Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DDhqDFnB3cXQAVME4IcUFjLacQU.roa
File: DDhqDFnB3cXQAVME4IcUFjLacQU.roa (raw, json)
Hash identifier: Z8+WW/+uU+whgopsolfpa9rrLO8fsNIup/JW3rGe8yU=
Subject key identifier: 0C:38:6A:0C:59:C1:DD:C5:D0:01:53:04:E0:87:14:16:32:DA:71:05
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018986AE72E27DE93E74714051A85792C97E
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DDhqDFnB3cXQAVME4IcUFjLacQU.roa
Signing time: Mon 24 Jul 2023 06:55:26 +0000
ROA not before: Mon 24 Jul 2023 06:55:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0f:f42::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 08 Sep 2023 08:43:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:86:ae:72:e2:7d:e9:3e:74:71:40:51:a8:57:92:c9:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jul 24 06:55:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c386a0c59c1ddc5d0015304e087141632da7105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7d:da:be:25:eb:95:02:2d:7a:86:8b:6b:ca:
94:ab:82:78:69:77:43:7b:e2:10:a9:b9:8a:8d:f6:
cf:69:c6:15:79:3c:3d:8f:3f:ea:34:ae:ac:f5:64:
0a:af:cc:4a:d6:bf:a3:1b:90:7c:72:5d:35:e7:8e:
b5:cc:7b:0d:ab:3b:8c:10:85:5a:7c:a7:c2:9d:d3:
14:70:c5:0b:2d:8b:f6:ef:f6:6f:33:33:98:ef:18:
cb:25:23:3b:d2:8d:8c:52:66:aa:32:f3:c2:c0:55:
04:fa:82:73:24:df:83:22:0a:f3:8c:a1:f5:44:00:
f0:8a:eb:ed:45:79:46:f3:17:0a:28:d3:b5:34:9e:
b4:f1:70:37:ba:ec:e0:f7:de:0a:ec:51:9d:da:72:
71:47:65:b4:26:1a:a9:e3:98:08:3a:ad:e6:21:05:
b2:a0:49:80:ec:18:35:ce:b0:eb:35:cc:a3:3a:87:
6c:89:82:c3:8e:24:f6:5c:aa:6f:a4:d8:96:9e:84:
ec:b7:0f:3c:d0:af:7e:5e:ca:30:44:63:70:51:c7:
22:67:f1:cb:10:f7:ac:c8:23:61:4d:57:7f:14:6d:
40:aa:20:7c:c5:c9:9d:02:7a:a2:01:7c:d9:ff:d7:
0d:98:25:09:1d:e0:76:a1:9d:fd:c8:d0:e6:48:61:
32:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:38:6A:0C:59:C1:DD:C5:D0:01:53:04:E0:87:14:16:32:DA:71:05
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DDhqDFnB3cXQAVME4IcUFjLacQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:f42::/32
Signature Algorithm: sha256WithRSAEncryption
97:4d:fe:97:7c:5f:9a:99:6e:44:7b:39:6b:c6:34:c9:47:7a:
ec:9c:84:d1:2f:8e:e2:aa:ac:37:38:df:c6:21:4f:3f:69:b9:
c4:16:2e:f2:92:3c:6a:ec:46:28:18:e3:2f:b0:cb:1f:cb:3a:
78:41:df:63:11:dd:4e:3b:dd:6f:a6:6e:1c:99:7f:fb:fb:00:
e5:f9:3f:e7:ab:c3:60:06:47:02:95:27:b8:d0:d6:50:4d:22:
0d:80:f5:5c:1b:a5:c8:b1:24:f2:fc:6f:86:92:42:b2:d7:c1:
95:99:5b:15:4e:32:c9:24:21:f9:e8:dd:69:fe:1c:95:28:10:
73:93:96:5c:fb:71:30:b5:b7:5c:89:6c:c7:4e:80:70:ac:ca:
be:07:5e:fd:8a:93:2f:9b:49:96:2d:8a:a6:66:ab:f1:61:1b:
e2:22:9a:a6:ab:4c:04:63:54:ae:40:b2:1b:a4:f6:9b:1c:aa:
f6:44:9a:43:03:de:08:04:8b:0d:0d:0f:35:14:78:c3:83:c5:
dd:6e:ba:54:b2:96:da:3c:63:49:89:2f:ae:b5:b6:7d:6e:b9:
f7:56:49:1b:03:12:10:70:86:e1:cd:d6:dd:c1:c8:62:cb:e6:
3c:7f:df:9a:db:91:00:14:df:39:11:b0:46:57:63:4a:5f:b8:
32:31:6d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org