Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/8802b1-3c91-4f09-a265-6d60b4b8dab7/1/umoZuKXTBOqQXHmqsD5-R4fYcn4.roa
File: umoZuKXTBOqQXHmqsD5-R4fYcn4.roa (raw, json)
Hash identifier: nG53NdF/4UFXL+wmpZSfPoC9tVS3nwwmNG4nhRHGJhk=
Subject key identifier: BA:6A:19:B8:A5:D3:04:EA:90:5C:79:AA:B0:3E:7E:47:87:D8:72:7E
Certificate issuer: /CN=3ce2c3edb5397f832ee8fe6a9eec3c5e43627077
Certificate serial: 01876F702033CA4173F2D49A9D53B614BC5D
Authority key identifier: 3C:E2:C3:ED:B5:39:7F:83:2E:E8:FE:6A:9E:EC:3C:5E:43:62:70:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POLD7bU5f4Mu6P5qnuw8XkNicHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/8802b1-3c91-4f09-a265-6d60b4b8dab7/1/umoZuKXTBOqQXHmqsD5-R4fYcn4.roa
Signing time: Tue 11 Apr 2023 08:30:31 +0000
ROA not before: Tue 11 Apr 2023 08:30:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44838
IP address blocks: 2a02:7340::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:70:20:33:ca:41:73:f2:d4:9a:9d:53:b6:14:bc:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ce2c3edb5397f832ee8fe6a9eec3c5e43627077
Validity
Not Before: Apr 11 08:30:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba6a19b8a5d304ea905c79aab03e7e4787d8727e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4e:dc:7e:12:93:20:d8:40:a5:83:f3:22:d6:
d3:16:fd:8c:35:8f:5c:7b:ef:5d:93:27:21:4f:f1:
61:02:31:6e:d6:73:02:66:29:79:e0:b6:6a:50:5c:
53:25:3e:e7:08:42:e9:2a:0b:c0:57:61:a1:82:16:
d1:40:ae:19:b6:8a:1e:19:5e:b4:26:f5:00:0d:17:
fd:47:85:ae:cc:dc:fc:6b:40:97:33:1c:52:04:56:
08:de:69:bf:e0:ba:3f:27:72:44:fc:06:54:f4:af:
b7:29:19:58:d6:b9:37:9c:f1:21:bb:ac:33:4b:aa:
c9:0b:62:89:83:78:9c:1f:32:a3:90:71:96:62:66:
d4:6f:4c:82:08:b1:b9:9c:c0:7e:67:81:06:0f:e2:
79:e1:ed:ff:51:4e:e4:eb:71:42:07:8a:3b:ec:59:
77:e6:f7:94:e8:81:7e:26:77:96:0d:88:2e:ea:97:
c9:e2:8f:93:ed:68:ed:6c:ee:d1:98:6a:b1:9c:84:
60:c4:bb:eb:05:19:23:9a:af:d5:d3:3a:f9:a1:75:
78:c2:2c:3c:70:25:99:8b:e1:52:70:2e:54:0a:d1:
92:25:b5:94:a0:1a:c5:fe:ac:56:86:7a:27:43:9c:
ce:bf:64:1d:b5:13:b4:72:f0:65:33:25:d1:98:99:
1a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6A:19:B8:A5:D3:04:EA:90:5C:79:AA:B0:3E:7E:47:87:D8:72:7E
X509v3 Authority Key Identifier:
keyid:3C:E2:C3:ED:B5:39:7F:83:2E:E8:FE:6A:9E:EC:3C:5E:43:62:70:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POLD7bU5f4Mu6P5qnuw8XkNicHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/8802b1-3c91-4f09-a265-6d60b4b8dab7/1/umoZuKXTBOqQXHmqsD5-R4fYcn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/8802b1-3c91-4f09-a265-6d60b4b8dab7/1/POLD7bU5f4Mu6P5qnuw8XkNicHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:7340::/32
Signature Algorithm: sha256WithRSAEncryption
3e:a6:eb:65:54:b4:38:5b:bb:ec:05:b0:dd:1a:3e:87:9d:93:
68:06:3a:0f:77:8d:68:ea:77:9d:33:e7:ce:d2:7a:fa:1f:30:
44:2c:b2:20:4c:da:f4:32:99:42:e8:55:dd:ce:3b:db:a4:58:
cf:f7:33:b7:12:d6:19:47:6a:55:0b:64:21:18:72:2e:45:48:
4c:27:32:51:0a:4b:d1:45:d0:28:2a:3c:e9:14:83:05:cd:32:
37:d7:de:75:5e:4f:66:e4:b3:42:71:5b:10:e9:61:b5:1a:ef:
99:6d:63:50:35:41:04:10:e8:25:cb:b6:17:04:e6:90:fc:1a:
75:50:a7:98:df:4c:b9:9c:29:e8:f1:30:63:70:65:64:c1:22:
6a:dc:1d:20:18:00:58:88:7c:78:8d:4c:8d:57:76:bf:f4:5d:
bf:8e:a3:1f:82:57:9d:8e:4a:96:40:df:01:8f:90:d4:62:15:
df:10:b9:02:89:fa:1b:b1:b5:ee:53:f6:93:a8:72:d5:66:64:
49:92:9e:2e:16:b3:2f:06:d1:6b:a0:3c:e7:44:2a:1c:33:a2:
79:39:15:ff:be:c9:f4:06:ae:09:dc:aa:1e:2b:d4:eb:96:63:
5c:d9:bb:72:31:2e:fe:9d:7e:ab:83:c6:2a:89:57:9b:f9:7e:
e7:46:77:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org