Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/Phkq2OEnwtTt01h0FEkTg-PCwAg.roa
File: Phkq2OEnwtTt01h0FEkTg-PCwAg.roa (raw, json)
Hash identifier: QBborPWdaVKF12Rn4X/vEcn9Wrwi3+aELdwIw1wmMSA=
Subject key identifier: 3E:19:2A:D8:E1:27:C2:D4:ED:D3:58:74:14:49:13:83:E3:C2:C0:08
Certificate issuer: /CN=79a304ba34b61a15e3797ffd4d1ae8c218c1c7bf
Certificate serial: 01856F9DAA95CC4B483595A9499C7929362D
Authority key identifier: 79:A3:04:BA:34:B6:1A:15:E3:79:7F:FD:4D:1A:E8:C2:18:C1:C7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaMEujS2GhXjeX_9TRrowhjBx78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/Phkq2OEnwtTt01h0FEkTg-PCwAg.roa
Signing time: Sun 01 Jan 2023 23:14:41 +0000
ROA not before: Sun 01 Jan 2023 23:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49768
IP address blocks: 2a12:c040::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 20 Mar 2023 10:52:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:aa:95:cc:4b:48:35:95:a9:49:9c:79:29:36:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a304ba34b61a15e3797ffd4d1ae8c218c1c7bf
Validity
Not Before: Jan 1 23:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e192ad8e127c2d4edd3587414491383e3c2c008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:34:a3:83:d1:3f:f1:1d:e6:8b:61:9e:4d:84:
ea:0d:a8:f3:f8:8a:7f:40:11:eb:69:25:ea:14:3a:
0d:9a:8b:54:5e:f9:82:c8:51:cf:f5:19:26:55:73:
3d:35:b7:34:69:92:0c:14:43:c8:28:72:ec:71:f7:
17:82:57:81:3a:e4:db:e9:e8:93:1d:cc:78:d8:d8:
6b:0e:67:db:e1:71:e4:81:fc:d9:ef:36:72:c7:95:
7e:47:83:1e:a4:2c:5a:33:ca:50:fe:0b:17:e9:92:
a6:b1:82:ec:ee:11:1d:b3:33:fb:06:32:5f:c0:fe:
c5:9f:56:a6:55:17:c6:78:e4:5c:12:df:56:ea:c0:
8a:e3:08:7d:29:4f:a2:f6:c0:5b:e7:21:1c:1f:8f:
a7:58:0b:36:a6:2b:ab:d5:77:26:e3:ed:72:fd:13:
61:81:9e:f9:68:e0:5c:dc:f4:e2:1e:c4:d0:b5:c3:
a4:3e:59:20:c4:3f:f3:44:7d:c5:aa:6b:0c:e3:52:
0b:66:7b:7c:fe:77:81:c9:e8:ba:96:40:58:38:04:
de:49:ff:a9:51:bf:b2:63:5e:fd:4d:83:c8:66:d2:
96:a9:b5:2d:d9:53:e6:70:2a:6c:c3:e7:2e:9a:ff:
f9:f2:ba:89:a8:fb:74:c6:03:77:11:e9:75:8f:a9:
49:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:19:2A:D8:E1:27:C2:D4:ED:D3:58:74:14:49:13:83:E3:C2:C0:08
X509v3 Authority Key Identifier:
keyid:79:A3:04:BA:34:B6:1A:15:E3:79:7F:FD:4D:1A:E8:C2:18:C1:C7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaMEujS2GhXjeX_9TRrowhjBx78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/Phkq2OEnwtTt01h0FEkTg-PCwAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/eaMEujS2GhXjeX_9TRrowhjBx78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:c040::/29
Signature Algorithm: sha256WithRSAEncryption
48:56:f2:c5:a4:36:df:bf:6f:43:b7:d2:d5:6b:2d:24:9d:4c:
0a:87:45:8e:fb:9b:65:dd:bc:af:66:93:34:de:17:90:e8:f8:
e2:ff:a2:cf:ab:8c:00:90:71:1a:55:0c:09:32:9c:b7:a1:22:
2f:0b:ec:d0:10:67:fe:68:fc:f7:71:3f:61:10:33:c6:e0:f1:
7e:91:27:86:de:66:c7:0d:19:57:fb:64:b9:85:ec:59:40:51:
b5:76:f7:31:ad:ab:3e:d3:d3:53:61:ce:9f:c2:1e:37:ad:9a:
1d:e3:ca:c6:df:43:5a:33:2f:90:b5:ef:07:28:c0:9a:1a:d2:
20:8a:06:1d:ca:30:31:b3:b1:2c:53:99:82:cf:a0:bd:74:43:
b5:9f:05:fe:41:38:7a:78:01:ac:9f:17:63:df:e7:4a:f6:00:
d4:3b:d1:fe:7c:7c:eb:24:aa:51:ab:fc:e5:ab:49:c1:e5:f5:
73:7b:d1:75:47:81:98:93:22:7b:57:e0:00:f4:8b:e0:a9:70:
9a:2d:39:95:4e:b7:a2:31:34:cb:8c:bb:e7:4c:2d:b7:34:37:
80:e0:b7:4b:dc:34:bc:3f:79:f7:b0:c5:a1:f0:30:47:c8:4a:
c8:6f:2f:af:65:26:e6:f9:a0:f9:90:50:d4:5c:bb:b8:f6:6d:
72:1f:46:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:31 2024 by rpki-client on console-fra.rpki-client.org