Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/TfC44yBRdc3ZCul_3dUIdgtLPkI.roa
File: TfC44yBRdc3ZCul_3dUIdgtLPkI.roa (raw, json)
Hash identifier: U29bcjXRCzTJXHZQD/WFjH3iXRRMYyPnjXlOFRQP8uw=
Subject key identifier: 4D:F0:B8:E3:20:51:75:CD:D9:0A:E9:7F:DD:D5:08:76:0B:4B:3E:42
Certificate issuer: /CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Certificate serial: 018AD4B77480F54209ACFA43F55B44E98A6B
Authority key identifier: B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/TfC44yBRdc3ZCul_3dUIdgtLPkI.roa
Signing time: Wed 27 Sep 2023 03:38:27 +0000
ROA not before: Wed 27 Sep 2023 03:38:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210695
IP address blocks: 2a0a:2e80::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d4:b7:74:80:f5:42:09:ac:fa:43:f5:5b:44:e9:8a:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Validity
Not Before: Sep 27 03:38:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4df0b8e3205175cdd90ae97fddd508760b4b3e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5c:6a:bb:5b:ca:97:7d:78:53:2f:61:f3:d4:
bd:5d:86:fd:c3:77:3b:9f:ae:4e:fb:6c:02:f4:f0:
e3:45:fc:4b:1f:8f:c7:f4:d2:32:23:f3:d8:8a:42:
56:85:d7:d1:60:8f:f1:7d:15:b4:5e:2c:65:52:d3:
a0:3e:f7:2a:f5:a7:9c:b0:70:e0:41:f1:ff:30:66:
6c:3d:56:32:63:b3:63:fa:d7:e2:37:8a:36:6d:79:
94:31:7c:8e:be:d2:00:d5:ee:c7:31:2e:c0:b2:c9:
91:ae:bd:50:9d:98:95:94:92:6e:03:1b:29:85:23:
cd:45:25:68:b7:f7:9a:f8:96:36:da:e1:42:1c:67:
13:54:51:b1:e8:ce:f2:bc:da:e7:6e:df:dc:4a:1e:
ec:77:b9:41:19:6a:0b:a8:03:0b:1c:b6:e2:01:41:
91:88:89:c0:04:73:b7:d1:f3:ba:62:c0:8c:b3:19:
8e:34:d4:15:ec:a0:21:b6:26:1f:a8:ef:1f:1f:36:
f3:00:77:19:b8:5e:a4:5f:b0:b5:44:f4:d0:92:a9:
41:d7:eb:df:c2:02:91:71:03:a7:89:f2:b0:ce:c9:
92:e1:9f:68:ca:72:b5:33:3a:f5:a2:53:fb:a9:42:
47:aa:ad:62:5a:fd:cc:dd:0b:a5:1c:39:58:f6:f2:
d8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F0:B8:E3:20:51:75:CD:D9:0A:E9:7F:DD:D5:08:76:0B:4B:3E:42
X509v3 Authority Key Identifier:
keyid:B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/TfC44yBRdc3ZCul_3dUIdgtLPkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/s1ACugiNW9CcFVPc7VsL85B_9zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2e80::/32
Signature Algorithm: sha256WithRSAEncryption
31:a9:bd:38:b2:53:04:ca:40:4c:56:3a:28:5e:bd:07:02:bc:
87:64:d4:7b:73:4e:ac:ec:da:47:13:c9:5e:1e:2b:50:d0:c1:
28:10:8d:7b:f8:b9:aa:f1:67:cb:97:70:12:ef:3e:c3:46:48:
c3:71:f3:9f:47:57:1e:d3:6e:0b:f4:1d:ae:8d:26:bd:0f:e2:
ca:88:d1:da:2f:79:c3:d3:1b:76:a4:60:57:f3:07:10:a5:18:
15:d4:09:6d:98:9b:76:27:c3:40:77:f5:91:70:2e:d9:35:b2:
ea:83:27:ba:0e:b4:6d:46:56:7a:cd:5a:1a:a7:04:df:71:1d:
78:c1:ac:fd:74:f7:59:2f:07:f9:43:9f:d7:fe:44:d9:c1:7f:
18:a2:95:ff:b6:f4:6f:e1:e2:ab:18:e6:31:a1:26:bb:6e:42:
3e:a0:c2:bd:d8:58:d8:a6:68:68:32:e0:14:d3:ce:7b:4d:79:
14:16:92:50:d2:3f:f2:7c:04:ea:9e:69:1d:49:75:ff:72:61:
88:32:18:12:04:1f:ff:35:43:d3:c1:24:8c:2f:75:90:21:a1:
1f:d9:7d:94:18:01:d2:44:05:48:ba:1b:2e:8b:84:3e:34:84:
82:79:49:18:05:c6:55:34:d1:e5:a0:68:64:61:50:a6:a4:d3:
85:d3:a1:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:06 2024 by rpki-client on console-fra.rpki-client.org