Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/PPYkDTJxgqsxdyd6IopCxhfOZ4c.roa
File: PPYkDTJxgqsxdyd6IopCxhfOZ4c.roa (raw, json)
Hash identifier: qsG4mAqR6yMK04cOOId0rnAMxmBeW6+XvugtkVNmy1s=
Subject key identifier: 3C:F6:24:0D:32:71:82:AB:31:77:27:7A:22:8A:42:C6:17:CE:67:87
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 01856C6F0C984844953142F01BA52EB1E7C7
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/PPYkDTJxgqsxdyd6IopCxhfOZ4c.roa
Signing time: Sun 01 Jan 2023 08:24:55 +0000
ROA not before: Sun 01 Jan 2023 08:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210691
IP address blocks: 2a0e:46c4:1500::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:0c:98:48:44:95:31:42:f0:1b:a5:2e:b1:e7:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 08:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cf6240d327182ab3177277a228a42c617ce6787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ec:8b:f3:3e:14:25:aa:c3:96:eb:be:36:a5:
af:90:e6:a9:42:87:a6:c4:df:89:24:08:20:f1:28:
04:e3:9b:94:c8:5a:c0:0f:b7:c9:4d:0b:bb:3b:35:
f2:cf:6c:b4:32:14:52:f3:9c:f4:e0:f1:5c:4d:e3:
08:48:69:6c:5d:9f:55:75:3e:2d:e2:6a:45:34:b7:
76:ac:fd:e4:1e:da:8c:4b:c9:d1:ef:57:ea:fe:e6:
71:e9:56:c4:1a:15:b9:09:fc:57:77:01:38:4b:c7:
e3:0c:03:ab:ae:22:ae:f9:01:6b:6c:24:a8:b3:79:
ed:9d:1b:d5:95:2a:2f:c6:dc:47:44:d0:da:b8:40:
93:40:00:ed:c8:0c:f2:54:a4:c6:1d:b4:64:09:f4:
c2:ba:75:04:b3:19:43:42:87:c4:f7:da:dd:64:f0:
2d:6f:ec:df:c1:b4:b1:d2:ac:a7:9d:4f:41:c4:95:
0d:4b:25:fd:d4:aa:4a:e9:e0:1a:03:90:0d:bc:5e:
9b:d4:7e:41:c4:7d:19:71:03:aa:7c:1d:a7:54:cb:
86:a8:3f:2b:77:a8:5b:f7:fa:c0:1e:ee:e7:76:0e:
c2:06:43:c9:88:03:c7:6c:57:4b:4c:41:0a:e4:5f:
84:77:2b:c6:cb:f7:ee:3b:7b:30:fa:bc:26:da:c5:
f7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F6:24:0D:32:71:82:AB:31:77:27:7A:22:8A:42:C6:17:CE:67:87
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/PPYkDTJxgqsxdyd6IopCxhfOZ4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:1500::/44
Signature Algorithm: sha256WithRSAEncryption
81:b9:af:53:ac:88:8c:c2:bb:5c:17:56:a0:d8:3c:c2:c0:38:
91:86:ad:c0:e8:00:68:eb:5a:3e:b7:c3:1f:29:f7:eb:7e:8e:
43:b5:fb:40:5e:77:2a:f1:2f:75:0a:52:6b:7f:82:23:f0:21:
1d:67:40:ae:a7:1c:a1:c3:70:7d:ff:06:c6:b5:0f:54:2c:7b:
20:c1:d6:86:38:62:7d:f9:2d:60:8a:20:33:ec:74:93:47:62:
65:6f:85:36:9b:6c:92:f5:aa:2c:1e:f9:84:51:96:33:63:52:
33:9b:86:08:f3:4c:64:4d:7f:1f:c5:8b:f6:64:fb:f3:4e:cc:
68:35:19:cb:30:3c:70:f2:c4:6c:62:db:c3:23:14:19:4c:f4:
00:db:f9:e7:d6:b3:64:3b:ce:1d:6e:01:3b:ee:06:af:07:a3:
7c:7a:94:c7:a5:ed:37:82:51:b5:ec:72:3e:70:e1:71:41:1b:
78:ef:14:de:05:39:86:45:c3:d3:f1:bd:81:8b:5c:ac:d3:35:
1e:b0:8d:75:39:f3:06:11:6b:1f:bf:50:91:d9:b0:1f:51:f8:
ae:84:91:ba:c0:ff:36:a8:aa:56:48:de:26:95:f9:1d:33:ef:
d2:c3:70:7d:a1:c9:1e:fb:a5:36:80:05:2f:b2:d0:80:a4:b4:
e8:5e:c5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:15 2024 by rpki-client on console-fra.rpki-client.org