Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0305cd-0d71-420a-be38-5ccd5e9ce004/1/dI1Zum3NgQZ3YOHKoDzpibtDh0c.roa
File: dI1Zum3NgQZ3YOHKoDzpibtDh0c.roa (raw, json)
Hash identifier: JUJcCho04fAailP4vgfGYgotovsKDjYVfckjGuaMZzY=
Subject key identifier: 74:8D:59:BA:6D:CD:81:06:77:60:E1:CA:A0:3C:E9:89:BB:43:87:47
Certificate issuer: /CN=07db23a5e2550ff974ca5f41917ac867d50e35e9
Certificate serial: 0186D678E7625BD4B900E2023D0EA9665A74
Authority key identifier: 07:DB:23:A5:E2:55:0F:F9:74:CA:5F:41:91:7A:C8:67:D5:0E:35:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9sjpeJVD_l0yl9BkXrIZ9UONek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0305cd-0d71-420a-be38-5ccd5e9ce004/1/dI1Zum3NgQZ3YOHKoDzpibtDh0c.roa
Signing time: Sun 12 Mar 2023 15:38:13 +0000
ROA not before: Sun 12 Mar 2023 15:38:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44136
IP address blocks: 2a02:28f0::/29 maxlen: 48
Validation: Failed, certificate revoked on Sun 12 Mar 2023 18:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d6:78:e7:62:5b:d4:b9:00:e2:02:3d:0e:a9:66:5a:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07db23a5e2550ff974ca5f41917ac867d50e35e9
Validity
Not Before: Mar 12 15:38:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=748d59ba6dcd81067760e1caa03ce989bb438747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:66:db:aa:cb:94:6a:31:2e:8e:2d:75:f1:eb:
41:13:48:51:d5:bb:4f:88:79:4b:ff:54:09:57:ba:
e0:26:4d:99:db:c3:48:cd:27:54:31:3d:20:26:63:
c0:c2:aa:fa:e8:6f:93:1d:ef:14:98:21:e9:b1:90:
a5:52:5f:f1:cc:f5:11:e6:87:2e:1b:c5:94:cd:64:
50:02:cc:5f:65:d6:f8:82:76:86:01:bc:96:52:4b:
26:87:f6:d7:10:df:77:37:15:1a:92:1d:5f:6d:68:
22:fe:0a:e4:64:2d:1a:1f:42:0a:eb:67:dd:53:1f:
94:ec:e4:51:ad:2a:9a:a5:14:bc:69:61:e9:b9:8d:
d0:12:61:6d:81:f9:b8:24:8c:92:36:c2:6a:2d:ec:
a4:3c:40:dc:6b:b1:c7:2f:a8:7a:76:de:8f:57:5d:
af:66:0c:2e:cd:43:c5:e9:0d:9b:c1:c8:c5:93:26:
01:98:b2:f0:e7:db:8d:28:7b:31:98:de:f1:b1:fe:
ff:f5:bf:9b:0d:f2:46:99:bf:5c:27:15:af:1f:98:
16:2f:dc:4e:57:7e:15:fb:cc:e1:ec:71:96:19:b0:
5e:21:d9:12:35:e9:6e:08:87:d1:0d:9c:d2:df:eb:
89:8e:33:8e:36:28:2a:6c:96:1a:bb:07:79:7c:18:
9a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8D:59:BA:6D:CD:81:06:77:60:E1:CA:A0:3C:E9:89:BB:43:87:47
X509v3 Authority Key Identifier:
keyid:07:DB:23:A5:E2:55:0F:F9:74:CA:5F:41:91:7A:C8:67:D5:0E:35:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9sjpeJVD_l0yl9BkXrIZ9UONek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0305cd-0d71-420a-be38-5ccd5e9ce004/1/dI1Zum3NgQZ3YOHKoDzpibtDh0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0305cd-0d71-420a-be38-5ccd5e9ce004/1/B9sjpeJVD_l0yl9BkXrIZ9UONek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:28f0::/29
Signature Algorithm: sha256WithRSAEncryption
16:fd:a5:e2:63:5b:bc:06:52:4f:72:9e:1c:a8:b8:1b:25:14:
1e:50:f2:5c:8d:50:d6:da:1f:e6:9d:e0:6a:9e:a5:15:af:1e:
b5:2f:78:13:ac:b6:e5:08:61:79:2f:6f:51:3b:8d:40:b8:e8:
da:28:2f:dd:b0:e2:f1:2f:76:6d:13:22:01:c1:4b:7d:fd:7d:
a8:78:0e:07:37:3f:a1:fd:c5:47:61:a8:46:02:20:10:99:00:
13:a2:9a:c3:a9:4c:34:99:19:7c:14:70:13:47:59:a2:8e:37:
71:ed:ce:7b:a2:ef:7b:9a:2c:de:66:11:fd:97:ba:01:7b:85:
87:d4:f1:6b:1c:17:5e:ad:b6:db:33:4c:ca:e1:92:fd:4c:7c:
b5:d8:f0:aa:9e:68:b9:23:08:82:ee:4e:d3:1a:f2:fa:8f:b4:
af:f5:a0:a8:5b:57:55:5d:f3:18:75:be:0f:49:26:88:da:c4:
0d:81:33:66:14:d7:fd:16:c8:76:e9:da:a8:a8:09:56:f2:f7:
c7:a3:ec:fa:e8:68:db:0f:35:6f:ef:e9:05:dd:7c:aa:1a:ac:
df:90:8f:f0:0d:b3:ff:0a:2e:d2:26:3e:02:5b:a1:f1:1e:4a:
0b:5a:ce:2d:5d:d5:4f:48:c8:c2:de:e1:c0:83:51:33:24:bb:
da:9d:01:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:34 2024 by rpki-client on console-fra.rpki-client.org