Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/RTPSWXpzi49xjH-kHOLjfRhVeCs.roa
File: RTPSWXpzi49xjH-kHOLjfRhVeCs.roa (raw, json)
Hash identifier: ZWF7eUTxiPMy9MtLIqWpx34IGyGqj625WYJ7x775+B4=
Subject key identifier: 45:33:D2:59:7A:73:8B:8F:71:8C:7F:A4:1C:E2:E3:7D:18:55:78:2B
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 01856FD5119E8B8FF3B60A3C907C13219B34
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/RTPSWXpzi49xjH-kHOLjfRhVeCs.roa
Signing time: Mon 02 Jan 2023 00:15:12 +0000
ROA not before: Mon 02 Jan 2023 00:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213204
IP address blocks: 2a0f:3784:100::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:11:9e:8b:8f:f3:b6:0a:3c:90:7c:13:21:9b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Jan 2 00:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4533d2597a738b8f718c7fa41ce2e37d1855782b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0a:af:75:83:e3:53:a7:8e:91:00:b5:ab:cc:
07:15:a8:92:d4:e6:5d:74:4d:ec:19:b5:1b:47:4b:
8d:69:b4:07:c5:fc:cc:c4:1c:a5:e3:20:ea:43:09:
11:89:a4:e8:b8:05:48:d8:30:c7:44:e2:3f:c9:a1:
31:a7:72:19:69:e3:48:94:8d:51:2a:35:b6:c8:e1:
69:87:87:e5:9d:ad:da:2e:5a:2f:78:1f:cb:b8:af:
06:cf:35:ce:ae:28:43:e2:18:3c:96:39:be:c3:9c:
38:13:e1:19:e6:8c:d7:62:49:4c:33:d0:cd:c7:ee:
00:2b:94:a2:27:cb:28:39:64:08:6c:80:64:4a:9e:
8f:44:6d:e4:a2:e0:35:4a:8d:9b:60:e9:a3:3f:65:
e8:8a:95:cf:dc:bb:37:34:ef:de:e1:ef:b4:a7:e5:
8b:ce:26:f8:fa:43:7a:9a:c7:bb:61:f8:9e:d2:92:
d8:38:4f:c2:e2:00:b8:c7:ca:32:8d:a2:09:60:59:
be:8b:c9:37:b9:f9:14:35:2e:a8:ac:47:80:bb:31:
6c:d8:b3:cf:c9:35:76:13:17:be:55:a2:e8:ad:a4:
b9:a3:25:86:0f:85:67:3e:32:a2:a2:f8:6a:7c:5d:
2d:8e:20:cc:6d:a6:b5:16:48:18:91:f5:1c:2b:f5:
80:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:33:D2:59:7A:73:8B:8F:71:8C:7F:A4:1C:E2:E3:7D:18:55:78:2B
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/RTPSWXpzi49xjH-kHOLjfRhVeCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3784:100::/40
Signature Algorithm: sha256WithRSAEncryption
82:ce:db:d6:32:60:b5:dc:43:c1:72:7f:80:10:3d:2d:e0:ad:
b9:d4:94:ad:de:f9:6d:d5:d0:19:81:f0:4c:e0:41:3f:9f:c1:
c8:e8:9d:45:13:d3:40:71:95:3a:ce:b8:c9:43:ee:22:21:5a:
41:69:8e:f7:e2:ec:e4:c8:21:d7:01:1b:e1:2e:8b:f4:72:f6:
27:de:6a:ed:51:91:f5:44:50:af:e4:ea:37:51:d5:00:9e:e1:
bd:24:73:ca:5a:32:62:d7:b5:cf:db:d3:7f:be:a6:e7:db:74:
a2:df:84:ca:e0:0b:02:5e:8b:d7:3f:cc:26:ff:7b:f9:d2:cb:
a4:0d:c5:a6:51:8c:96:3b:c1:06:b4:83:ef:bf:9e:ce:10:f9:
f3:65:10:fd:ce:9d:8f:4f:e9:3b:bd:5d:a7:84:99:1f:78:24:
a6:2e:15:f2:98:be:89:a2:c6:7d:39:cb:4e:72:e4:94:d9:f5:
e5:ef:3d:24:3f:01:ef:7a:81:a8:24:20:b3:4c:0f:9a:cb:92:
91:81:c9:d3:ab:5c:53:66:c0:90:e4:30:7b:f8:8f:ea:09:0a:
0d:17:1c:25:c0:32:0c:7f:65:9f:f6:95:ac:e6:e0:cf:20:86:
57:f5:52:78:99:66:2c:16:ef:a0:a1:e9:d1:d2:99:14:ab:49:
d4:5a:05:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:14 2024 by rpki-client on console-fra.rpki-client.org