Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/b9342f-5916-4644-b1aa-00d1e7a170a2/1/3y9fPzgIZ4U_amoahNlbFvQfdHU.roa
File: 3y9fPzgIZ4U_amoahNlbFvQfdHU.roa (raw, json)
Hash identifier: j325EG0Ol2qWpP/qB7xZTcIaODXQxwH3JXpp76DE/qo=
Subject key identifier: DF:2F:5F:3F:38:08:67:85:3F:6A:6A:1A:84:D9:5B:16:F4:1F:74:75
Certificate issuer: /CN=b143fa703fbee04bbd91ce63a32148b36b8e55aa
Certificate serial: 01857139E1C033E34F014382C874594A3CEF
Authority key identifier: B1:43:FA:70:3F:BE:E0:4B:BD:91:CE:63:A3:21:48:B3:6B:8E:55:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUP6cD--4Eu9kc5joyFIs2uOVao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/b9342f-5916-4644-b1aa-00d1e7a170a2/1/3y9fPzgIZ4U_amoahNlbFvQfdHU.roa
Signing time: Mon 02 Jan 2023 06:44:56 +0000
ROA not before: Mon 02 Jan 2023 06:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50384
IP address blocks: 2a00:1b30::/33 maxlen: 33
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:e1:c0:33:e3:4f:01:43:82:c8:74:59:4a:3c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b143fa703fbee04bbd91ce63a32148b36b8e55aa
Validity
Not Before: Jan 2 06:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df2f5f3f380867853f6a6a1a84d95b16f41f7475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:cc:d9:b1:aa:f6:be:a7:0c:69:90:69:5f:e9:
d4:4f:31:b5:65:4d:72:36:30:67:57:de:47:d4:c6:
b9:2f:80:2f:fb:08:5c:63:5e:58:b0:e2:88:ee:ce:
40:c3:45:f5:6b:af:cc:a7:09:ce:c7:b9:3f:57:3e:
48:77:61:3b:4c:e5:0d:8b:9d:a2:6d:ce:77:33:f9:
5c:20:94:b8:1e:d9:bf:83:23:5a:3b:a9:28:a5:04:
78:7d:91:0a:5c:89:e7:cc:27:d1:0e:37:04:8e:ef:
86:6d:d1:f8:fb:69:93:97:4e:f4:e4:b2:cc:0c:6a:
bf:b2:9e:7d:ed:3d:92:ca:0e:ab:96:40:33:c1:7f:
c5:a1:4a:2b:fe:72:5d:30:69:70:ba:ea:33:12:ac:
ec:57:11:e1:28:95:d1:b6:ff:a9:1e:cd:52:de:09:
49:4c:00:5b:c8:3c:4a:22:fd:95:c0:94:8d:8a:e9:
04:00:f5:9f:50:84:7e:8f:93:77:b8:3c:37:c0:3f:
45:14:78:1b:8f:09:ab:fa:12:3f:fe:24:9d:f4:26:
1e:6a:a8:67:c6:2f:60:29:db:1e:32:a7:69:de:1d:
ab:f1:6e:fc:c6:cb:12:48:a3:83:b5:89:3d:be:91:
f1:73:49:d4:44:96:bb:62:53:d2:ca:6c:03:61:06:
7f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:2F:5F:3F:38:08:67:85:3F:6A:6A:1A:84:D9:5B:16:F4:1F:74:75
X509v3 Authority Key Identifier:
keyid:B1:43:FA:70:3F:BE:E0:4B:BD:91:CE:63:A3:21:48:B3:6B:8E:55:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUP6cD--4Eu9kc5joyFIs2uOVao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b9342f-5916-4644-b1aa-00d1e7a170a2/1/3y9fPzgIZ4U_amoahNlbFvQfdHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b9342f-5916-4644-b1aa-00d1e7a170a2/1/sUP6cD--4Eu9kc5joyFIs2uOVao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1b30::/33
Signature Algorithm: sha256WithRSAEncryption
7c:50:a0:27:22:02:0c:1c:1c:5a:ad:f2:14:14:fd:4d:42:21:
02:7e:26:1f:10:ad:76:f2:5f:9b:1e:00:91:ba:81:ad:13:07:
72:7b:c7:54:cc:21:ff:23:b0:a5:b6:4b:65:fe:08:d8:d5:7d:
54:2b:bb:72:bf:ea:6a:3e:52:ae:35:c8:59:e8:f5:02:60:b5:
3f:66:b9:4e:bd:04:0b:d5:3c:8c:2a:8f:96:75:aa:4c:61:3f:
48:30:1b:16:83:b1:b5:0f:6f:88:62:6c:41:5f:d2:d7:e7:cc:
f5:4a:a1:24:a8:ec:2d:ce:f0:f4:89:b2:ee:06:3b:4a:bc:83:
9c:d7:ec:b1:56:5f:0e:a2:fa:60:2c:3d:17:b1:d3:d1:b8:29:
cb:89:36:c8:ed:6c:e8:b4:27:c4:3c:ff:4e:62:ad:c0:bd:71:
82:1e:3a:4f:23:1d:6b:56:16:30:0a:3e:5e:6a:91:82:28:c3:
97:90:ea:63:2f:6d:bb:e3:84:ae:44:a3:44:2e:57:25:ba:11:
05:4b:1d:e4:97:7b:3a:97:c6:3e:9b:37:fd:43:2f:18:0c:63:
12:c6:f2:d8:7a:e5:85:14:92:c1:6c:16:4d:fd:e0:ea:78:68:
3b:21:1e:1e:9e:b2:02:55:ca:28:82:7f:32:63:61:36:e9:bb:
35:e0:27:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:33 2024 by rpki-client on console-fra.rpki-client.org