Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/3KQSGzYsKBGeJNcrnZ9lpKEBjjs.roa
File: 3KQSGzYsKBGeJNcrnZ9lpKEBjjs.roa (raw, json)
Hash identifier: Z2+OEIlwny8bmXloGv/Zxgbi2YqzhMx9xX/ooK5odGM=
Subject key identifier: DC:A4:12:1B:36:2C:28:11:9E:24:D7:2B:9D:9F:65:A4:A1:01:8E:3B
Certificate issuer: /CN=118ba4ef901aac10876ccf976a5f7d16c4ca79f0
Certificate serial: 01856D53CD2A42891C519BD23CCB97F816FE
Authority key identifier: 11:8B:A4:EF:90:1A:AC:10:87:6C:CF:97:6A:5F:7D:16:C4:CA:79:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EYuk75AarBCHbM-Xal99FsTKefA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/3KQSGzYsKBGeJNcrnZ9lpKEBjjs.roa
Signing time: Sun 01 Jan 2023 12:34:46 +0000
ROA not before: Sun 01 Jan 2023 12:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a03:5640:f000::/36 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:cd:2a:42:89:1c:51:9b:d2:3c:cb:97:f8:16:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=118ba4ef901aac10876ccf976a5f7d16c4ca79f0
Validity
Not Before: Jan 1 12:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dca4121b362c28119e24d72b9d9f65a4a1018e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0e:02:0c:56:e2:d0:29:cc:0a:8b:40:24:f2:
12:7c:8e:8b:20:af:f1:d2:1b:56:d6:f6:e7:8c:f7:
6e:0b:0d:51:0e:57:59:7a:0f:0a:9f:81:ad:f3:52:
d6:7d:cd:a6:21:dd:33:4d:cb:cf:6d:dd:38:46:a4:
69:f4:98:ea:31:9e:a5:20:a2:05:c2:5c:5b:b7:e2:
a8:03:ea:e5:59:50:f9:d5:4b:c0:54:62:33:ec:16:
63:28:52:4e:3a:72:37:f1:e2:b5:a9:4b:bd:77:e8:
ad:8d:d6:ef:2a:04:3d:dd:79:e3:1e:4d:d9:60:57:
90:74:34:58:7a:4f:25:64:4f:4c:68:a1:46:80:1b:
01:76:00:77:be:f1:87:e7:65:f9:41:96:cf:3a:87:
18:73:24:77:78:d0:17:33:4a:c4:1e:24:61:4a:a3:
40:63:14:a2:0d:65:bd:b1:f8:96:ad:64:b9:1e:18:
b4:80:c9:15:95:92:25:1a:7b:30:1c:e8:c8:b0:1c:
7c:fa:be:f4:f7:4b:1e:ad:e3:2f:4a:05:d1:de:00:
c2:cb:5e:86:fd:ec:c1:7a:e2:a6:a5:43:cc:ac:49:
12:56:48:69:2d:07:81:da:85:dc:67:22:dc:7f:f4:
de:b7:a2:1b:93:13:34:65:51:5c:80:4c:62:e9:cd:
83:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A4:12:1B:36:2C:28:11:9E:24:D7:2B:9D:9F:65:A4:A1:01:8E:3B
X509v3 Authority Key Identifier:
keyid:11:8B:A4:EF:90:1A:AC:10:87:6C:CF:97:6A:5F:7D:16:C4:CA:79:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EYuk75AarBCHbM-Xal99FsTKefA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/3KQSGzYsKBGeJNcrnZ9lpKEBjjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/EYuk75AarBCHbM-Xal99FsTKefA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5640:f000::/36
Signature Algorithm: sha256WithRSAEncryption
19:58:f6:23:c0:b5:b8:08:c9:c6:fc:61:12:46:fd:7d:7d:be:
6c:5f:33:19:35:e4:4d:ed:98:89:50:3e:5c:ae:e0:7e:12:f3:
f1:19:12:0c:fb:d5:87:4d:27:e6:fb:77:5c:3a:3b:ce:cc:4e:
d1:40:32:21:36:d3:df:3d:6d:41:18:88:50:66:e6:8b:e9:39:
a4:18:2b:99:da:a7:60:bc:5f:a8:7e:52:50:5b:5a:11:42:d8:
e5:09:71:bc:bb:2f:c5:b2:24:83:b0:05:66:70:5b:76:af:3e:
96:0d:28:90:68:a9:6a:09:95:f6:dd:dc:20:ac:c6:3f:af:61:
0d:9e:95:5b:ab:96:ce:43:60:28:c0:44:78:3e:4c:ab:06:7e:
fb:eb:9d:df:1f:12:88:19:a6:48:d0:f8:9d:6d:73:85:ef:86:
33:52:58:15:b7:df:8d:fd:a2:0d:b6:5e:bb:41:d2:1e:f5:8c:
02:f9:15:2d:3f:a6:01:4e:43:bb:d5:fa:5c:2f:cf:e2:cf:5b:
d4:86:39:49:af:35:1b:9c:1a:d8:1b:a6:dc:a0:86:53:73:34:
4b:2e:b8:aa:70:72:3e:d6:30:f2:b0:9c:1f:06:b5:fd:4b:92:
c7:bf:c5:0c:fa:d5:41:a4:b4:6c:ae:0b:99:b6:6b:7b:e4:04:
24:15:a0:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:22 2024 by rpki-client on console-fra.rpki-client.org