Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/3R5anwz3zRNjaqhDzqCEyV5aQu0.roa
File: 3R5anwz3zRNjaqhDzqCEyV5aQu0.roa (raw, json)
Hash identifier: Rf10Dz/N3O0EPBujpR4MhVnv0E6J9mDhIXJD68qEiLY=
Subject key identifier: DD:1E:5A:9F:0C:F7:CD:13:63:6A:A8:43:CE:A0:84:C9:5E:5A:42:ED
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0189ABCEAD364C39A134FD555F841F309B70
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/3R5anwz3zRNjaqhDzqCEyV5aQu0.roa
Signing time: Mon 31 Jul 2023 11:56:35 +0000
ROA not before: Mon 31 Jul 2023 11:56:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12608
IP address blocks: 2a04:c104::/30 maxlen: 30
2a0b:ab00::/30 maxlen: 30
2a04:c100::/30 maxlen: 30
2a0f:cf80::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 31 Jul 2023 20:14:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:ce:ad:36:4c:39:a1:34:fd:55:5f:84:1f:30:9b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jul 31 11:56:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd1e5a9f0cf7cd13636aa843cea084c95e5a42ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:34:ec:d8:e2:cb:7b:ff:96:03:72:dc:f9:31:
c6:36:cf:15:0f:18:41:41:42:8e:74:ef:11:fe:89:
3b:36:3d:cf:df:fa:b6:bc:1d:9d:63:1b:3f:05:15:
cb:d1:35:25:df:b0:b4:24:8b:24:b5:86:c4:48:cd:
bd:92:c7:a9:bd:d0:44:93:56:21:65:ec:61:b2:31:
cc:82:e9:b3:9a:b2:1b:80:ba:6c:19:df:14:12:64:
e7:52:9c:b6:0e:fb:c7:3e:11:ad:9c:2a:6f:87:d1:
13:a6:0a:5c:55:95:e8:4a:78:cb:c1:3e:94:21:f1:
4d:05:c6:38:ef:c1:3c:8e:b1:5c:0a:80:4e:20:36:
a9:4d:97:bd:81:ab:4b:8c:59:8a:17:ba:38:3b:dc:
14:1e:0e:da:40:19:a0:21:d6:fc:40:de:dc:02:72:
ac:fc:b0:3f:5f:6f:17:66:6f:d1:f5:a4:85:91:d3:
79:61:ef:46:2e:b7:76:3d:fa:4b:58:79:bb:4c:cc:
26:54:0a:b1:7b:94:34:93:52:55:00:56:7a:df:a1:
84:ce:3c:f4:9e:c3:f0:2a:f9:35:72:45:12:db:ee:
1b:94:9f:a2:24:95:1a:e4:df:bb:27:45:9e:e8:b6:
53:61:1c:e3:05:81:2a:c2:1d:e5:88:95:a8:5e:4d:
79:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:1E:5A:9F:0C:F7:CD:13:63:6A:A8:43:CE:A0:84:C9:5E:5A:42:ED
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/3R5anwz3zRNjaqhDzqCEyV5aQu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:c100::/29
2a0b:ab00::/30
2a0f:cf80::/30
Signature Algorithm: sha256WithRSAEncryption
b0:27:39:6d:bd:70:5c:75:01:07:96:70:07:b1:ba:7f:6c:7c:
8b:2f:b7:38:c7:41:66:72:3b:2e:b3:a0:bd:d4:6b:e2:4f:e1:
e6:c2:55:4c:a4:d4:bb:dc:80:51:5a:bf:62:75:d5:a7:92:b8:
35:c7:d1:03:20:c7:65:8a:6e:2e:2c:20:6e:76:3a:40:8c:b1:
2f:79:92:7c:ab:99:37:09:b7:79:48:16:c1:52:ae:2f:0e:a6:
ac:7e:e4:dc:37:9e:65:f2:83:87:2d:40:0f:69:72:b0:41:aa:
f6:1a:af:a2:0c:91:83:bf:67:4b:0d:05:ba:a4:81:ed:e5:c4:
17:b6:03:5c:15:8c:8f:9a:ea:7b:63:ad:08:c2:a1:19:58:97:
8b:e0:a0:29:69:08:5b:33:fa:44:3e:ce:f0:e0:44:dc:a8:2b:
d0:3c:5d:06:a6:1e:c2:b9:73:55:64:df:ee:18:7a:11:8e:60:
a2:3b:a5:da:ed:e0:77:6e:a5:f4:7b:07:d0:71:8e:3f:7a:f8:
33:d9:e1:da:67:1a:cc:27:6e:d8:64:f2:71:b2:97:05:c3:78:
ca:9f:51:38:14:8b:8f:44:21:52:d5:75:13:85:38:58:f0:2b:
15:04:d5:9e:06:62:cf:bb:d7:a4:78:ee:60:39:5d:95:e6:88:
a9:b9:8b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org