:83:e0:3f:
ef:92:f0:35:a3:7e:3c:61:85:30:a4:36:df:18:c6:17:7b:0d:
ad:71:1e:af:8f:33:a3:d7:c3:80:3d:b6:b5:76:a6:03:aa:8c:
a9:e6:3f:80:d1:60:18:c7:79:7e:2c:b0:b2:1d:cb:00:3a:b9:
dd:a8:52:4d:fd:e5:4a:ac:e5:60:fb:14:49:71:87:6f:2f:fc:
57:e6:aa:bd:d5:ec:8c:bf:90:b3:8d:f8:49:c5:f6:d0:7d:50:
a4:6c:98:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:27 2024 by rpki-client on console-ams.rpki-client.org