Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/PcXDIRpQrCTiZacbbWeXvijCEXI.roa
File: PcXDIRpQrCTiZacbbWeXvijCEXI.roa (raw, json)
Hash identifier: iuxkNCQFLctwKqoaFXzqpUT01AzIXJ1o7IoezQqgh60=
Subject key identifier: 3D:C5:C3:21:1A:50:AC:24:E2:65:A7:1B:6D:67:97:BE:28:C2:11:72
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 01856C6F1076A3A27AC3A7B3538FDD2D1CE1
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/PcXDIRpQrCTiZacbbWeXvijCEXI.roa
Signing time: Sun 01 Jan 2023 08:24:55 +0000
ROA not before: Sun 01 Jan 2023 08:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213326
IP address blocks: 2a0e:46c4:2c00::/44 maxlen: 47
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:10:76:a3:a2:7a:c3:a7:b3:53:8f:dd:2d:1c:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 08:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3dc5c3211a50ac24e265a71b6d6797be28c21172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:31:39:ce:1c:fc:02:66:3f:5c:84:2e:b6:a8:
c1:8e:4b:23:67:89:9f:32:04:7e:05:bf:f6:c0:24:
f4:a4:92:46:1d:60:8f:07:c0:a6:d6:82:21:ee:f1:
4b:84:8c:a2:17:39:80:c2:ae:69:8a:80:79:b4:00:
2d:8e:48:88:6b:27:2a:d1:5a:1f:e4:8b:17:7e:d0:
c0:bc:24:2e:a7:6b:31:42:e5:89:1a:7b:95:1d:4f:
1d:89:63:76:fc:fa:0b:af:0f:e9:34:5d:4f:17:df:
a3:98:4f:fa:c1:55:2d:14:2e:7d:9f:db:23:a4:f3:
38:42:75:46:72:ad:11:5a:c5:83:54:f8:ca:a5:eb:
d9:ee:c9:f3:e8:3b:01:7c:8b:0a:e2:e7:25:27:74:
a5:50:f8:5e:b9:7c:2d:63:98:f7:4e:d7:d4:2f:7a:
1b:5b:af:b2:ea:f1:4f:14:93:b6:45:db:20:e9:8d:
9b:d0:cf:90:8f:51:b6:bf:81:48:ba:3b:e7:89:70:
be:4d:04:7e:c8:e4:2a:cf:fd:56:e3:f6:f7:35:81:
bd:03:c0:97:63:20:5d:9c:f1:14:e4:98:1a:f8:7c:
e7:b5:81:ee:ce:af:7f:c4:0b:8b:65:b5:16:4a:87:
c5:bf:80:88:33:14:c1:bb:09:a6:a1:f2:bb:39:16:
de:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C5:C3:21:1A:50:AC:24:E2:65:A7:1B:6D:67:97:BE:28:C2:11:72
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/PcXDIRpQrCTiZacbbWeXvijCEXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2c00::/44
Signature Algorithm: sha256WithRSAEncryption
6e:18:ea:c7:c1:9b:da:c9:41:c4:0f:84:3f:d5:b5:15:f7:c5:
03:90:4b:aa:5a:bf:fa:2b:88:76:81:74:5e:7a:fb:53:57:3f:
92:6f:51:33:37:0c:64:4c:43:6a:93:ba:ce:6a:1b:f3:93:d5:
05:bb:2a:5a:df:2e:61:35:c9:f4:6b:7c:33:2d:ee:32:96:a4:
9f:0f:0a:e4:2b:9c:c8:7d:17:15:2d:88:c1:12:98:5a:a5:fc:
97:03:0d:1c:cc:b5:48:5d:2b:5e:8c:12:27:35:4d:de:ca:6a:
ab:9a:21:c5:9b:bb:da:f2:2b:7e:a5:eb:2e:52:d9:8c:27:8b:
33:ab:32:e4:cb:0e:b6:2c:be:be:29:4d:fd:05:4c:39:70:a0:
df:1f:b0:e2:32:ff:5d:e9:c2:e6:8d:80:77:f8:71:41:2d:8f:
6c:1b:ad:60:39:e5:a5:d1:84:55:cf:ce:08:ac:50:86:ed:c7:
23:3e:b6:7c:2a:3f:14:7a:d9:3d:60:b6:18:ac:43:2b:90:f2:
97:9f:21:f1:ed:89:4b:95:04:11:9a:83:96:19:c1:31:08:1a:
24:a7:84:5c:00:13:48:e2:44:b7:54:a8:ef:2e:00:bd:37:c8:
7e:90:1f:67:7a:e1:8c:a3:60:b2:fa:f6:8d:d2:c7:6b:41:e4:
ea:ec:e6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:40 2024 by rpki-client on console-ams.rpki-client.org