Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/rAAY8wXiQAnUvFXGI9S39WzZ0xg.roa
File: rAAY8wXiQAnUvFXGI9S39WzZ0xg.roa (raw, json)
Hash identifier: v1ACmGfEyamwqz8vz6hIh/IpiUnxssBMF9CfXcAzqPM=
Subject key identifier: AC:00:18:F3:05:E2:40:09:D4:BC:55:C6:23:D4:B7:F5:6C:D9:D3:18
Certificate issuer: /CN=3eb1788fe220e46434692d1cc437072d792d7888
Certificate serial: 01856CCACB46CF6DB6860C8A1FD286572E7E
Authority key identifier: 3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/rAAY8wXiQAnUvFXGI9S39WzZ0xg.roa
Signing time: Sun 01 Jan 2023 10:05:07 +0000
ROA not before: Sun 01 Jan 2023 10:05:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212674
IP address blocks: 2001:7f8:103::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:cb:46:cf:6d:b6:86:0c:8a:1f:d2:86:57:2e:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eb1788fe220e46434692d1cc437072d792d7888
Validity
Not Before: Jan 1 10:05:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac0018f305e24009d4bc55c623d4b7f56cd9d318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4f:7c:cd:85:c2:bc:e7:a8:15:2b:75:93:72:
46:e9:aa:99:61:91:a2:2e:6d:e5:d3:dc:cc:cd:4d:
a2:83:52:cf:a5:08:69:ce:f6:62:32:b6:ca:a9:84:
20:ee:e5:84:a9:8b:f1:66:4c:cb:c5:c6:6f:c6:04:
77:90:a5:a2:e3:5f:d6:c8:5b:95:12:6e:c7:7c:7d:
b1:2b:8f:84:bb:df:48:ed:2a:a9:f4:13:8b:68:a7:
ec:a5:44:ff:28:1c:1a:32:f3:8b:2a:7b:af:38:6e:
af:ea:61:17:9a:c7:3e:69:f8:49:e7:2c:bf:d2:17:
2a:a2:ad:67:38:fc:6a:2a:65:e4:05:0c:49:17:c8:
f7:0b:84:0b:17:83:43:40:d7:fe:a9:e2:8c:66:13:
a6:8a:cb:50:a0:eb:68:19:1a:5d:b6:e9:08:06:65:
7a:3c:e3:68:c8:b2:cd:33:c2:3e:ed:41:97:e3:c4:
d9:4f:92:08:d2:44:90:d4:94:81:62:a0:a5:e1:c9:
c3:18:af:0d:dc:7c:76:ad:9c:28:6d:30:cf:4a:32:
f1:27:1e:2e:76:7a:46:27:02:d2:93:d0:df:8a:6c:
ae:e7:6c:90:2c:e2:37:59:60:83:81:b8:dd:17:4c:
83:00:a0:d0:15:63:60:c0:24:e2:b7:13:24:d2:a6:
48:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:00:18:F3:05:E2:40:09:D4:BC:55:C6:23:D4:B7:F5:6C:D9:D3:18
X509v3 Authority Key Identifier:
keyid:3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/rAAY8wXiQAnUvFXGI9S39WzZ0xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7f8:103::/64
Signature Algorithm: sha256WithRSAEncryption
3e:9d:82:55:c5:04:de:f3:cd:33:d0:e1:2a:e4:1e:aa:df:06:
1d:b3:56:73:dc:24:5e:43:22:6e:24:05:b9:06:35:3d:09:f7:
3e:d0:10:82:c0:f6:23:bf:93:aa:75:62:a0:67:ec:91:10:ec:
38:1b:80:56:10:f6:06:6b:8b:be:ce:a0:45:c1:08:4c:ad:15:
df:a7:89:bc:f9:dd:22:ed:9a:35:80:a3:ac:41:a6:57:d2:d8:
6e:3e:ca:2f:bd:83:47:c2:8e:a8:e4:59:69:2f:cb:31:5b:13:
0b:bf:dd:d2:f1:7c:08:0c:75:74:49:7a:5c:fd:f1:94:0d:0f:
ea:c8:14:eb:cd:84:20:38:59:b0:a1:d0:fa:13:37:8f:39:66:
4d:b9:69:d6:68:95:df:f4:ab:f8:e5:18:00:b2:7a:d1:e6:b9:
ec:5c:23:a7:58:61:10:ff:f9:d4:3f:46:b2:de:9a:b1:48:13:
c5:cf:3a:d4:c0:1d:fa:5f:38:5e:dd:96:86:16:4e:a7:0f:d8:
4e:4d:50:97:f9:88:86:1b:52:c9:d8:76:74:04:93:3d:cd:e4:
ee:7b:25:b2:a9:23:e7:a9:6e:b0:f5:02:4b:d1:f9:2a:3e:eb:
a0:f1:31:bf:8b:44:a7:0e:70:49:65:8e:8c:ff:44:6d:0e:fd:
9c:b1:3e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:53 2024 by rpki-client on console-fra.rpki-client.org