Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/3gh02Q82_Wmmwlsep3uA9dZn8pQ.roa
File: 3gh02Q82_Wmmwlsep3uA9dZn8pQ.roa (raw, json)
Hash identifier: uShtUUaCg7upkxK0oowx10N+DBUqsL9Y+VDcrQIoVNU=
Subject key identifier: DE:08:74:D9:0F:36:FD:69:A6:C2:5B:1E:A7:7B:80:F5:D6:67:F2:94
Certificate issuer: /CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Certificate serial: 01856F26BF98E89272C717BB81225285ACD3
Authority key identifier: A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/3gh02Q82_Wmmwlsep3uA9dZn8pQ.roa
Signing time: Sun 01 Jan 2023 21:04:48 +0000
ROA not before: Sun 01 Jan 2023 21:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200260
IP address blocks: 2a13:75c1:100::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:bf:98:e8:92:72:c7:17:bb:81:22:52:85:ac:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Validity
Not Before: Jan 1 21:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de0874d90f36fd69a6c25b1ea77b80f5d667f294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:68:1a:75:e7:6f:fc:6c:47:58:36:74:41:ef:
29:96:8c:9f:db:4a:b4:80:bd:5e:41:39:58:6d:67:
92:fd:01:9c:50:8f:4e:9f:c2:12:14:c3:79:37:0d:
fb:a9:e8:bd:86:68:57:3a:19:cc:18:f5:6f:10:a2:
72:1c:eb:aa:37:f0:a5:1e:d5:52:7c:4d:30:37:9a:
f7:fd:ec:6a:3d:f3:d3:a9:f4:9c:e4:70:83:ab:1c:
f4:dc:00:4e:27:68:c4:79:90:5c:2d:ab:21:2f:6b:
aa:c1:e0:b2:c1:d7:8a:c6:8e:60:31:66:d1:04:b0:
5d:b4:13:19:63:5a:66:a8:f9:14:7e:c5:7e:bd:8c:
eb:fb:0b:fc:57:04:2d:6e:22:b7:f5:ef:9f:2e:aa:
ed:1c:1f:37:9a:d1:1f:b7:78:dc:bb:3d:5d:ed:a3:
04:a1:79:2d:29:87:21:89:40:75:f6:b2:e2:0b:57:
af:7d:84:7c:4e:34:82:e3:c8:f6:fb:02:7c:e0:44:
9b:d6:cd:02:ca:e2:7f:2a:39:7a:09:f6:b4:c7:a4:
a8:7c:7d:53:62:36:82:b7:73:68:1f:24:f0:e0:63:
10:34:3f:b2:46:9a:1d:97:20:b7:af:f5:7e:5f:80:
5b:70:c7:17:c9:94:95:51:6f:4d:82:54:da:36:49:
82:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:08:74:D9:0F:36:FD:69:A6:C2:5B:1E:A7:7B:80:F5:D6:67:F2:94
X509v3 Authority Key Identifier:
keyid:A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/3gh02Q82_Wmmwlsep3uA9dZn8pQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:75c1:100::/40
Signature Algorithm: sha256WithRSAEncryption
3d:56:d8:8b:70:13:0e:34:cf:4a:16:a7:fa:fa:bf:79:cd:84:
26:c2:78:6a:44:1d:c6:1d:fc:6b:16:7e:43:c0:7d:96:d5:28:
22:4b:a9:0f:db:14:aa:01:c8:61:05:80:b6:9a:fe:48:0b:79:
b5:b0:48:fc:f5:c7:62:9e:85:40:b2:4e:ee:a3:db:6b:80:0c:
32:02:28:29:28:ac:3f:44:cd:5f:be:c7:1f:74:44:f4:a5:80:
79:be:ac:f3:34:33:9f:a3:bc:c7:b0:f3:bc:a5:6c:5b:98:a9:
ea:7d:ad:7c:1a:f2:03:39:b1:49:de:50:9e:1b:96:63:5f:82:
60:1f:d1:6e:29:45:1b:c5:1f:a1:0d:3a:8b:36:09:e6:0c:b6:
cd:bc:a5:b9:dd:f2:7a:cb:36:1d:e4:ea:42:f3:4d:77:69:e5:
82:80:6d:24:8f:5f:56:b3:ac:66:e0:d0:0f:c2:8c:d2:e6:37:
63:58:e6:d1:a2:7b:25:9a:af:9d:1c:7f:03:9c:24:70:7e:aa:
68:3a:48:62:d2:7e:c0:9c:2b:c1:df:40:1f:0a:c1:c4:58:10:
f0:53:6e:07:78:45:b4:74:a3:92:b0:e3:2e:6d:9a:c1:ef:8c:
1f:0a:5a:3f:c1:bf:5a:d8:61:4d:9d:9c:b2:d1:02:40:3a:2d:
23:6c:f0:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:25 2024 by rpki-client on console-fra.rpki-client.org