Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/287zoy9xlLW6FI6JyvdotKFYMPs.roa
File: 287zoy9xlLW6FI6JyvdotKFYMPs.roa (raw, json)
Hash identifier: IyTdWR295W8guRng3+Mb732FrZrhhM7j9E8EtNA5Vsg=
Subject key identifier: DB:CE:F3:A3:2F:71:94:B5:BA:14:8E:89:CA:F7:68:B4:A1:58:30:FB
Certificate issuer: /CN=b3b6d9026372cfce8fde823c3ef9c9f790aae14f
Certificate serial: 01862B8962CBB5418256592178F817025236
Authority key identifier: B3:B6:D9:02:63:72:CF:CE:8F:DE:82:3C:3E:F9:C9:F7:90:AA:E1:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7bZAmNyz86P3oI8PvnJ95Cq4U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/287zoy9xlLW6FI6JyvdotKFYMPs.roa
Signing time: Tue 07 Feb 2023 11:01:09 +0000
ROA not before: Tue 07 Feb 2023 11:01:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209253
IP address blocks: 2a09:d1c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:89:62:cb:b5:41:82:56:59:21:78:f8:17:02:52:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6d9026372cfce8fde823c3ef9c9f790aae14f
Validity
Not Before: Feb 7 11:01:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbcef3a32f7194b5ba148e89caf768b4a15830fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:44:6d:0e:a6:42:98:ec:db:89:7e:6b:f7:1c:
45:59:d4:4b:f6:b8:92:29:3e:2a:b4:92:60:b8:8b:
7c:48:a4:67:24:6b:ce:f2:a3:25:ca:95:64:e4:33:
29:c7:79:6d:00:98:e8:7c:54:b6:98:b9:e9:f4:ea:
25:eb:54:dd:50:95:a0:cf:d4:f7:25:11:6f:e2:53:
7a:f5:aa:69:25:c9:32:07:c9:43:09:81:3a:6d:9b:
2f:3b:ce:33:bf:2c:d4:60:81:a5:bf:fc:15:69:dd:
61:9a:95:86:d2:84:00:8c:df:96:c7:0f:a8:92:6d:
93:62:cf:44:67:02:86:9f:67:38:54:f3:d1:48:56:
7b:80:00:27:4c:fa:ea:63:72:c3:69:da:4c:fd:64:
69:01:0d:4c:1b:58:7d:1b:74:f4:ff:ed:b2:b4:6b:
96:aa:95:37:99:8b:2f:9c:fe:f4:ed:0d:ae:d3:74:
ec:b2:c6:8f:72:5f:9f:db:58:fd:74:e0:01:5d:88:
c9:31:47:9c:a9:a3:a0:31:79:8e:48:56:8c:15:56:
7a:47:72:e3:e5:0e:4c:c4:51:e0:fb:fc:e2:2c:86:
96:ea:87:6d:54:da:3e:5b:91:7d:16:ae:45:9b:9a:
58:c7:c6:ee:73:19:90:fd:ae:ea:73:51:d4:3b:86:
55:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:CE:F3:A3:2F:71:94:B5:BA:14:8E:89:CA:F7:68:B4:A1:58:30:FB
X509v3 Authority Key Identifier:
keyid:B3:B6:D9:02:63:72:CF:CE:8F:DE:82:3C:3E:F9:C9:F7:90:AA:E1:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7bZAmNyz86P3oI8PvnJ95Cq4U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/287zoy9xlLW6FI6JyvdotKFYMPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/s7bZAmNyz86P3oI8PvnJ95Cq4U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:d1c0::/29
Signature Algorithm: sha256WithRSAEncryption
a6:43:5e:cc:89:99:9f:b3:95:5a:e1:8a:d5:b1:e0:70:36:87:
c4:ac:4d:7b:32:f8:fb:03:6f:a7:d1:55:d2:fb:40:05:27:b6:
70:50:27:18:b3:93:80:9b:5e:86:fd:5d:f1:5f:5e:88:97:66:
46:bf:69:df:9d:9d:bb:de:fe:f4:d7:60:f5:00:c1:18:31:d0:
6b:98:62:73:bd:61:d6:d2:1f:94:8e:d9:60:e6:23:93:15:40:
4b:04:6f:40:20:d2:66:08:f6:60:50:59:fc:c9:ff:ac:4d:f4:
c7:93:a3:6a:33:5b:3c:88:b6:71:73:ba:af:50:c7:91:5b:e0:
f8:b9:23:9e:22:c1:b9:7e:46:93:65:4b:a6:f8:0a:b9:ba:ad:
dc:4b:b3:10:41:05:bf:9f:85:4b:e0:a1:b0:49:7b:0f:3c:65:
4c:35:7e:1b:53:0c:54:ee:26:d7:74:3d:8f:d7:5d:25:79:d0:
d0:20:0c:ed:c9:e7:80:8e:b5:41:98:2d:cd:dc:78:8f:1d:4e:
09:ad:ff:0b:b1:94:a9:1c:0a:0f:3e:be:1a:3f:de:cb:f5:d6:
e0:c8:82:32:27:71:b0:0e:d3:13:b7:dd:16:95:0d:55:e8:a4:
92:2c:ba:2c:a4:b3:4b:74:74:02:35:e9:f3:85:b6:1c:fe:fd:
8d:c2:8f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:16 2024 by rpki-client on console-fra.rpki-client.org