Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/8bf256-d96f-4500-b13c-35e069348eb3/1/r_3_Esc7xtoGB79LdF5S0A8MHSM.roa
File: r_3_Esc7xtoGB79LdF5S0A8MHSM.roa (raw, json)
Hash identifier: wRQnA0O+Pj8hylFMpjSheNI3qCAYAstB+Vs1s1gItuc=
Subject key identifier: AF:FD:FF:12:C7:3B:C6:DA:06:07:BF:4B:74:5E:52:D0:0F:0C:1D:23
Certificate issuer: /CN=f4b207ef8024244bbb4a0106af19270150c9f624
Certificate serial: 018DC1E75DA354C1690E93EEEEDC8BE63A86
Authority key identifier: F4:B2:07:EF:80:24:24:4B:BB:4A:01:06:AF:19:27:01:50:C9:F6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LIH74AkJEu7SgEGrxknAVDJ9iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/8bf256-d96f-4500-b13c-35e069348eb3/1/r_3_Esc7xtoGB79LdF5S0A8MHSM.roa
Signing time: Mon 19 Feb 2024 15:06:21 +0000
ROA not before: Mon 19 Feb 2024 15:06:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215488
IP address blocks: 2a14:4c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 05 Mar 2024 15:59:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:e7:5d:a3:54:c1:69:0e:93:ee:ee:dc:8b:e6:3a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b207ef8024244bbb4a0106af19270150c9f624
Validity
Not Before: Feb 19 15:06:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=affdff12c73bc6da0607bf4b745e52d00f0c1d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a2:e5:7d:89:29:3e:79:d4:57:f7:2d:e5:f7:
11:1f:63:a2:8c:e3:33:22:2e:5a:6e:e5:1e:25:47:
3b:40:34:79:68:8d:3a:06:99:c9:19:6b:ed:5e:83:
37:09:d5:2a:4d:99:4c:5d:46:37:09:90:43:ba:62:
68:e5:d4:8b:f4:9c:4f:26:da:83:a3:c1:39:00:bb:
45:78:30:81:13:ce:72:90:6a:a6:e7:84:e8:db:42:
76:60:95:17:c0:b9:8b:cf:74:2f:7e:f0:f9:6f:ab:
a7:4a:59:68:33:4d:57:67:85:01:5b:82:47:fc:93:
f4:50:28:2a:9a:e9:40:b6:77:49:cd:ee:8c:0a:e5:
97:8b:10:dd:da:60:fe:79:d6:f8:35:8f:ac:c4:8e:
a2:63:d0:77:89:6b:23:4f:db:5e:bc:de:92:80:ad:
88:bb:c8:c0:4a:b7:cc:b6:82:ae:63:6c:73:54:65:
6b:9e:c5:97:7f:14:dc:5c:3f:af:90:8b:26:22:bd:
5e:d8:7e:9b:19:df:e2:c7:0a:69:b6:32:19:5d:6e:
37:12:7a:5f:ff:c4:08:38:d8:c9:ec:46:fe:b9:ea:
e1:86:36:13:84:fe:28:5e:7d:28:34:9a:04:76:33:
3b:f3:ee:22:a8:4c:82:e2:d7:1d:4b:9d:87:50:56:
6e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:FD:FF:12:C7:3B:C6:DA:06:07:BF:4B:74:5E:52:D0:0F:0C:1D:23
X509v3 Authority Key Identifier:
keyid:F4:B2:07:EF:80:24:24:4B:BB:4A:01:06:AF:19:27:01:50:C9:F6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LIH74AkJEu7SgEGrxknAVDJ9iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/8bf256-d96f-4500-b13c-35e069348eb3/1/r_3_Esc7xtoGB79LdF5S0A8MHSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/8bf256-d96f-4500-b13c-35e069348eb3/1/9LIH74AkJEu7SgEGrxknAVDJ9iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:4c0::/32
Signature Algorithm: sha256WithRSAEncryption
2a:78:69:c7:e5:66:08:a3:77:17:ce:42:10:55:0f:72:83:17:
ab:a4:ba:dc:69:05:1e:67:c6:a7:9b:cd:a7:1f:67:af:14:bc:
14:f3:91:b1:c5:57:c2:dd:60:f5:37:e1:d6:e7:07:a5:0a:e4:
62:0c:9d:ed:79:2c:d6:b4:75:9f:b2:3e:b8:06:9a:0f:4f:0a:
4b:d5:5d:a0:3a:58:5e:e3:83:25:fd:5a:7a:11:de:be:9e:ed:
4b:fc:93:73:0f:bf:39:58:79:84:cc:73:0d:6c:31:ee:8d:70:
ed:f0:30:e9:34:a3:fd:36:1d:4e:c4:f3:88:db:31:94:d6:c6:
25:22:b4:1e:84:7c:a8:af:8d:15:b0:69:30:5b:a2:ca:7f:78:
7a:1a:43:7d:1b:e6:b2:3c:74:41:7d:fb:14:2d:c2:82:35:9c:
12:dc:30:9a:7e:10:13:18:ee:88:c7:69:e7:66:ee:96:cc:be:
11:9f:7e:01:c7:be:fd:1d:be:64:00:52:dc:58:21:28:ad:d4:
69:63:4f:3f:49:77:ca:83:b5:16:51:87:3a:94:f3:6d:fd:36:
9f:ee:be:79:74:4e:7c:89:58:f8:e8:a1:3b:ca:10:ad:36:12:
69:c0:44:31:fe:9a:69:51:03:ac:e8:69:a8:79:6d:8b:ee:68:
ad:37:f9:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 5 20:21:28 2024 by rpki-client on console-ams.rpki-client.org