Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Pe3mV-yaVhI0SzJ_vV3F319m-DI.roa
File: Pe3mV-yaVhI0SzJ_vV3F319m-DI.roa (raw, json)
Hash identifier: oH4QMfdDnBdMuohhVbzG0zKYVe4fghvFA147Wg4vWGI=
Subject key identifier: 3D:ED:E6:57:EC:9A:56:12:34:4B:32:7F:BD:5D:C5:DF:5F:66:F8:32
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018DC1481068738454C466D5DCD1F4F99BB2
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Pe3mV-yaVhI0SzJ_vV3F319m-DI.roa
Signing time: Mon 19 Feb 2024 12:12:21 +0000
ROA not before: Mon 19 Feb 2024 12:12:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 45027
IP address blocks: 2a04:6e40::/29 maxlen: 29
2a11:91c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 13 Mar 2024 10:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:48:10:68:73:84:54:c4:66:d5:dc:d1:f4:f9:9b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Feb 19 12:12:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3dede657ec9a5612344b327fbd5dc5df5f66f832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5a:4f:78:53:08:ff:db:15:95:e6:89:4d:aa:
91:87:6b:a4:bc:08:61:9c:5e:76:75:ce:ca:d4:eb:
2e:83:2f:63:40:75:b4:c3:bc:4b:6f:4c:0c:47:83:
f2:06:b4:4e:6a:a8:2e:47:ba:81:92:16:49:e0:bc:
88:e6:4c:63:e6:88:6a:13:0b:4c:2f:9a:fa:f3:43:
97:7d:e9:55:46:60:75:91:bd:96:19:77:0b:4c:f7:
47:5b:10:eb:f6:9b:32:40:6c:0a:05:66:a2:de:b4:
4c:da:18:d9:11:9d:51:2b:17:ab:d8:0b:b2:1a:70:
b5:36:45:3b:c8:d6:42:33:d9:fc:f8:c6:d9:00:9a:
cf:ce:0b:40:20:fc:eb:15:d6:61:08:14:0f:d9:a0:
48:ba:4f:7a:0f:c3:e2:2e:53:35:3e:7b:a5:6c:e8:
d0:9f:d8:e9:80:07:6a:1c:41:1a:de:57:b0:36:ff:
04:c6:ca:3b:24:2a:57:f0:d5:f6:a2:2c:a6:ff:04:
eb:ce:d8:dc:b8:dc:31:5a:cf:0f:e2:7b:73:cb:38:
34:1b:fe:c2:2f:bb:1e:d5:e2:bf:51:b9:4c:3e:a1:
07:e3:95:8f:39:ed:7e:00:2a:11:a2:0d:4d:37:d9:
1a:cd:59:9a:90:59:1c:5c:9d:1a:f3:ae:c7:c9:f5:
03:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:ED:E6:57:EC:9A:56:12:34:4B:32:7F:BD:5D:C5:DF:5F:66:F8:32
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Pe3mV-yaVhI0SzJ_vV3F319m-DI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:6e40::/29
2a11:91c0::/29
Signature Algorithm: sha256WithRSAEncryption
7d:0d:e1:0b:c8:c3:69:fa:97:23:85:ed:fe:4b:41:cf:e1:a7:
02:af:88:4a:81:39:7f:f1:51:88:0d:c2:12:2f:6e:06:dd:7e:
30:c9:ed:7e:f5:57:98:32:ba:38:f8:0b:44:0d:c6:a5:60:ea:
2f:8a:be:38:38:07:2f:0e:73:aa:cd:ac:07:2a:0c:44:28:92:
7b:6a:8d:fb:9a:16:a2:ab:ad:62:5e:fd:0c:e1:d9:26:c0:76:
b7:ad:f8:53:23:68:39:1d:8f:36:1a:7c:25:dc:59:db:9f:98:
a8:dc:0c:8a:9e:6f:76:a2:60:a9:b0:4d:34:55:11:97:83:69:
90:ab:67:2c:29:78:27:2f:55:e4:f8:6c:d4:63:e5:e8:fa:3d:
d1:fd:d0:b9:01:c3:ab:65:bc:b8:d8:9a:af:b6:82:30:d7:21:
fe:a9:40:6c:22:43:f6:cb:29:eb:be:08:1f:da:aa:81:6d:d9:
9b:81:4f:8c:dc:13:ce:a7:b5:ac:16:b9:f9:ed:8e:fe:26:64:
f7:b6:83:87:b4:66:0b:84:63:c3:e4:61:53:7e:6b:0f:a8:3f:
a2:a8:63:a8:c9:5d:5e:83:28:cc:6a:e8:a3:1a:94:ae:54:df:
93:01:4a:97:79:a6:11:86:0f:29:ed:36:4c:05:fe:98:10:35:
aa:9d:9c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org