Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/LMwt0G4QRnt6m3O_A6r5VPleWkA.roa
File: LMwt0G4QRnt6m3O_A6r5VPleWkA.roa (raw, json)
Hash identifier: GKArSW0vMiWPQokrZ+gikGkBmNpr0StIrJq2d0FuKFA=
Subject key identifier: 2C:CC:2D:D0:6E:10:46:7B:7A:9B:73:BF:03:AA:F9:54:F9:5E:5A:40
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 018CC86FDA1DFE726D8DCD1B143EECC402C7
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/LMwt0G4QRnt6m3O_A6r5VPleWkA.roa
Signing time: Tue 02 Jan 2024 04:30:22 +0000
ROA not before: Tue 02 Jan 2024 04:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202473
IP address blocks: 2a03:5840:310::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 May 2024 16:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:da:1d:fe:72:6d:8d:cd:1b:14:3e:ec:c4:02:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 2 04:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ccc2dd06e10467b7a9b73bf03aaf954f95e5a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b1:ac:6a:6a:bc:1f:68:47:3d:49:41:7b:50:
c5:1b:25:dc:0d:d6:d2:c2:c2:94:76:dc:97:e3:cc:
df:5b:d9:c1:60:9c:87:45:55:04:e8:46:8a:00:39:
cd:48:ce:b7:88:8a:54:5b:18:3a:de:1f:40:f3:28:
47:16:08:39:79:b2:e3:ba:86:0b:7d:30:f8:14:9c:
61:72:5e:c9:46:22:cc:df:d9:68:73:34:bb:fc:2f:
09:24:9d:c9:44:c8:79:6a:74:de:72:10:92:f6:0e:
13:bc:14:0b:53:ad:c9:32:90:8e:94:f4:52:ee:07:
4a:65:13:0c:2f:20:30:16:89:45:b8:33:98:4f:1a:
96:4d:62:a0:d1:ea:86:23:d0:61:03:e4:18:a4:c1:
39:9f:0d:3b:af:5e:20:9d:e3:14:d1:b9:c3:ac:a6:
5d:ef:c3:fb:95:e1:54:25:a3:8f:bc:1a:70:61:dc:
e6:84:e5:71:7d:38:cb:92:d8:23:5a:91:25:34:48:
48:81:ae:f0:d4:c5:e5:08:eb:86:a1:70:0e:2a:c3:
fe:e8:1c:cb:e3:de:a6:12:7f:ea:90:4c:67:ee:20:
05:7a:e9:16:e7:c0:7e:02:e7:bb:68:1b:52:75:34:
e0:cd:b4:3e:94:bb:09:84:5f:8b:e0:e3:0f:e4:cd:
ed:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CC:2D:D0:6E:10:46:7B:7A:9B:73:BF:03:AA:F9:54:F9:5E:5A:40
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/LMwt0G4QRnt6m3O_A6r5VPleWkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:310::/44
Signature Algorithm: sha256WithRSAEncryption
25:d1:c7:3d:1d:db:e9:29:5d:6a:ea:ba:43:95:26:a1:c6:94:
0a:ce:95:a8:6e:69:a8:ea:bf:5f:cc:f0:eb:72:d7:5a:8c:45:
36:c5:8c:54:89:46:5d:9c:31:76:7d:50:ae:e5:83:2d:29:29:
07:03:30:54:df:ae:80:24:87:10:ca:31:e1:eb:72:4c:42:d2:
4a:e0:64:d3:45:95:32:c8:fe:ec:7b:88:bb:de:cf:be:ce:e7:
9e:08:12:9e:9a:55:4d:50:df:e5:a9:73:e3:68:39:df:eb:17:
cc:9a:6f:d2:3c:2f:8e:45:e4:98:32:78:27:e9:dc:94:7d:d6:
ce:0d:76:58:9a:af:c9:f3:86:31:2b:fd:15:80:d2:79:4b:a3:
06:3a:90:93:d5:5b:e6:42:3b:cf:1d:6f:66:fc:4c:89:df:eb:
1f:5b:44:2b:4e:31:7a:59:08:98:b2:c1:09:6f:28:14:54:25:
96:9c:b7:64:fb:3d:45:de:fd:3a:b8:f3:c3:1b:34:3f:b8:7e:
41:37:c9:57:cd:3c:b9:9e:53:08:b7:16:18:40:47:b6:24:d9:
3e:e8:7e:8b:3a:0e:2b:70:4f:46:7b:d9:b7:97:17:39:23:40:
58:87:89:91:86:8e:df:24:f6:f8:bd:89:48:1b:39:6b:c8:bc:
3d:2c:75:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 22:18:29 2024 by rpki-client on console-ams.rpki-client.org