Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/j77GVgdJJjLtAMpM5B8hNxCe3mg.roa
File: j77GVgdJJjLtAMpM5B8hNxCe3mg.roa (raw, json)
Hash identifier: BaDByp+YYjoIQVxVpp3S8v9LMmbxh3Xy9oYh6QOgBZ0=
Subject key identifier: 8F:BE:C6:56:07:49:26:32:ED:00:CA:4C:E4:1F:21:37:10:9E:DE:68
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 01856DDD5837305A193BF806BD80F673C73F
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/j77GVgdJJjLtAMpM5B8hNxCe3mg.roa
Signing time: Sun 01 Jan 2023 15:05:00 +0000
ROA not before: Sun 01 Jan 2023 15:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212573
IP address blocks: 2a00:dd00::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 31 Jul 2023 06:55:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:58:37:30:5a:19:3b:f8:06:bd:80:f6:73:c7:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Jan 1 15:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fbec65607492632ed00ca4ce41f2137109ede68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:66:4e:2d:91:98:80:f1:c2:a3:32:b8:38:38:
3f:f5:f7:1b:9e:37:f3:6b:26:ba:b8:3a:85:d9:bc:
2b:05:b3:7e:f8:e3:45:c5:0b:40:bd:ce:da:62:3d:
05:e3:10:d9:e4:3a:e1:c7:de:12:b8:4e:23:bb:b0:
f2:e1:d3:5e:00:a0:f8:5d:79:d9:a4:db:77:4a:93:
88:68:5a:1d:ed:5d:e3:d7:ab:95:2e:0d:cc:f9:6d:
87:c4:cc:ab:c6:ce:e9:00:23:29:83:ae:13:f5:2c:
86:ec:c2:e4:cd:89:a7:99:a1:35:1b:96:4c:07:5e:
8b:be:8c:2a:59:28:0d:4c:23:da:2e:23:7a:de:0b:
f4:2c:60:89:4e:50:d8:f5:17:97:a2:a3:e3:61:76:
ac:84:36:2f:d3:61:48:a4:22:3c:45:8f:c0:a7:ec:
b4:c4:1c:32:2b:76:ba:e3:3e:4d:c4:de:3b:d2:33:
53:85:f1:8e:28:60:82:8b:98:4a:a8:cf:b7:5c:df:
c4:f3:61:5a:d0:a2:a7:a2:db:40:9b:dc:bc:b2:57:
ac:e1:73:79:03:3a:f5:78:a1:16:af:3d:98:8e:92:
8b:5f:28:e1:3e:7e:8b:5c:37:b5:35:1a:87:ed:53:
86:e7:a2:24:de:9b:0d:04:37:56:71:9f:f6:03:fe:
54:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BE:C6:56:07:49:26:32:ED:00:CA:4C:E4:1F:21:37:10:9E:DE:68
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/j77GVgdJJjLtAMpM5B8hNxCe3mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd00::/32
Signature Algorithm: sha256WithRSAEncryption
27:b0:83:77:6e:a0:d8:f8:3c:7e:0d:92:7a:2a:aa:25:46:5d:
e7:45:1b:66:0b:ce:c4:a6:61:9b:84:69:09:a4:5f:0f:ac:fa:
8d:74:e5:dd:a7:a7:24:73:6b:4b:13:f1:74:b3:07:b6:3b:66:
dc:1d:e4:74:13:36:60:1b:00:da:36:90:31:11:18:0b:df:54:
f8:67:91:a2:50:d7:2e:65:f2:6d:23:a7:45:c0:bc:68:37:2b:
c2:00:fb:c2:b0:dd:57:ee:0d:a0:9d:e6:ea:96:40:7c:7a:4e:
cb:da:f9:12:70:d8:de:be:fc:e1:f6:0a:37:81:61:bc:de:b4:
75:b7:29:7b:90:a3:2c:d4:70:2b:b0:3a:b9:62:df:12:d9:18:
bb:17:9a:3f:c3:a3:b5:67:3b:35:35:3a:05:5b:e1:64:5c:8e:
5c:ce:1c:a4:ae:15:99:97:30:3e:8e:16:7d:5b:bb:e7:6b:c6:
32:22:bd:8c:66:80:5a:82:fb:1a:6b:9b:74:5d:80:aa:e8:87:
7e:67:9a:93:e8:4a:03:ea:da:71:d0:34:a6:a0:ed:1f:07:be:
31:32:eb:b4:b6:cf:11:3a:3c:6d:1b:e3:f7:fd:53:1b:b3:58:
4c:dd:01:cc:fe:a1:50:0a:5a:3e:02:51:08:38:a5:7c:c4:81:
6b:78:8b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:36 2024 by rpki-client on console-fra.rpki-client.org