Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/PxnVeswdCZjO_NGP2BV9N4Dgol0.roa
File: PxnVeswdCZjO_NGP2BV9N4Dgol0.roa (raw, json)
Hash identifier: W2LEwX6e3tYPLLbs+h4Jd1LXS0fr0nd5HMwxQA9GR8A=
Subject key identifier: 3F:19:D5:7A:CC:1D:09:98:CE:FC:D1:8F:D8:15:7D:37:80:E0:A2:5D
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01887FB3D966285DFF0E21EC49AFC786A786
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/PxnVeswdCZjO_NGP2BV9N4Dgol0.roa
Signing time: Sat 03 Jun 2023 05:21:13 +0000
ROA not before: Sat 03 Jun 2023 05:21:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198304
IP address blocks: 2a0e:aa07:e0b0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7f:b3:d9:66:28:5d:ff:0e:21:ec:49:af:c7:86:a7:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jun 3 05:21:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f19d57acc1d0998cefcd18fd8157d3780e0a25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e0:b4:c1:34:29:68:8c:0e:28:cb:ff:d2:ca:
4f:ac:13:7b:f8:69:91:54:9b:64:c7:55:c8:7c:c1:
cc:d4:bb:92:04:8c:20:26:34:b0:8a:de:ad:07:3b:
27:0b:d4:5d:19:f0:e5:a6:52:d9:33:32:4f:67:15:
5b:ea:c9:73:b1:83:48:38:ff:dc:9a:d1:0b:95:d8:
2e:ad:60:cd:5d:87:55:f7:dd:dd:5f:7d:7f:d5:64:
eb:13:b2:6e:e4:85:cf:76:c9:9e:86:4e:91:65:34:
28:05:00:f6:a0:83:6e:53:99:b6:9c:4b:a2:18:e1:
bd:d6:f4:e5:93:a9:6b:e4:99:70:99:5a:e7:01:1b:
c1:78:0c:50:02:ab:44:f5:17:7a:68:35:f4:5d:37:
45:40:24:a5:0a:cd:dd:36:7b:d2:47:46:e9:20:bc:
60:54:83:0a:6f:e3:56:6e:14:12:15:bc:09:e0:94:
c5:04:8d:18:b3:12:4f:14:d2:be:1b:0f:a9:74:d8:
97:19:94:89:77:93:da:7c:32:0c:2e:ea:e7:bf:d1:
a5:2c:a7:e2:26:b6:30:46:8f:14:b4:19:61:8a:6e:
77:96:99:eb:cb:5b:59:33:c4:a7:e6:d3:1d:f3:b5:
e0:7d:cb:9a:b5:bb:4e:d0:50:c5:6e:cf:2e:c8:73:
c6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:19:D5:7A:CC:1D:09:98:CE:FC:D1:8F:D8:15:7D:37:80:E0:A2:5D
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/PxnVeswdCZjO_NGP2BV9N4Dgol0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e0b0::/44
Signature Algorithm: sha256WithRSAEncryption
84:83:34:8d:e0:e8:bd:6a:58:ca:05:f9:5d:72:77:74:a4:fa:
83:7c:c4:4c:46:46:06:06:74:08:53:45:2b:fb:ad:30:e9:10:
19:9b:7d:5a:45:fc:bb:b6:00:b7:a9:04:72:a1:aa:65:54:f8:
7b:3d:9e:a7:6a:2f:fc:2e:51:87:25:5b:3b:88:74:08:e9:d2:
7a:33:2f:20:51:5c:91:04:33:4c:4e:f9:bb:70:95:45:ae:a4:
4c:b0:4b:b8:a1:2e:b7:93:e4:67:6e:23:28:d7:28:e3:db:32:
31:9a:4a:69:18:b1:e6:09:09:5d:ee:9a:aa:97:c8:e5:4b:88:
e3:e6:3c:fd:71:f3:3b:4f:f9:f6:b5:b9:b2:50:b3:f8:71:2d:
1f:40:b5:ca:4b:8f:e7:d3:b0:b3:b4:8a:5a:6b:1e:a3:04:aa:
95:28:cf:5b:56:d6:ca:b1:3c:1f:c1:5a:37:bb:aa:de:f0:c1:
56:5b:b9:f8:2a:83:63:95:60:72:92:ed:e5:4d:db:30:52:32:
c6:16:30:12:e7:6c:5e:bb:52:3c:57:25:aa:aa:ae:15:27:eb:
be:3c:25:a0:c7:5a:7e:21:6d:6d:de:15:b4:2a:02:bc:90:2c:
26:0c:f5:36:6a:da:7a:de:89:8d:43:54:fc:59:26:ae:0c:60:
fe:e1:ea:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org