Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/eOcq2BDx9zRlHDclNp2nQut-sOk.roa
File: eOcq2BDx9zRlHDclNp2nQut-sOk.roa (raw, json)
Hash identifier: H3PVaYVpAG0neG7Zd+4hkGzjYTb574EJZzGk5vTCqtU=
Subject key identifier: 78:E7:2A:D8:10:F1:F7:34:65:1C:37:25:36:9D:A7:42:EB:7E:B0:E9
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 018C1F35FF1A65A35681372DC03B6C734FD5
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/eOcq2BDx9zRlHDclNp2nQut-sOk.roa
Signing time: Thu 30 Nov 2023 07:51:21 +0000
ROA not before: Thu 30 Nov 2023 07:51:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51505
IP address blocks: 2a14:6700::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 07 Dec 2023 08:34:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1f:35:ff:1a:65:a3:56:81:37:2d:c0:3b:6c:73:4f:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Nov 30 07:51:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78e72ad810f1f734651c3725369da742eb7eb0e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:20:84:33:10:39:9e:e8:a3:97:0f:48:bf:cc:
1e:52:4c:9b:45:3b:db:e3:2a:9f:24:f1:62:8c:ae:
e2:61:b5:5d:3d:4b:66:84:be:40:d6:3b:1d:af:14:
83:c1:c9:54:94:14:f4:be:39:75:45:26:60:52:41:
51:ac:ed:7b:fc:f5:25:96:63:64:2c:23:38:77:62:
0d:59:b3:4f:a0:10:63:04:3a:18:9c:53:3a:bd:8e:
d9:47:fc:ac:3e:cc:40:08:cd:a1:44:b0:f5:8c:f7:
54:5f:57:1c:5b:68:f8:22:45:5d:58:e6:ea:72:bd:
18:21:48:08:f6:a3:7b:ec:e9:02:01:16:ff:3a:49:
c6:c4:c4:3c:79:f9:69:0e:32:d3:60:42:57:a6:1c:
7a:b7:50:3c:a6:c6:48:f3:50:4a:5b:ba:41:15:ec:
d2:4b:75:00:22:58:99:6c:62:ff:19:76:3e:92:35:
03:87:c8:10:f7:5a:ce:27:d3:79:fa:56:01:f8:99:
56:5c:13:64:80:48:ff:78:38:c6:3a:a1:d9:de:a9:
2d:93:df:b4:10:ed:fd:a6:5d:73:f7:0e:b7:7e:01:
47:ee:5b:1b:37:75:34:5a:72:a0:b9:57:6b:84:91:
58:31:37:b4:01:5f:26:f8:ca:42:6f:d4:31:c3:ba:
c9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E7:2A:D8:10:F1:F7:34:65:1C:37:25:36:9D:A7:42:EB:7E:B0:E9
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/eOcq2BDx9zRlHDclNp2nQut-sOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6700::/29
Signature Algorithm: sha256WithRSAEncryption
2e:1f:8b:9f:06:10:1e:9a:1c:e8:12:d5:83:65:49:f5:d1:b1:
7f:cf:c2:2d:d1:79:77:a0:a4:3e:f5:21:a0:07:59:91:18:3d:
f8:5a:8d:fb:53:69:57:2e:7e:d4:63:f5:42:4a:5e:c6:f6:c7:
37:84:68:b9:8e:f8:29:33:60:25:b2:69:ae:96:68:72:f5:30:
40:16:dd:52:eb:5c:fb:ad:d8:27:b6:a2:c6:f0:28:18:32:4f:
9c:43:7e:be:dd:89:90:7a:9f:89:b2:e5:d9:bc:e0:38:c3:8b:
5c:c8:e7:fc:d5:04:d8:64:11:ac:6e:36:41:dc:38:51:b4:25:
83:b4:52:e1:98:b3:cf:04:67:73:3e:7a:23:d8:a3:88:25:fd:
1f:81:84:89:0b:b4:6f:d2:21:94:3e:e4:c6:7f:f4:92:7b:00:
70:fc:75:cf:a1:77:b5:fc:74:0c:5c:72:ed:a7:d7:cf:30:aa:
14:b1:7d:0e:c1:67:da:f8:b8:6e:97:6d:27:c4:d4:07:84:02:
c6:81:92:a9:ab:e5:1b:a1:0d:2d:e0:5f:a0:6b:36:26:0f:2e:
80:87:5d:00:fb:2c:10:07:32:f7:09:75:38:98:30:21:d2:84:
2d:61:ec:29:73:02:21:53:16:7a:66:5e:36:d6:03:02:1d:fc:
dc:fe:51:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:48 2024 by rpki-client on console-ams.rpki-client.org