Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/A3gHLi9-RpPd1TmUhoZQx3RVV-E.roa
File: A3gHLi9-RpPd1TmUhoZQx3RVV-E.roa (raw, json)
Hash identifier: o2Dupc3dD5K0M4AUqixeDtvfDVzd/F7L2ggqcx2QH1o=
Subject key identifier: 03:78:07:2E:2F:7E:46:93:DD:D5:39:94:86:86:50:C7:74:55:57:E1
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 018CC56E7AEBB88245687C0C18A65CD25698
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/A3gHLi9-RpPd1TmUhoZQx3RVV-E.roa
Signing time: Mon 01 Jan 2024 14:30:01 +0000
ROA not before: Mon 01 Jan 2024 14:30:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:5440::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 03 May 2024 19:42:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:7a:eb:b8:82:45:68:7c:0c:18:a6:5c:d2:56:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Jan 1 14:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0378072e2f7e4693ddd53994868650c7745557e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:17:02:41:d7:6c:cc:d6:e7:03:38:ac:e6:7f:
14:78:a0:cd:ed:11:98:65:e6:2c:59:95:ba:ee:b6:
62:fb:e8:48:b0:3a:f2:88:56:7f:6f:4a:51:e1:9e:
40:18:3b:51:42:6c:dd:a8:e7:02:67:35:6c:c1:fb:
36:3d:41:c7:02:e9:7b:1b:1e:00:42:00:dd:ab:be:
cd:00:d4:b5:81:93:65:96:76:9f:ac:13:34:ba:6a:
c5:54:f7:5e:dc:d5:b3:64:b5:d9:3d:07:9f:61:ce:
d6:7c:0f:7a:e0:cb:84:8e:ad:5c:df:79:a4:fc:cc:
2f:75:02:b5:05:98:bd:2c:dd:86:2a:a2:a8:58:24:
a2:a3:09:9c:b5:30:d4:ed:12:37:79:ae:f4:13:11:
d5:1b:df:cd:18:2b:ab:13:ff:43:5d:28:fb:56:fc:
c4:aa:0d:80:e8:3e:68:48:de:1e:48:5d:ac:00:b6:
6c:0d:0c:8c:12:0e:66:2c:4e:98:7d:90:db:90:ec:
0c:16:0c:4f:c4:21:f3:7e:34:70:06:07:a1:e9:0d:
1c:9e:70:5f:77:f6:4e:ca:17:34:c5:b3:3a:d5:9f:
4c:06:19:af:f5:1c:a3:0a:3d:8f:07:ff:d8:50:f9:
62:a0:69:ce:2c:82:17:f6:43:1d:51:99:cd:f7:bd:
76:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:78:07:2E:2F:7E:46:93:DD:D5:39:94:86:86:50:C7:74:55:57:E1
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/A3gHLi9-RpPd1TmUhoZQx3RVV-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5440::/29
Signature Algorithm: sha256WithRSAEncryption
a5:d0:12:65:96:15:09:a4:5c:ce:37:ee:1f:86:b9:c8:48:ad:
8e:28:21:ab:69:ab:b2:9e:70:a0:3e:9f:f2:cf:58:3b:58:70:
51:57:34:9d:af:c2:8e:28:fa:e5:ab:bb:c6:d5:81:de:c7:44:
73:55:16:6f:e2:cd:37:e8:45:b5:b3:61:a2:17:f1:0d:6b:ff:
2b:06:cd:c3:52:0a:24:74:9d:a8:ee:9f:f9:50:34:24:0b:6f:
77:c4:80:a1:6e:e8:a2:15:33:90:00:8e:fd:29:a6:cb:f4:b5:
ae:0a:a8:cd:8b:6f:72:84:16:9e:1f:e5:d8:09:36:c0:9d:6c:
8c:86:a8:28:ba:be:65:2b:b8:62:eb:93:8f:d8:4d:ea:cd:08:
c0:5d:af:02:e4:94:98:dc:7b:3b:0b:fe:f8:64:34:be:b1:1d:
e5:12:ea:1d:ae:06:b8:10:30:b7:73:94:1d:05:29:33:38:be:
7f:8d:19:9f:2f:df:ae:4b:f5:f1:ce:00:52:77:dd:c5:d2:e5:
3f:a3:f3:94:a2:3b:cc:17:6c:58:a5:b8:18:df:c3:b6:61:6c:
92:5e:39:19:00:fa:4b:31:23:8d:27:6d:ea:d9:88:e4:d9:60:
63:a9:d9:fc:95:df:3f:e6:1e:4c:1b:51:50:fd:db:d5:bd:82:
2a:c4:f2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:41:55 2024 by rpki-client on console-ams.rpki-client.org