Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/JkgNy4Z1pZvFUvI449TbO1Hu2go.roa
File: JkgNy4Z1pZvFUvI449TbO1Hu2go.roa (raw, json)
Hash identifier: VKyT14ZPhy703lGeRSrNjcanel1205JjOBwK9C1yb9w=
Subject key identifier: 26:48:0D:CB:86:75:A5:9B:C5:52:F2:38:E3:D4:DB:3B:51:EE:DA:0A
Certificate issuer: /CN=587d8b0e7546351176cc0c6e51ed4520abe04ef1
Certificate serial: 0189B5CCFFD819FCCC0CFAC9749AAAEB1F27
Authority key identifier: 58:7D:8B:0E:75:46:35:11:76:CC:0C:6E:51:ED:45:20:AB:E0:4E:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WH2LDnVGNRF2zAxuUe1FIKvgTvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/JkgNy4Z1pZvFUvI449TbO1Hu2go.roa
Signing time: Wed 02 Aug 2023 10:30:58 +0000
ROA not before: Wed 02 Aug 2023 10:30:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 2a03:38a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 02 Aug 2023 10:38:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b5:cc:ff:d8:19:fc:cc:0c:fa:c9:74:9a:aa:eb:1f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=587d8b0e7546351176cc0c6e51ed4520abe04ef1
Validity
Not Before: Aug 2 10:30:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26480dcb8675a59bc552f238e3d4db3b51eeda0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c8:d8:0e:cd:38:b9:df:72:b1:cc:e7:79:f7:
3d:87:be:25:55:6b:62:9d:78:37:52:45:fa:5b:50:
f8:72:da:04:e0:65:d6:44:da:5a:5f:d8:6a:4b:fb:
22:66:c8:4b:e5:28:9a:59:f3:1c:7d:86:a9:b9:27:
c3:c7:a8:a9:8e:f2:78:a8:86:3e:4e:12:a1:e1:3c:
b5:13:fe:f3:7c:f1:36:5e:65:11:52:ed:e1:82:d9:
b4:97:a4:8a:58:b1:73:27:e9:4b:85:2f:6d:77:dd:
21:6e:42:b4:91:bc:38:63:48:45:12:5c:a7:3d:b8:
cd:d7:a7:09:8b:f8:00:75:9c:f1:00:6f:d9:65:59:
c0:27:28:67:4e:99:67:21:6c:81:cd:c1:3f:b0:e7:
9a:be:d7:07:c5:6b:54:66:41:18:67:1c:6d:71:01:
05:31:52:96:9f:81:95:ea:92:d8:ed:bf:4e:0a:d8:
85:fd:6a:d4:48:2b:46:a9:fc:7c:1c:c3:05:8d:a9:
48:27:f6:fb:76:99:d0:81:d2:ba:e3:34:e1:29:63:
db:4b:c2:99:81:57:10:da:ab:9a:00:b2:ae:58:2d:
e1:77:9a:50:d5:c6:1f:e6:b5:92:97:02:87:a6:07:
61:2c:0d:8d:8b:8a:5a:86:b1:c3:c3:ad:f3:b1:a6:
17:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:48:0D:CB:86:75:A5:9B:C5:52:F2:38:E3:D4:DB:3B:51:EE:DA:0A
X509v3 Authority Key Identifier:
keyid:58:7D:8B:0E:75:46:35:11:76:CC:0C:6E:51:ED:45:20:AB:E0:4E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WH2LDnVGNRF2zAxuUe1FIKvgTvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/JkgNy4Z1pZvFUvI449TbO1Hu2go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/WH2LDnVGNRF2zAxuUe1FIKvgTvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:38a0::/32
Signature Algorithm: sha256WithRSAEncryption
58:f1:c1:6e:69:96:c4:d7:86:22:f9:6a:4c:51:9f:81:52:a4:
b9:f8:64:7a:3f:cf:df:76:5e:4e:3a:66:5d:c4:eb:f1:e1:63:
ab:77:e4:7f:7a:93:40:54:9b:22:53:bb:75:72:15:dc:5e:69:
90:4c:0e:78:43:28:94:92:ea:2f:25:b4:a4:da:47:5d:2b:83:
4e:56:02:31:64:ff:f7:09:b9:f8:84:80:76:bd:1d:72:04:b2:
ac:f1:ba:1c:35:cc:c1:99:fa:ca:60:84:ca:b3:26:17:a1:c4:
29:3a:9f:9e:38:60:06:60:d7:6b:46:c0:f8:d7:30:0d:a3:ae:
d6:b3:84:02:f6:a2:b6:db:15:90:8e:c9:d2:6c:ae:a6:4b:a8:
61:6c:f7:e2:c6:2e:38:d0:20:f7:27:b4:2a:04:5d:f0:6e:e6:
76:5f:ff:f3:6a:41:c7:2d:82:81:ed:e0:b6:fe:6a:b2:f0:f8:
41:ba:5c:9b:ea:c5:17:7c:95:f8:64:e2:9e:1e:e4:e7:d2:13:
27:31:79:2f:8c:65:ca:11:40:af:cd:6f:e0:ba:60:f9:fc:47:
02:a3:8c:ea:74:5e:6c:8b:2e:9a:6d:06:34:3f:79:00:4a:66:
95:77:71:90:59:d4:a2:de:11:59:73:6a:67:aa:ae:1d:5f:05:
b5:4f:a1:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:58 2024 by rpki-client on console-ams.rpki-client.org