Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/3r1YaY9xGng9tdkUM53p_zOrL3k.roa
File: 3r1YaY9xGng9tdkUM53p_zOrL3k.roa (raw, json)
Hash identifier: 5Sw9UXu/DRVRnyPnB8LeU4AoP2pxn/lU3kIMJwWnyJU=
Subject key identifier: DE:BD:58:69:8F:71:1A:78:3D:B5:D9:14:33:9D:E9:FF:33:AB:2F:79
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 01856FB11FB71C876E7F14A1990D34581CE9
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/3r1YaY9xGng9tdkUM53p_zOrL3k.roa
Signing time: Sun 01 Jan 2023 23:35:57 +0000
ROA not before: Sun 01 Jan 2023 23:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204646
IP address blocks: 2a0d:2080::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:1f:b7:1c:87:6e:7f:14:a1:99:0d:34:58:1c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Jan 1 23:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=debd58698f711a783db5d914339de9ff33ab2f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:05:e8:70:45:05:0e:b4:33:03:7a:85:51:e0:
03:01:f5:3e:3c:34:1d:2d:e3:16:0c:31:d8:35:86:
93:28:a0:cb:07:8d:9e:a4:b3:0e:10:36:3f:76:37:
a0:31:5e:41:25:01:b7:5f:65:d6:1c:3f:9b:e0:d7:
7a:84:67:22:82:c8:26:37:8c:03:a4:f4:0f:a6:7e:
4d:95:45:b9:19:b6:c3:d4:11:b6:dd:28:cb:80:74:
ff:69:f4:4a:f7:09:f7:22:52:10:8f:9b:11:24:84:
f8:37:95:33:91:c2:54:41:f3:6e:5e:1a:4e:f0:72:
7f:30:58:bd:2b:72:87:f8:06:f8:68:b5:52:54:a2:
c6:01:f4:9f:74:a1:ac:78:68:9a:c0:9a:5c:f3:1c:
b7:e0:51:2e:2e:b4:4c:87:c6:f3:b9:ca:22:12:05:
e5:d0:be:74:bd:b3:3d:52:56:58:6a:c5:07:24:dd:
13:21:89:0c:e0:bb:d6:72:cc:a6:ae:97:78:a0:fd:
5d:76:62:d2:00:d4:19:d9:8f:cb:6a:60:cc:1d:d6:
d9:fa:80:4e:80:2e:5c:63:e4:e2:1e:2c:19:7a:0c:
f1:b3:de:ab:aa:aa:35:bf:06:0f:2e:99:6d:40:e5:
eb:3b:c4:82:37:bc:a7:59:47:90:56:10:fd:8f:18:
28:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BD:58:69:8F:71:1A:78:3D:B5:D9:14:33:9D:E9:FF:33:AB:2F:79
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/3r1YaY9xGng9tdkUM53p_zOrL3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2080::/29
Signature Algorithm: sha256WithRSAEncryption
1d:b1:bd:1f:a6:40:e6:e4:89:28:a9:da:be:f9:f8:ff:42:d9:
74:de:6f:58:bb:4e:00:55:ab:64:5d:dd:0e:d1:7a:74:b5:bd:
2a:c1:64:97:d4:18:3e:7d:d2:4f:0e:8e:a5:c1:01:2a:a5:a3:
ce:8b:f8:3b:a2:25:34:cc:9c:56:f8:72:f8:0c:f0:73:a7:94:
dc:58:7f:da:3e:88:92:c6:fa:87:7e:0c:59:35:c6:b8:3f:08:
32:29:6d:97:de:45:af:37:c9:e8:bd:25:b7:78:f4:87:9f:31:
20:3a:5b:49:27:d9:9d:1d:f6:63:5e:dc:e9:ed:de:e5:56:39:
2a:5b:94:1d:fb:1a:3a:79:8d:3e:19:4c:68:a9:27:c0:5e:15:
80:c3:40:e5:e4:d2:55:f2:4d:91:97:5a:ad:49:f4:c9:99:67:
fe:70:d3:fd:5c:eb:cd:d9:f2:5e:30:40:c5:d7:d8:ea:d2:57:
9a:de:74:48:66:c4:a1:df:2e:81:28:3f:c9:46:97:ba:0b:66:
50:aa:9b:7c:10:28:47:7c:dd:4b:47:d5:91:49:18:3c:18:75:
7e:72:95:3e:06:f2:f8:61:51:d8:55:05:6e:e3:4c:96:d6:71:
22:cb:17:e3:8c:4d:5b:f0:b3:b5:1d:3e:cc:a4:5c:e4:b2:40:
b7:37:96:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:48 2024 by rpki-client on console-fra.rpki-client.org