Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/t0cLaij9l62qumpwpnzAtTmcu0A.roa
File: t0cLaij9l62qumpwpnzAtTmcu0A.roa (raw, json)
Hash identifier: kOj1RVRU0yixUdmE77eFLkUR14NBHyPvmFIZAhGzulE=
Subject key identifier: B7:47:0B:6A:28:FD:97:AD:AA:BA:6A:70:A6:7C:C0:B5:39:9C:BB:40
Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Certificate serial: 01856BEEBB01803E249DA333C6D238436CD9
Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/t0cLaij9l62qumpwpnzAtTmcu0A.roa
Signing time: Sun 01 Jan 2023 06:04:45 +0000
ROA not before: Sun 01 Jan 2023 06:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51783
IP address blocks: 2a04:ac00:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:bb:01:80:3e:24:9d:a3:33:c6:d2:38:43:6c:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Validity
Not Before: Jan 1 06:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7470b6a28fd97adaaba6a70a67cc0b5399cbb40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:96:f5:a0:8f:e6:e5:62:72:c4:60:74:4b:eb:
a1:31:5d:88:aa:e0:de:68:7a:29:07:be:62:14:11:
ac:d5:ef:f8:e5:b1:56:95:43:b9:8b:d4:25:23:00:
7a:66:d4:8f:c1:2a:e3:d3:df:e6:6d:32:1c:ed:bb:
9b:f8:30:96:76:fb:c1:f5:5f:6a:d4:46:62:e7:02:
50:df:93:39:6e:c1:94:61:32:eb:be:bd:77:22:01:
7f:ea:b2:00:5b:5a:63:79:87:de:e4:3b:7b:64:73:
e7:f2:9f:8e:48:33:b4:1b:fa:3a:f0:fc:31:3d:2a:
ce:23:ee:a8:f1:3d:73:6e:5a:98:cc:b6:0e:5c:d3:
6c:ef:a5:52:21:7a:1e:71:26:98:63:cf:07:65:8d:
45:59:b2:30:a3:50:9f:35:ce:43:51:f2:3f:bc:62:
5f:91:7d:b4:d4:1d:a0:88:31:94:04:30:2d:39:91:
d3:c9:b7:ad:f1:2d:6c:57:37:3e:44:94:d5:11:49:
14:4a:17:7f:c1:4c:8a:56:50:c0:43:3f:4b:f6:d7:
5c:97:38:a2:c8:cc:b2:28:d6:59:28:cd:6e:8f:80:
af:a5:29:c5:6e:26:cd:1f:0e:fa:6d:59:47:59:f9:
40:9f:61:39:74:c7:12:fd:03:a7:1d:b9:58:8d:a7:
b6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:47:0B:6A:28:FD:97:AD:AA:BA:6A:70:A6:7C:C0:B5:39:9C:BB:40
X509v3 Authority Key Identifier:
keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/t0cLaij9l62qumpwpnzAtTmcu0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:ac00:3::/48
Signature Algorithm: sha256WithRSAEncryption
51:61:4e:a9:57:58:8a:20:8a:8e:4b:95:3f:a0:f7:f7:5f:33:
bb:f2:9e:a6:55:2c:5a:1a:79:83:d8:59:ca:23:4b:48:e8:73:
d1:eb:28:2f:a3:c4:27:ef:74:2a:15:93:d7:23:a7:50:4a:e1:
e1:81:77:91:95:97:d3:c5:49:3e:f6:e7:1a:47:df:33:31:4b:
45:49:16:1b:34:87:81:07:c7:45:42:fc:60:96:ff:80:57:2c:
0a:eb:eb:f5:52:30:7c:b8:58:de:ae:9d:ca:08:23:15:cb:b9:
f5:6f:11:52:b6:ac:ba:66:7c:4c:b6:0a:31:c4:bc:39:67:3f:
2a:49:d0:3d:60:ee:46:70:fc:62:88:53:29:80:28:20:ab:f4:
4a:93:ae:d6:5d:e9:1b:0e:60:19:42:d8:ba:f8:1d:bd:70:69:
17:df:4f:6a:86:32:b8:9c:6a:21:6b:fa:bc:e2:89:4f:05:2e:
cf:c5:be:91:69:6b:01:28:01:db:e9:b0:82:21:48:b1:79:9a:
99:0f:a1:56:d2:d7:03:a0:7d:8c:ac:ad:10:d4:1b:95:68:47:
8a:ab:ba:06:5e:43:17:c3:fa:dd:e8:12:fa:a5:b5:ec:50:ce:
a3:66:ef:a6:69:b4:f3:5c:ff:22:6d:7d:da:61:6c:0c:e7:34:
31:80:db:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:02 2024 by rpki-client on console-fra.rpki-client.org