Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/43afb6-0d21-4ff6-9863-bc517e121d54/1/pXVZojwdtVQQY3mlBM9VpNvrq78.roa
File: pXVZojwdtVQQY3mlBM9VpNvrq78.roa (raw, json)
Hash identifier: DCBp4QTBwld3/gghSefUNYlLgDfvR2zRTOqLgPYL3Kw=
Subject key identifier: A5:75:59:A2:3C:1D:B5:54:10:63:79:A5:04:CF:55:A4:DB:EB:AB:BF
Certificate issuer: /CN=89f4c7873b7fea49ff6eb90d502c1dbc3a5f8c33
Certificate serial: 01857079AD2228A34C4D363A8CC40553B68D
Authority key identifier: 89:F4:C7:87:3B:7F:EA:49:FF:6E:B9:0D:50:2C:1D:BC:3A:5F:8C:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ifTHhzt_6kn_brkNUCwdvDpfjDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/43afb6-0d21-4ff6-9863-bc517e121d54/1/pXVZojwdtVQQY3mlBM9VpNvrq78.roa
Signing time: Mon 02 Jan 2023 03:15:00 +0000
ROA not before: Mon 02 Jan 2023 03:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31655
IP address blocks: 2a03:15c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:ad:22:28:a3:4c:4d:36:3a:8c:c4:05:53:b6:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89f4c7873b7fea49ff6eb90d502c1dbc3a5f8c33
Validity
Not Before: Jan 2 03:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a57559a23c1db554106379a504cf55a4dbebabbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:67:19:1b:1a:45:ee:ae:fe:20:f9:5c:fe:ff:
f5:b4:4b:bd:a3:4e:e2:f8:7a:bf:61:24:43:70:81:
f6:12:46:17:0d:9f:99:ab:31:e5:f1:ce:3c:bf:48:
2a:31:db:93:0b:47:dd:12:32:1b:df:5d:51:ec:d1:
ad:61:bb:3d:78:1f:e5:9b:19:e6:19:f2:85:e6:60:
76:ad:b8:a7:27:67:a3:4c:05:9c:be:ae:67:05:68:
fd:e9:7d:97:21:82:d8:86:80:55:e7:16:7f:7a:12:
ef:89:32:21:e4:3e:45:ab:61:04:ab:99:5d:b2:4d:
0d:8f:f1:c8:31:55:ea:a7:e7:72:79:31:3a:5e:21:
12:0f:10:17:c1:70:fe:95:9f:8f:47:dc:9c:e5:38:
b3:9b:8f:1b:0d:f0:95:2a:8d:2b:d2:fc:80:96:0d:
f0:f0:5a:63:cd:6f:1b:07:f3:9c:bb:8b:3d:b6:2c:
32:ec:37:f1:04:51:71:44:d5:32:d6:a7:90:0f:55:
50:4d:90:d2:53:eb:eb:d0:88:0d:5d:f6:e3:0b:e9:
cb:da:58:1b:ae:dc:f1:9b:22:a2:eb:d7:1a:1e:e4:
8e:e9:5b:86:8d:6c:3e:96:8e:24:46:ff:df:2a:ca:
4f:73:15:ce:73:12:57:e1:e0:e1:28:af:01:e0:2c:
15:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:75:59:A2:3C:1D:B5:54:10:63:79:A5:04:CF:55:A4:DB:EB:AB:BF
X509v3 Authority Key Identifier:
keyid:89:F4:C7:87:3B:7F:EA:49:FF:6E:B9:0D:50:2C:1D:BC:3A:5F:8C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ifTHhzt_6kn_brkNUCwdvDpfjDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/43afb6-0d21-4ff6-9863-bc517e121d54/1/pXVZojwdtVQQY3mlBM9VpNvrq78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/43afb6-0d21-4ff6-9863-bc517e121d54/1/ifTHhzt_6kn_brkNUCwdvDpfjDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:15c0::/32
Signature Algorithm: sha256WithRSAEncryption
3c:00:2a:6d:e7:9c:fc:5a:a5:51:a1:1b:ec:ee:1f:b0:87:e0:
03:d3:5c:85:b0:8a:f2:7a:2c:0e:d9:8f:ae:05:12:14:9a:b7:
f6:73:34:fe:a9:45:01:c3:a2:25:42:e6:ca:91:33:0f:ca:5d:
37:17:75:5b:c4:5b:28:76:9f:11:2d:d3:70:0b:f3:f4:f9:97:
4b:2f:f9:4a:d4:c6:38:dd:c2:6f:56:c6:a8:40:45:83:d6:f4:
5c:3c:dd:70:6a:54:9d:fd:fa:3c:5d:d6:ea:59:52:6e:4d:da:
e3:a9:17:20:4e:ed:da:fe:c0:8c:64:3e:5e:92:1d:da:1f:2f:
26:72:44:46:1a:3f:f4:31:48:1d:a7:e8:90:ab:47:47:20:1d:
aa:22:4f:4b:89:7a:ab:55:83:45:5f:44:ae:d4:19:f1:09:8b:
d8:41:cd:d3:63:bc:8f:f0:bf:ea:85:3a:7f:89:74:a2:9c:d3:
48:51:4c:d6:c2:b2:79:b6:db:26:91:9a:83:28:ed:5e:ce:73:
79:2c:61:c9:99:18:16:99:2b:51:24:f9:6c:95:09:2f:7f:33:
b8:86:c6:67:63:d7:b1:68:05:12:ff:a3:cb:36:ee:42:27:c4:
cb:37:26:4e:73:b1:4a:c4:17:ec:81:74:14:95:17:2f:0f:c8:
36:11:07:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:35 2024 by rpki-client on console-ams.rpki-client.org