Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/d3opz6izgoH5T3JILld1Us3TTlo.roa
File: d3opz6izgoH5T3JILld1Us3TTlo.roa (raw, json)
Hash identifier: x4dZPlvNEIHF4gWozeoYKY4DePVZa77cQp9Qab4Ral4=
Subject key identifier: 77:7A:29:CF:A8:B3:82:81:F9:4F:72:48:2E:57:75:52:CD:D3:4E:5A
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018C5C63B2C986F23346C101AFD66DD5FF7C
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/d3opz6izgoH5T3JILld1Us3TTlo.roa
Signing time: Tue 12 Dec 2023 04:58:06 +0000
ROA not before: Tue 12 Dec 2023 04:58:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3175
IP address blocks: 2a13:3c80::/29 maxlen: 29
2a11:4b42::/32 maxlen: 32
2a11:4b41::/32 maxlen: 32
2a0e:c380::/29 maxlen: 29
2a11:4b43::/32 maxlen: 32
2a0e:d00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 29 Dec 2023 04:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5c:63:b2:c9:86:f2:33:46:c1:01:af:d6:6d:d5:ff:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Dec 12 04:58:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=777a29cfa8b38281f94f72482e577552cdd34e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:5a:13:89:b7:88:b9:14:95:b4:e8:24:dd:22:
87:fb:92:86:ab:70:57:7a:50:ae:ab:13:7d:e1:07:
f9:6c:c4:2b:bd:7e:84:60:d7:bc:d8:fa:6e:21:8e:
27:54:c7:db:e3:b4:83:a2:8c:eb:1a:2d:bd:0d:42:
4f:62:c7:d9:60:df:a1:11:fd:a1:a2:4f:3a:1c:09:
95:3f:36:a1:1a:ed:34:41:62:3d:74:10:2f:e6:b5:
cf:a5:ef:87:00:13:ab:fe:6a:fd:55:43:1c:db:cd:
9a:1e:13:43:f0:96:21:75:7b:41:fe:db:e7:06:e9:
d6:6d:c7:c5:f4:45:2b:02:ab:d8:f4:94:78:82:d6:
3e:6f:56:e1:fc:73:9f:90:70:87:4b:f7:02:c8:47:
e8:11:00:91:10:8a:72:08:cc:b1:4e:27:67:11:0f:
78:cc:49:8b:c3:4c:1a:3d:67:51:8c:73:6b:1a:ce:
82:0a:53:65:9b:e7:85:a0:cb:3e:73:c7:a3:7c:f7:
77:d3:0c:e1:db:94:20:48:40:ac:30:66:00:b9:3d:
6d:a7:38:ed:1b:5a:31:b6:96:6a:3c:73:5b:17:93:
16:8f:bb:c6:4e:d4:fc:25:27:ae:f8:2f:a0:a4:65:
82:24:18:3e:8a:8a:e2:28:80:99:5f:57:7f:78:e1:
54:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7A:29:CF:A8:B3:82:81:F9:4F:72:48:2E:57:75:52:CD:D3:4E:5A
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/d3opz6izgoH5T3JILld1Us3TTlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d00::/29
2a0e:c380::/29
2a11:4b41::-2a11:4b43:ffff:ffff:ffff:ffff:ffff:ffff
2a13:3c80::/29
Signature Algorithm: sha256WithRSAEncryption
6c:32:fe:51:33:be:e3:7e:36:ee:8f:93:83:c2:b1:e0:b8:84:
d1:6f:5b:e5:05:5f:62:72:8a:71:00:71:8d:9b:d0:c1:e6:cc:
79:40:5d:20:6d:fb:c7:e3:4f:29:b1:97:51:39:52:b5:98:fe:
a8:94:b4:b5:4c:7f:78:c4:be:01:3a:fa:c0:ce:0b:12:8a:51:
50:93:d3:22:51:5d:e0:78:b4:64:a9:9d:a3:46:a5:1f:41:42:
62:01:e5:26:e3:42:28:17:4d:64:0c:3f:b7:64:58:27:b0:3a:
a1:b4:9a:36:ac:a5:8f:7f:e3:da:e9:10:f0:91:79:9f:08:54:
f5:92:33:3d:8e:62:86:00:ce:be:5d:21:c0:96:48:87:01:f9:
83:bd:2b:1c:d9:fc:a1:0b:7e:89:50:76:56:df:4b:00:2d:38:
df:0a:2d:81:0d:ab:75:2f:f6:af:a9:ad:4f:4b:83:77:23:b2:
66:6a:d6:ec:0b:19:ca:44:b7:8e:c2:54:ce:25:b5:7d:ae:67:
72:1c:85:ca:c3:79:31:dd:71:fa:74:01:99:f0:2d:84:90:f9:
3b:7c:94:07:7c:cc:6a:00:c4:ec:50:f6:7e:52:3b:3c:c8:54:
2a:98:31:32:99:3d:f2:1d:ca:1c:5c:66:42:dd:51:18:02:f2:
83:0a:db:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org