Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/PPNbeJjqCPe-d7r0iEfbfnx6zYA.roa
File: PPNbeJjqCPe-d7r0iEfbfnx6zYA.roa (raw, json)
Hash identifier: xgEoXtS52grbV2WDJU6wtXsTvLAR8JCESElzFPKUmrE=
Subject key identifier: 3C:F3:5B:78:98:EA:08:F7:BE:77:BA:F4:88:47:DB:7E:7C:7A:CD:80
Certificate issuer: /CN=03c33e43ef56527a169d6ac6d7e62c63d1973051
Certificate serial: 018E18DA4390F37CC0CC8D725CA766B1E80E
Authority key identifier: 03:C3:3E:43:EF:56:52:7A:16:9D:6A:C6:D7:E6:2C:63:D1:97:30:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/PPNbeJjqCPe-d7r0iEfbfnx6zYA.roa
Signing time: Thu 07 Mar 2024 12:19:01 +0000
ROA not before: Thu 07 Mar 2024 12:19:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204010
IP address blocks: 2a05:907::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 23 Mar 2024 08:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:da:43:90:f3:7c:c0:cc:8d:72:5c:a7:66:b1:e8:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03c33e43ef56527a169d6ac6d7e62c63d1973051
Validity
Not Before: Mar 7 12:19:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3cf35b7898ea08f7be77baf48847db7e7c7acd80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:10:dc:31:b4:37:b2:4c:fd:8c:fc:f5:9e:a8:
6a:d3:3f:53:fe:82:70:7e:79:68:9f:05:6d:ff:50:
16:77:18:ee:d0:ff:bd:2f:f6:77:c5:3c:bb:05:f9:
96:36:b9:62:02:0d:15:6b:3f:e2:b2:c3:3a:ef:85:
9d:5b:dc:58:0b:6d:e6:dd:58:5e:45:91:83:0a:5a:
2f:1a:98:76:4f:3c:c1:c8:04:87:5d:51:17:8f:6a:
37:6c:90:99:3e:fb:07:ee:0c:46:cb:20:93:fc:7d:
50:b4:87:91:31:ce:56:fc:7b:31:f4:e2:ed:55:af:
81:93:20:16:63:93:13:98:73:7a:f0:36:4f:a9:f4:
37:22:56:55:0a:c7:7c:c4:34:5b:fb:b6:39:d7:4c:
8c:c5:0b:1f:56:b3:73:ca:0b:ba:2b:70:19:c5:e6:
29:22:92:af:ee:34:d2:e2:c7:89:23:46:64:e8:64:
87:a5:f7:b7:5b:f8:6d:dc:2a:0d:4f:1a:aa:34:4f:
97:5e:00:d9:dc:f1:ab:34:53:ba:29:02:a5:fa:50:
87:aa:85:30:c2:c1:09:66:0f:54:62:b1:22:09:8c:
4e:f1:c7:23:2b:fa:53:83:8a:b2:02:f7:d5:6e:5a:
f0:bf:a1:34:23:b6:9b:64:3e:d6:e9:e6:66:11:8d:
6e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F3:5B:78:98:EA:08:F7:BE:77:BA:F4:88:47:DB:7E:7C:7A:CD:80
X509v3 Authority Key Identifier:
keyid:03:C3:3E:43:EF:56:52:7A:16:9D:6A:C6:D7:E6:2C:63:D1:97:30:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/PPNbeJjqCPe-d7r0iEfbfnx6zYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:907::/32
Signature Algorithm: sha256WithRSAEncryption
0b:9e:ae:ef:47:2f:1e:8d:97:b4:35:78:f3:43:4f:52:b9:0a:
ff:bc:b1:40:6a:29:96:7c:ad:42:e9:3f:40:4d:18:d8:5e:3e:
d4:da:10:40:61:53:82:8c:1a:2d:16:6f:35:fc:ce:9a:93:55:
6b:85:a5:34:29:b2:d1:69:9b:00:2a:2f:7e:8c:1d:07:5d:ea:
70:57:65:61:35:25:96:f5:83:2c:91:bd:09:2d:69:88:fb:9a:
75:05:49:8d:99:61:ce:6d:02:cc:b9:f1:13:c3:9e:7c:03:1a:
b2:17:cd:d3:4f:1d:55:82:fc:8e:09:45:c1:14:ef:43:0a:5c:
76:16:b4:68:81:99:90:8b:de:7d:6c:b5:6b:e9:e6:bb:be:b6:
d1:00:cc:37:96:2b:65:85:ed:d3:30:82:09:be:f2:5d:af:ee:
7c:58:64:46:c3:c1:a5:38:29:79:ac:84:6d:b9:9e:d3:72:c9:
7a:14:ca:b1:b3:43:c4:23:3c:70:4d:98:96:c4:0f:97:88:1c:
68:cb:25:80:c1:96:c9:37:c3:99:e5:9d:45:5f:a5:22:95:d5:
db:9e:73:88:10:38:4f:93:39:19:9a:48:95:2e:23:66:a8:8e:
32:a2:da:c8:d9:5c:9f:e4:08:d1:d8:27:74:16:94:cc:51:d6:
c5:c8:a3:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 23 08:47:09 2024 by rpki-client on console-fra.rpki-client.org