Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/3PJywZmlzENvU_cbyGQrQai0hbU.roa
File: 3PJywZmlzENvU_cbyGQrQai0hbU.roa (raw, json)
Hash identifier: vda/lPCDCl8Nug0fr51zIIopvLAFChC9CfaaqxF0VCE=
Subject key identifier: DC:F2:72:C1:99:A5:CC:43:6F:53:F7:1B:C8:64:2B:41:A8:B4:85:B5
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FD6F1AEEB54D3D0A0D33D0777C1FA
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/3PJywZmlzENvU_cbyGQrQai0hbU.roa
Signing time: Sun 01 Jan 2023 21:14:44 +0000
ROA not before: Sun 01 Jan 2023 21:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0e:aa02::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:d6:f1:ae:eb:54:d3:d0:a0:d3:3d:07:77:c1:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcf272c199a5cc436f53f71bc8642b41a8b485b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:19:5e:6c:23:22:d6:0e:0a:0f:8d:04:a7:31:
58:17:d8:ce:bf:31:24:9e:92:a7:85:3e:9b:82:c0:
d1:f7:9b:fc:05:2b:37:4b:de:dd:0b:7f:4b:15:d2:
bd:bc:3e:ff:55:cc:fe:65:0e:5c:4a:19:34:ce:46:
4f:94:02:c4:09:5e:72:e8:00:3e:23:d2:63:a0:d4:
30:c0:48:d9:6a:3c:fd:ab:f1:19:5a:a9:bd:d1:bb:
31:0f:d5:49:20:31:60:00:cd:e5:40:16:bc:50:91:
0e:8a:e0:0a:29:e0:a0:85:03:f4:d6:d7:a2:1d:b7:
32:9c:7a:81:9b:ca:89:d5:2a:da:95:84:2c:91:5b:
d0:0e:59:aa:92:d4:54:ae:30:4f:22:d4:53:4f:d8:
a6:28:a3:0a:d9:9f:b2:cf:6d:92:62:83:61:37:34:
49:2d:e4:78:b3:2f:7e:68:b9:ff:c8:7d:54:15:28:
d0:8c:9b:40:9b:1c:21:3e:05:ef:1a:43:e7:c8:72:
17:c8:ac:a8:0c:78:98:d2:0a:a9:33:77:45:63:95:
51:82:b6:6e:ca:35:54:e8:b4:dd:da:58:7c:b1:b4:
5a:01:3d:82:54:68:c7:29:1f:a7:9a:5b:5e:7f:27:
0d:7c:78:52:50:8b:c5:6e:c3:d0:bb:a5:3c:e6:96:
a6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F2:72:C1:99:A5:CC:43:6F:53:F7:1B:C8:64:2B:41:A8:B4:85:B5
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/3PJywZmlzENvU_cbyGQrQai0hbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa02::/40
Signature Algorithm: sha256WithRSAEncryption
7e:0f:b1:eb:18:7d:c1:08:b0:fe:09:b2:98:bd:78:c3:b3:b0:
f9:31:73:7e:e5:26:7a:24:bb:29:e5:81:1b:ac:e3:1c:11:7a:
17:c7:51:86:7a:cc:07:5c:d2:b4:0c:97:9d:fb:8a:33:cb:dc:
78:60:ab:87:f8:5d:d2:e3:77:ea:48:e7:74:48:dd:f8:f9:53:
75:07:43:d2:6e:bf:ea:2f:0b:c3:34:4d:68:66:55:11:e9:51:
3d:44:f4:d4:6a:f8:38:f6:71:dc:dd:87:65:2d:3b:15:7b:c0:
7a:86:86:9b:59:b6:70:8d:71:35:d6:67:b3:b9:c5:d8:3c:60:
01:99:86:6f:f4:d7:78:90:22:6b:4e:87:db:6a:6f:1b:b6:e0:
2c:ab:b2:dc:44:0d:f7:7f:e9:e7:8f:2f:22:e7:72:b0:eb:58:
f3:53:23:bd:b2:e8:30:ac:88:fd:d6:41:11:4f:8f:4b:ca:7b:
3c:58:79:b6:a7:82:e2:46:15:fe:03:33:67:a5:78:62:9d:d1:
96:c4:a8:fa:4b:ff:d4:35:e0:21:15:14:b2:00:02:47:67:c2:
41:9c:aa:92:99:ee:1f:b6:57:95:c8:3a:98:21:28:e5:2d:be:
ce:79:22:d5:c9:3b:db:ce:af:dd:67:36:5a:9a:8d:04:8b:2a:
16:33:ce:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:10 2024 by rpki-client on console-ams.rpki-client.org