Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/47vLe6IGNtnkbuSibfbtG0XSHBc.roa
File: 47vLe6IGNtnkbuSibfbtG0XSHBc.roa (raw, json)
Hash identifier: uf+92vOqaFtdzkYRJN1b2CbwCemmxpvZjdSthqMrZKM=
Subject key identifier: E3:BB:CB:7B:A2:06:36:D9:E4:6E:E4:A2:6D:F6:ED:1B:45:D2:1C:17
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 01856FD50F65BD10E4EE96B17F5CA2681400
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/47vLe6IGNtnkbuSibfbtG0XSHBc.roa
Signing time: Mon 02 Jan 2023 00:15:12 +0000
ROA not before: Mon 02 Jan 2023 00:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43617
IP address blocks: 2a0f:3784::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:0f:65:bd:10:e4:ee:96:b1:7f:5c:a2:68:14:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Jan 2 00:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3bbcb7ba20636d9e46ee4a26df6ed1b45d21c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:03:da:5c:95:83:57:41:e3:c7:3a:4c:4d:82:
ec:26:75:ba:70:0f:c9:98:9a:4e:9e:35:e6:bf:a5:
c3:1b:be:83:82:f3:2c:8a:ca:60:13:2b:a4:cc:30:
c4:e0:19:e1:4b:e9:f2:91:52:a2:d5:9e:93:eb:3f:
d3:9f:99:e1:3d:2b:c0:da:dc:54:2a:48:0c:fe:7c:
3c:66:c5:bc:ff:45:5a:62:2d:03:2e:c8:5b:ac:54:
81:88:51:c8:4e:f5:52:86:f1:94:a3:1c:f1:64:f4:
21:12:3b:1b:50:12:6d:c7:8a:61:48:86:f6:22:83:
bb:53:5b:fa:5c:0c:f8:08:e6:00:c8:af:b4:48:5d:
bd:5f:d0:3c:c0:17:25:96:16:b8:cc:08:01:e8:0a:
ec:53:19:42:d5:9b:80:50:46:72:c7:7f:aa:2d:bb:
4a:dd:13:05:9c:00:57:66:cc:51:8d:db:2f:91:42:
58:19:f7:ed:44:0d:18:e1:4b:6a:20:62:07:db:bc:
03:44:4c:3c:ff:af:62:cb:0d:05:15:31:c7:1d:53:
fe:9e:58:fa:c7:cb:41:a7:84:f0:75:8d:2a:4b:a5:
5e:06:c2:e1:99:d8:b9:8f:ae:2f:76:81:40:17:ae:
58:19:0f:cd:e5:c0:38:b6:34:c2:3a:8c:d0:91:61:
85:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BB:CB:7B:A2:06:36:D9:E4:6E:E4:A2:6D:F6:ED:1B:45:D2:1C:17
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/47vLe6IGNtnkbuSibfbtG0XSHBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3784::/32
Signature Algorithm: sha256WithRSAEncryption
bd:19:07:de:b3:50:6f:f0:5c:8e:89:ef:93:1a:dd:4a:c6:ad:
5d:ed:47:11:94:45:7c:4e:65:81:1f:03:7a:13:ed:be:0d:27:
07:4e:b1:9e:8e:90:47:e0:7f:2b:ce:75:71:b9:ca:59:a9:07:
dc:77:43:d7:6c:b9:ad:54:df:64:e0:71:fb:b3:e8:9d:37:80:
d9:ce:27:e2:2b:a6:23:8f:46:1e:35:73:84:86:70:13:41:46:
79:a5:20:a9:33:c6:d9:6e:23:67:f1:fb:b4:47:6d:4b:a6:b2:
8a:d3:6b:df:4e:67:60:d6:7f:03:1f:3d:cd:09:c8:79:bb:fb:
96:46:c0:60:4b:af:9c:47:0f:f6:98:dd:54:d1:bd:e8:fb:5e:
4e:6d:1d:00:95:0f:c6:d6:96:1a:24:5e:b8:26:a2:97:45:bb:
fd:7c:0d:b4:4c:fe:49:4c:16:1b:ce:24:98:1c:63:ca:33:8f:
dd:48:30:77:cf:d0:04:5d:4c:f7:b2:e5:d9:69:a8:e6:6c:b3:
2d:ca:08:fa:b5:13:61:37:de:8e:f5:fb:d0:66:c1:a2:34:ff:
e4:63:5c:4e:08:fb:6a:35:b9:30:11:09:e5:bf:79:6b:be:12:
96:d6:ba:53:14:22:9e:1b:80:66:d9:56:04:fc:03:0f:90:08:
36:f3:77:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:14 2024 by rpki-client on console-fra.rpki-client.org