Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/08e183-64eb-4999-9f78-7ce7322671eb/1/IE024TotuUV0ErWTHSDxEqMKzl4.roa
File: IE024TotuUV0ErWTHSDxEqMKzl4.roa (raw, json)
Hash identifier: SmxOrj8Dx0CBbYWGCHgwEGcPGmAX+DPzohDeN43tcTc=
Subject key identifier: 20:4D:36:E1:3A:2D:B9:45:74:12:B5:93:1D:20:F1:12:A3:0A:CE:5E
Certificate issuer: /CN=2f367c7949fa0f6cf05a21027e75b84612dc13b0
Certificate serial: 0191090FEF46EDF3C79DAFF6A7648C997059
Authority key identifier: 2F:36:7C:79:49:FA:0F:6C:F0:5A:21:02:7E:75:B8:46:12:DC:13:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzZ8eUn6D2zwWiECfnW4RhLcE7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/08e183-64eb-4999-9f78-7ce7322671eb/1/IE024TotuUV0ErWTHSDxEqMKzl4.roa
Signing time: Wed 31 Jul 2024 13:52:04 +0000
ROA not before: Wed 31 Jul 2024 13:52:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56754
IP address blocks: 2a03:820:4000::/36 maxlen: 36
Validation: Failed, certificate revoked on Fri 23 Aug 2024 14:39:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:09:0f:ef:46:ed:f3:c7:9d:af:f6:a7:64:8c:99:70:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f367c7949fa0f6cf05a21027e75b84612dc13b0
Validity
Not Before: Jul 31 13:52:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=204d36e13a2db9457412b5931d20f112a30ace5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:42:d0:24:ed:d7:04:05:93:9a:bf:51:a5:4a:
23:97:59:f8:07:ce:0f:17:d7:08:5a:c3:bc:4f:02:
11:fe:09:eb:39:aa:d4:ba:cc:55:2b:33:c8:dd:39:
29:8b:7d:2f:33:53:4c:5e:d0:49:4c:f4:2d:dd:76:
fa:25:a9:c6:fa:43:b1:a3:6c:0a:88:2e:71:86:d5:
b8:2f:aa:a0:79:7d:81:8e:b3:c7:f8:ab:d0:38:9e:
bd:ea:ae:14:d8:97:47:f6:bb:71:44:9e:80:69:8a:
83:5b:a5:75:d7:1e:ca:fc:36:2b:d3:2b:fa:1d:f4:
1d:22:d8:28:29:18:7e:9b:41:cf:6b:d5:0b:e1:10:
79:e8:aa:86:61:a3:c8:f9:24:14:50:54:8c:b1:60:
54:64:7e:b2:bb:e5:bb:07:ba:2b:b4:0c:85:3c:93:
4e:e0:25:c5:40:5b:c2:14:0f:9a:03:c8:c4:b9:5a:
2b:1e:4c:c3:0d:80:a2:e4:80:c2:0a:0d:0c:42:19:
80:81:77:f6:96:5a:f0:a5:4d:c0:26:31:b1:6c:f1:
cf:26:86:ed:1d:b1:4b:cb:3c:86:8f:99:77:61:20:
bc:b6:d7:7b:dd:dc:16:2c:ee:cd:66:d4:f8:30:1f:
01:42:10:36:a8:83:f5:bf:ee:35:c8:85:76:01:8a:
6d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4D:36:E1:3A:2D:B9:45:74:12:B5:93:1D:20:F1:12:A3:0A:CE:5E
X509v3 Authority Key Identifier:
keyid:2F:36:7C:79:49:FA:0F:6C:F0:5A:21:02:7E:75:B8:46:12:DC:13:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzZ8eUn6D2zwWiECfnW4RhLcE7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/08e183-64eb-4999-9f78-7ce7322671eb/1/IE024TotuUV0ErWTHSDxEqMKzl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/08e183-64eb-4999-9f78-7ce7322671eb/1/LzZ8eUn6D2zwWiECfnW4RhLcE7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:820:4000::/36
Signature Algorithm: sha256WithRSAEncryption
77:7a:32:fe:30:f1:f7:ed:34:5d:99:d6:86:0f:94:be:ef:b7:
0b:33:05:7f:56:86:27:c9:a3:62:d9:be:cc:01:0a:ba:a5:08:
bb:c5:98:5b:ca:b4:15:1d:a7:3a:1b:66:ea:ea:3b:81:de:20:
20:c6:ed:c1:b1:91:e2:7d:ea:f9:42:fb:f1:41:63:37:62:ec:
e3:fd:9b:f8:9e:ef:b0:2b:57:52:d7:53:04:19:5c:02:7e:e6:
43:01:da:9c:41:37:06:3a:0b:c1:34:52:b8:1a:68:fb:b9:2b:
b3:b5:93:fc:ec:e1:65:46:da:44:a7:d8:bd:2c:4b:2b:30:ba:
7b:be:a5:0d:47:f9:f4:14:8a:0f:2b:cc:c9:b1:7f:0d:d1:02:
7a:e1:ef:1d:03:07:2f:01:f1:f5:91:78:55:52:f1:02:2a:be:
7b:a3:db:fe:4a:a9:0e:96:7c:5e:0c:3b:c0:80:d5:ac:cb:24:
27:1a:ff:af:2d:7a:6b:f9:f4:47:9b:cf:b4:4a:7c:cb:95:c8:
f7:66:bc:9c:59:6d:b3:79:3e:13:0c:52:1b:48:16:d9:ce:84:
a5:b0:37:c7:a8:30:2a:e9:e1:9f:e4:15:c7:e4:99:83:09:3e:
27:34:bb:25:e0:0c:2b:c4:25:66:56:a4:d1:bc:3a:bd:42:05:
88:e1:f5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 17:38:59 2024 by rpki-client on console-fra.rpki-client.org