Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/4f7c3FbUioUPVRwI9A5Cb__vC_A.roa
File: 4f7c3FbUioUPVRwI9A5Cb__vC_A.roa (raw, json)
Hash identifier: Z1tX5A3qg9RvS7L4SV8cPIAiev7OIATZ339EPTSZDnU=
Subject key identifier: E1:FE:DC:DC:56:D4:8A:85:0F:55:1C:08:F4:0E:42:6F:FF:EF:0B:F0
Certificate issuer: /CN=dc4e453affe895b6452b84027437c5c00fd37067
Certificate serial: 01888A880D37528EB63DBBE2D11FA7FFEC91
Authority key identifier: DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/4f7c3FbUioUPVRwI9A5Cb__vC_A.roa
Signing time: Mon 05 Jun 2023 07:49:12 +0000
ROA not before: Mon 05 Jun 2023 07:49:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39122
IP address blocks: 2a0b:bc7::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8a:88:0d:37:52:8e:b6:3d:bb:e2:d1:1f:a7:ff:ec:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc4e453affe895b6452b84027437c5c00fd37067
Validity
Not Before: Jun 5 07:49:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1fedcdc56d48a850f551c08f40e426fffef0bf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a4:4b:9b:7d:45:65:74:fc:87:3c:6a:07:a1:
65:ac:d7:fd:b0:6f:fa:98:53:c8:65:71:bc:f6:5b:
2e:6f:db:68:9e:38:26:aa:22:09:a8:f7:8a:d2:6d:
d4:ff:74:70:83:74:4e:41:96:ad:0a:d3:9a:0e:73:
ac:57:e3:e5:80:7e:01:07:fa:71:09:fe:51:e3:5c:
55:c9:f2:f0:f4:5d:b8:c4:46:b2:22:34:86:92:af:
8c:66:88:2b:2d:7f:65:8a:3a:e0:60:22:27:3c:48:
3e:db:0f:7e:93:48:e1:d7:6f:85:ee:17:b9:f4:4e:
67:8c:61:dc:57:a8:9d:b2:28:ba:b3:ab:15:fa:ee:
81:a8:e8:b3:bc:71:0f:1c:6e:80:59:9b:88:98:0f:
b4:33:78:12:29:0f:b8:10:ad:47:3d:ee:0f:51:12:
6c:15:d0:98:2e:ad:4d:d0:a4:9f:7e:f1:30:09:9c:
3e:c6:7a:b0:03:63:0c:83:2a:20:dc:5b:cd:2c:50:
cc:5c:58:79:00:91:4e:ae:75:50:00:12:ae:20:f1:
79:9c:b2:4e:9c:f9:e9:67:10:e0:8a:34:cb:c7:be:
74:f7:65:a6:1f:46:25:75:b0:26:f8:87:79:43:bb:
33:f7:cd:76:f9:b2:62:3b:0d:e3:a3:87:a4:53:fe:
ab:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FE:DC:DC:56:D4:8A:85:0F:55:1C:08:F4:0E:42:6F:FF:EF:0B:F0
X509v3 Authority Key Identifier:
keyid:DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/4f7c3FbUioUPVRwI9A5Cb__vC_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/3E5FOv_olbZFK4QCdDfFwA_TcGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:bc7::/32
Signature Algorithm: sha256WithRSAEncryption
82:55:f8:41:ad:c8:d1:77:e7:67:7a:69:84:ee:74:cb:42:95:
b6:e8:bb:7b:34:39:69:f9:8b:4c:9d:04:0f:af:ef:ae:9e:5a:
0e:31:af:08:d2:e4:80:93:32:e6:a1:ba:65:63:87:27:83:fa:
ff:dc:be:86:fc:2e:dd:de:19:a1:24:2b:26:6c:3f:fa:cf:9a:
b8:fa:1c:11:e8:e2:8d:da:d7:41:63:1f:f7:29:6e:1b:d4:57:
1d:f5:8e:7b:86:00:b8:38:b1:ab:13:68:92:36:2f:07:47:4d:
2e:ba:de:8d:aa:2a:d5:1e:e8:2b:6c:5c:25:1c:cd:8f:6e:11:
38:b1:51:af:49:39:8b:f1:8b:32:46:99:8e:02:8a:55:9b:03:
4e:f1:24:a4:66:74:6e:97:75:8a:a0:21:50:d9:65:7c:83:56:
3c:c4:3f:23:9e:14:30:a6:b1:29:4d:97:9c:dc:da:ad:78:1c:
66:94:5c:b6:2b:e7:5a:ed:97:6c:5b:1a:f9:95:5f:f5:2c:13:
62:2d:6b:3e:cc:60:89:26:d0:f0:85:a9:b5:6b:16:64:74:71:
d3:88:96:d4:6a:09:e8:37:ab:45:37:87:ef:ba:a4:c4:b5:bb:
59:d7:fd:77:1b:1c:1a:0b:ce:42:26:3b:cd:2e:0d:9a:c5:20:
af:29:fe:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:46 2024 by rpki-client on console-fra.rpki-client.org