Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PHX63bTpKtIPTD3yaULh9qKAEek.roa
File: PHX63bTpKtIPTD3yaULh9qKAEek.roa (raw, json)
Hash identifier: cR9dSQLoFMcQRgSvchVWBy5PHe7IXa9NhVxbd+0bsAE=
Subject key identifier: 3C:75:FA:DD:B4:E9:2A:D2:0F:4C:3D:F2:69:42:E1:F6:A2:80:11:E9
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 01856CEF4AB804D9640CE027ED7BEF169983
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PHX63bTpKtIPTD3yaULh9qKAEek.roa
Signing time: Sun 01 Jan 2023 10:44:59 +0000
ROA not before: Sun 01 Jan 2023 10:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49871
IP address blocks: 212.19.51.240/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:4a:b8:04:d9:64:0c:e0:27:ed:7b:ef:16:99:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jan 1 10:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c75faddb4e92ad20f4c3df26942e1f6a28011e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f8:a3:05:2a:27:4e:b2:37:ac:fc:cc:db:4e:
d0:34:fc:36:e7:8a:72:c1:bd:6a:83:50:d0:ef:ff:
c2:b1:50:c3:29:71:b7:92:1b:b1:a7:c1:87:3e:bb:
a6:77:3a:51:27:ed:52:0f:18:01:9d:c2:69:20:cf:
b6:87:48:10:54:7e:f9:61:99:d0:78:cb:5a:ff:17:
88:54:9a:76:59:34:ad:a9:76:10:06:5c:f0:10:ec:
b4:3e:e1:ca:af:4c:e6:6f:d9:9b:50:d6:9a:ce:59:
06:7a:5b:e9:1a:62:44:f7:70:12:0a:98:f0:6e:15:
91:16:e0:b4:14:c7:5e:60:00:03:f5:4a:44:48:a8:
e4:08:ee:eb:5d:4a:ed:da:30:90:60:fc:33:7c:f8:
18:e5:00:30:21:b5:24:09:16:dc:cf:4d:f1:8c:40:
1c:93:78:9d:7d:17:95:dc:f7:19:47:0e:50:c0:40:
0c:7e:70:12:ed:12:87:1a:f8:9f:9e:b4:05:be:a7:
93:cc:59:bd:b1:7a:f4:16:b8:65:45:40:84:13:cd:
c6:b2:27:c2:e0:06:98:ae:0b:61:8c:ae:78:cc:cd:
ef:8b:4e:48:12:8f:7c:9b:4e:09:a5:3a:10:c8:d5:
99:f8:39:a5:0e:40:cb:20:c9:c5:5a:45:83:37:7f:
0a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:75:FA:DD:B4:E9:2A:D2:0F:4C:3D:F2:69:42:E1:F6:A2:80:11:E9
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PHX63bTpKtIPTD3yaULh9qKAEek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.19.51.240/29
Signature Algorithm: sha256WithRSAEncryption
21:1c:95:1d:c0:e4:01:05:11:35:1f:7f:d2:54:52:40:33:44:
49:65:ae:cb:56:41:e1:26:18:67:78:34:1c:72:df:00:ba:df:
63:fc:11:c9:af:e1:d5:eb:20:0a:65:73:38:40:0e:5d:3d:1d:
27:4b:d3:0e:c6:0f:66:67:3f:6a:e5:71:d0:df:3c:3d:3f:90:
68:e1:60:90:7a:d5:5a:0c:28:ad:f9:20:0d:db:7d:00:e4:04:
bc:e3:a0:3a:1e:bb:2c:82:fb:a4:0b:37:ac:05:1e:23:5c:f0:
4c:a7:33:0f:4c:20:a0:5f:01:8e:fa:7f:96:c1:b4:2f:22:94:
2d:84:1d:80:c9:a4:b0:41:6f:75:32:58:55:91:01:f7:ec:1d:
c6:25:f2:70:cc:54:25:24:9e:87:d5:9c:6d:51:fb:59:68:36:
2d:ad:1c:68:09:41:f9:56:57:5a:f9:e7:d0:2f:70:aa:90:ad:
a5:9e:03:0f:c7:f0:eb:ef:e6:5b:57:04:c9:d0:09:d6:ef:99:
99:b5:0a:d8:ee:9b:33:02:3a:7b:aa:91:59:c1:11:63:66:51:
8d:2c:53:26:b0:65:c6:45:11:1f:7e:65:c3:3a:e9:57:23:aa:
2b:ce:c7:44:78:58:7a:b3:14:b5:b2:50:b9:e1:43:8d:f3:d5:
cc:49:47:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:33 2024 by rpki-client on console-fra.rpki-client.org