Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/N3MHVOaFtaKeuBP75bDO66_4AHs.roa
File: N3MHVOaFtaKeuBP75bDO66_4AHs.roa (raw, json)
Hash identifier: T3i69QzR63ZjmBp5f0i7koITc9fW+LosswntFVt3a6U=
Subject key identifier: 37:73:07:54:E6:85:B5:A2:9E:B8:13:FB:E5:B0:CE:EB:AF:F8:00:7B
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 01856DDD74EBFAF3106B1892EC09490899A2
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/N3MHVOaFtaKeuBP75bDO66_4AHs.roa
Signing time: Sun 01 Jan 2023 15:05:07 +0000
ROA not before: Sun 01 Jan 2023 15:05:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204874
IP address blocks: 2a03:5840:280::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:74:eb:fa:f3:10:6b:18:92:ec:09:49:08:99:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 1 15:05:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37730754e685b5a29eb813fbe5b0ceebaff8007b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a0:2b:bf:af:15:11:0f:39:a5:b2:c2:0c:e1:
7a:44:e0:7a:1e:a5:a7:ee:21:41:f4:6b:92:30:6b:
49:6d:d8:c9:f8:c2:0e:d6:1b:c6:fe:a1:f1:d7:b4:
e9:c1:2c:0c:53:48:de:d1:3a:34:1d:bf:41:a2:e2:
21:67:46:c9:5b:bc:d4:48:39:3e:b1:12:40:18:06:
31:67:02:ed:4f:71:a0:f8:04:5c:54:a7:a9:e5:e8:
22:6c:d6:57:d0:cc:f6:56:1e:f2:8c:c8:32:88:91:
32:31:ba:df:51:f2:be:09:0b:ac:fa:bd:4b:bb:2a:
5b:4e:55:0e:fb:63:81:a1:76:a6:dc:46:15:d3:d5:
d6:3d:b1:f7:b6:f2:6b:fb:6f:3c:f8:e5:b5:68:ce:
9e:f3:4f:41:04:4c:57:f5:5a:d5:e7:71:e3:71:ef:
77:53:b1:75:76:36:c8:d6:6f:0b:93:d8:9b:2e:fb:
3f:1f:6a:84:05:63:8c:47:e3:76:9f:39:f8:ba:1f:
9f:96:64:d7:0d:8a:a0:ba:5c:80:4b:2a:9a:62:2c:
95:6e:06:72:a4:a2:3d:d3:d3:82:50:f7:cb:f4:5f:
73:12:7a:49:ae:d4:ae:04:ce:ba:e8:82:fa:dd:2b:
15:ed:f2:5b:dd:86:77:c9:87:74:d8:2e:ee:ec:e7:
b8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:73:07:54:E6:85:B5:A2:9E:B8:13:FB:E5:B0:CE:EB:AF:F8:00:7B
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/N3MHVOaFtaKeuBP75bDO66_4AHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:280::/44
Signature Algorithm: sha256WithRSAEncryption
99:94:2b:e0:4a:8e:29:25:4b:98:6f:58:1b:81:1e:ca:76:17:
e0:fb:61:ef:aa:55:e9:3c:7d:e9:c4:af:ce:af:72:ea:dd:40:
9e:93:81:c8:48:97:ff:28:06:d8:60:22:aa:03:11:62:23:bd:
02:f9:4a:9e:95:6e:a5:45:b8:f1:a6:4c:bf:e7:74:9f:68:18:
5d:66:ae:e3:42:24:e5:76:1f:65:91:ba:0b:79:5a:a2:0e:17:
3b:50:6b:46:30:07:2c:7d:5c:a9:45:b8:a4:b3:24:4a:c8:6f:
a4:ef:cb:d2:d4:0c:a1:50:82:df:6b:1c:67:46:cd:df:be:d1:
b3:9d:7b:ef:4b:85:fc:d7:9a:c6:17:27:45:60:b7:47:7e:35:
2b:e3:69:e5:99:e0:aa:a2:46:c0:d9:96:4b:91:6c:fd:d8:6d:
a5:be:9b:bd:f5:1d:13:0f:ee:a3:77:d1:4a:37:94:2c:b1:72:
b4:70:da:98:09:6c:89:1d:c1:74:b9:f3:d2:14:9c:22:74:95:
57:fa:40:fc:1b:4b:07:6c:0d:f3:c3:72:1f:82:aa:a1:eb:f6:
07:bb:03:a0:58:5c:f6:ab:ff:b3:da:15:a2:b3:a3:64:e0:ee:
49:58:95:ec:ad:e5:17:b0:9f:b2:80:6c:96:dd:11:7b:48:a1:
8c:3b:63:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:06 2024 by rpki-client on console-ams.rpki-client.org