Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dbea5d-277b-4675-8d05-ed17d6c42b2f/1/03vPmIgFH63PDAeMkqkS9TvvoNg.roa
File: 03vPmIgFH63PDAeMkqkS9TvvoNg.roa (raw, json)
Hash identifier: cieqbK0GkQ+V0FJY8v4olfOguarYSD9/sgmkkWrkWgA=
Subject key identifier: D3:7B:CF:98:88:05:1F:AD:CF:0C:07:8C:92:A9:12:F5:3B:EF:A0:D8
Certificate issuer: /CN=115152233829aefd4679b51471798debc98237ef
Certificate serial: 01865E55A7F0D043F9432E1038F6F95B9C90
Authority key identifier: 11:51:52:23:38:29:AE:FD:46:79:B5:14:71:79:8D:EB:C9:82:37:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EVFSIzgprv1GebUUcXmN68mCN-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dbea5d-277b-4675-8d05-ed17d6c42b2f/1/03vPmIgFH63PDAeMkqkS9TvvoNg.roa
Signing time: Fri 17 Feb 2023 07:45:17 +0000
ROA not before: Fri 17 Feb 2023 07:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212337
IP address blocks: 2001:678:92c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5e:55:a7:f0:d0:43:f9:43:2e:10:38:f6:f9:5b:9c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=115152233829aefd4679b51471798debc98237ef
Validity
Not Before: Feb 17 07:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d37bcf9888051fadcf0c078c92a912f53befa0d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b0:ce:4a:73:cf:59:86:c7:84:7f:0d:28:3b:
c7:1c:c8:ac:b9:80:9e:0d:78:5e:1e:39:0f:45:ce:
af:0c:02:11:ff:c9:14:05:64:87:37:a8:6d:ef:3e:
31:26:ab:16:f2:58:a4:aa:b3:fc:26:45:c2:4d:9e:
f2:4f:3c:52:70:0c:43:e7:4c:68:d0:91:70:19:4c:
75:11:e9:ac:38:1f:25:5c:4d:a7:53:14:f6:95:af:
12:5f:0b:f8:5c:6d:42:f0:61:5f:9f:88:77:c4:23:
e9:d7:56:f3:21:75:70:66:18:41:92:c5:86:57:e2:
75:50:8b:63:8e:32:8b:c8:71:9b:29:8c:6c:0f:24:
58:00:f6:f1:1a:8b:10:e1:22:f8:5f:ec:fb:0e:dc:
e1:6d:2f:2c:d2:18:ba:04:f3:92:1b:3d:34:43:26:
5c:ef:c3:fd:a5:f3:5f:95:db:4c:f1:ea:c0:9d:ea:
b1:7d:ac:63:86:d6:6f:21:23:6a:01:e5:43:30:43:
0d:ab:cf:2f:cf:72:1a:25:b2:cf:f2:2a:b9:9b:34:
3e:b2:9a:5a:86:0d:0e:b6:d1:4e:3f:fa:63:ef:bb:
d6:f2:ce:79:97:29:26:ae:df:d1:17:b6:4d:51:e7:
67:6c:2c:36:a7:84:c2:a4:d5:41:4f:fc:34:27:d6:
84:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7B:CF:98:88:05:1F:AD:CF:0C:07:8C:92:A9:12:F5:3B:EF:A0:D8
X509v3 Authority Key Identifier:
keyid:11:51:52:23:38:29:AE:FD:46:79:B5:14:71:79:8D:EB:C9:82:37:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EVFSIzgprv1GebUUcXmN68mCN-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dbea5d-277b-4675-8d05-ed17d6c42b2f/1/03vPmIgFH63PDAeMkqkS9TvvoNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dbea5d-277b-4675-8d05-ed17d6c42b2f/1/EVFSIzgprv1GebUUcXmN68mCN-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:92c::/48
Signature Algorithm: sha256WithRSAEncryption
66:49:04:b8:c1:46:58:8b:a0:a2:72:e5:05:14:da:7b:ea:c6:
a3:c4:40:ee:41:8e:ff:8d:6d:14:75:8e:72:1a:84:9b:aa:ce:
c4:c9:80:96:c6:33:16:c6:b1:87:23:db:76:ab:72:8b:74:8e:
f1:c3:6c:a9:e7:59:82:27:3b:b1:2a:d8:1c:11:57:00:80:93:
e2:9e:39:f4:5b:22:a3:a1:e0:94:9c:ca:97:75:62:93:83:cf:
8b:d7:4b:a0:0a:67:26:c9:83:e0:c6:7b:b6:b2:61:e0:88:e7:
83:37:d7:ab:f6:29:05:ee:e5:28:24:0d:59:1e:b3:14:06:84:
21:0f:23:67:f1:81:d3:0f:f6:0e:99:b4:d5:8d:9b:c5:39:6e:
18:9b:ab:9d:a9:dc:d7:a1:ef:e1:06:19:5b:f3:b6:39:cc:36:
d8:cd:c6:84:87:db:c3:3a:9e:c5:50:35:cd:3a:1d:a0:53:b7:
e0:48:cb:c3:b0:4c:9e:e2:4e:83:42:65:2b:c5:fe:b0:9b:db:
bb:53:18:61:87:7a:77:39:6f:33:6b:f3:72:3b:ca:72:5c:32:
ec:e9:6b:d7:f0:b5:45:48:6b:4a:13:3b:46:2e:1b:24:46:b8:
9d:d1:03:7f:d2:b3:d0:2f:dd:0d:63:1e:c5:e4:fc:1e:e7:b7:
e7:b0:d5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:46 2024 by rpki-client on console-ams.rpki-client.org