Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/431df1-09f4-475c-a045-f5bb2843c89e/1/rfLnYAd8YwkCxbDqAKfNdZdyDeY.roa
File: rfLnYAd8YwkCxbDqAKfNdZdyDeY.roa (raw, json)
Hash identifier: mwpKzjgpeENhmz/8pFb4mi6wm7z1I6VIEoUxEqyzzcc=
Subject key identifier: AD:F2:E7:60:07:7C:63:09:02:C5:B0:EA:00:A7:CD:75:97:72:0D:E6
Certificate issuer: /CN=7e2cb3d0a641769c7801c481612015c2ccb3b655
Certificate serial: 0188DE1286F88C8965F67D127A5E3518EE98
Authority key identifier: 7E:2C:B3:D0:A6:41:76:9C:78:01:C4:81:61:20:15:C2:CC:B3:B6:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiyz0KZBdpx4AcSBYSAVwsyztlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/431df1-09f4-475c-a045-f5bb2843c89e/1/rfLnYAd8YwkCxbDqAKfNdZdyDeY.roa
Signing time: Wed 21 Jun 2023 13:08:56 +0000
ROA not before: Wed 21 Jun 2023 13:08:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212244
IP address blocks: 2a00:a401::/32 maxlen: 48
Validation: Failed, certificate revoked on Sat 02 Sep 2023 19:17:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:de:12:86:f8:8c:89:65:f6:7d:12:7a:5e:35:18:ee:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e2cb3d0a641769c7801c481612015c2ccb3b655
Validity
Not Before: Jun 21 13:08:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adf2e760077c630902c5b0ea00a7cd7597720de6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3b:a8:6f:be:aa:86:b7:97:9d:83:0a:42:10:
de:83:f8:7a:35:7e:5d:8d:55:40:8b:17:50:a6:57:
d4:fe:d7:04:69:c4:6c:20:3c:b6:c8:3f:e4:49:d5:
2e:a4:03:74:00:2f:2b:ad:70:4a:4e:3d:0d:69:26:
0f:3d:72:e9:f6:c4:bf:4a:3a:63:f4:19:7e:92:f2:
ea:4a:76:a4:e7:82:10:bb:85:b7:8d:7b:9b:02:61:
c2:26:25:f0:ce:94:51:fc:4f:4c:83:d5:b8:66:20:
44:3a:b9:be:57:5e:f3:e4:81:32:7a:66:9c:cb:08:
ed:a3:f4:24:41:75:e4:26:b9:67:d6:e2:fe:b4:09:
d0:24:d8:78:1d:0f:4c:49:ea:16:32:e4:41:ff:64:
49:f9:8b:14:af:55:17:ba:97:fa:48:20:2c:de:85:
28:bc:6b:2a:5b:c8:ae:de:6f:71:13:86:56:37:68:
b6:84:d6:d2:28:08:d9:b0:37:2c:79:e7:78:c1:b5:
4c:20:df:12:56:60:c6:4f:14:93:3b:f1:46:13:ba:
36:67:1a:64:30:b6:4a:6a:54:b3:91:38:06:fe:6e:
a0:d9:0e:36:82:6c:21:a2:42:0f:9a:17:71:7a:69:
a7:a3:b4:12:07:f8:51:08:86:90:ef:36:3d:a6:74:
86:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F2:E7:60:07:7C:63:09:02:C5:B0:EA:00:A7:CD:75:97:72:0D:E6
X509v3 Authority Key Identifier:
keyid:7E:2C:B3:D0:A6:41:76:9C:78:01:C4:81:61:20:15:C2:CC:B3:B6:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiyz0KZBdpx4AcSBYSAVwsyztlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/431df1-09f4-475c-a045-f5bb2843c89e/1/rfLnYAd8YwkCxbDqAKfNdZdyDeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/431df1-09f4-475c-a045-f5bb2843c89e/1/fiyz0KZBdpx4AcSBYSAVwsyztlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:a401::/32
Signature Algorithm: sha256WithRSAEncryption
30:4f:01:87:21:3c:e7:73:17:22:e7:72:12:0b:54:16:74:c8:
a3:92:6e:49:b1:75:ad:1b:f9:27:4b:e8:b8:a0:18:6d:08:23:
63:6b:02:7d:e4:bf:0b:b0:7b:ea:86:93:7e:55:e6:36:56:fd:
29:d9:6a:53:6f:5e:88:58:c2:21:eb:1d:91:69:6a:12:13:76:
ae:2a:c0:37:cb:18:65:97:fd:24:37:79:2b:67:5e:01:85:de:
9e:8d:17:76:fa:27:4c:4b:c1:7e:a4:ea:10:8f:c3:9a:64:29:
70:b1:79:c6:8e:1d:35:9d:5d:48:74:2f:b6:ac:58:05:ab:be:
7d:d5:a1:e1:cf:34:91:4b:78:80:73:13:b7:63:a6:95:41:2a:
d9:35:60:b2:1a:0f:bc:fe:56:37:c1:ad:1d:36:1e:19:86:38:
6d:9b:79:27:77:0d:a7:53:12:57:f5:e5:3e:53:ba:19:07:5e:
bf:c9:61:22:2d:a7:8f:42:21:41:df:34:a8:f0:89:61:42:43:
e9:5c:33:0b:b3:41:f5:85:b0:97:df:7b:9f:fe:bd:46:71:70:
c3:e9:4f:6f:0d:4d:4a:62:59:f2:b9:f6:38:af:6b:66:16:a2:
46:b7:20:d5:24:e0:99:22:5f:4c:0c:06:92:c2:b6:23:dc:96:
a8:83:35:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:22 2024 by rpki-client on console-fra.rpki-client.org