Route Origin Authorization
$ rpki-client -vvf rpki.sn-p.io/repo/sn-p-io/1/323030313a3637633a313239633a3a2f34382d313238203d3e20323035383438.roa
File: 323030313a3637633a313239633a3a2f34382d313238203d3e20323035383438.roa (raw, json)
Hash identifier: hbVmDAaGMcje7YuoJnZGpw+wFjSDCL/mIqfQwy0s9eA=
Subject key identifier: 00:34:24:B3:C4:C0:BF:67:4F:6A:1B:95:7F:9C:46:88:E3:A3:41:BF
Certificate issuer: /CN=45fad4649403f24502e9c3fa40103955bc3b5924
Certificate serial: 67288E1700B2A8C516B4045A05A78178F7F5E453
Authority key identifier: 45:FA:D4:64:94:03:F2:45:02:E9:C3:FA:40:10:39:55:BC:3B:59:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RfrUZJQD8kUC6cP6QBA5Vbw7WSQ.cer
Subject info access: rsync://rpki.sn-p.io/repo/sn-p-io/1/323030313a3637633a313239633a3a2f34382d313238203d3e20323035383438.roa
Signing time: Mon 04 Mar 2024 13:28:02 +0000
ROA not before: Mon 04 Mar 2024 13:23:02 +0000
ROA not after: Mon 03 Mar 2025 13:28:02 +0000
asID: 205848
IP address blocks: 2001:67c:129c::/48 maxlen: 128
Validation: Failed, certificate revoked on Mon 13 May 2024 19:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:28:8e:17:00:b2:a8:c5:16:b4:04:5a:05:a7:81:78:f7:f5:e4:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45fad4649403f24502e9c3fa40103955bc3b5924
Validity
Not Before: Mar 4 13:23:02 2024 GMT
Not After : Mar 3 13:28:02 2025 GMT
Subject: CN=003424B3C4C0BF674F6A1B957F9C4688E3A341BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fc:8a:1b:e3:9f:3a:f0:23:dc:98:f2:77:79:
b4:12:96:1b:9f:35:c2:97:50:f1:52:47:f2:48:d6:
50:c0:d5:50:41:e4:3d:c5:53:eb:11:8f:df:6a:9b:
76:96:dd:15:2a:17:50:34:15:33:11:97:3b:a3:75:
27:48:f4:9a:31:e8:ce:f9:31:92:fa:1f:fc:41:03:
53:f8:7c:08:1d:6b:b0:9c:76:0e:55:3e:b9:0f:90:
ed:de:d4:97:2f:8a:04:10:ae:bc:91:05:3a:8c:06:
d5:e2:94:00:3a:a6:04:af:3e:e7:de:90:66:d9:16:
e3:7e:91:16:47:6b:45:95:53:f7:d3:81:9b:76:7a:
71:09:27:49:fd:6b:8b:c1:fe:11:88:5b:4e:8b:63:
5f:f3:19:17:5e:3c:03:35:5a:a0:cf:a8:75:19:94:
ab:84:42:1c:4a:e0:9b:d1:4b:a3:e0:95:72:a7:fc:
de:c9:df:61:8a:b8:56:bb:c0:7a:6e:b4:21:f4:b4:
f5:f2:94:ee:3c:75:9e:81:50:bf:51:d3:bb:70:76:
21:9e:1e:39:20:9a:75:18:a0:22:53:5a:fd:58:18:
57:77:bd:75:de:94:76:74:fd:a6:c1:4d:50:ec:9d:
d3:65:92:21:3a:43:23:a7:0d:b6:83:07:de:c1:16:
ef:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:34:24:B3:C4:C0:BF:67:4F:6A:1B:95:7F:9C:46:88:E3:A3:41:BF
X509v3 Authority Key Identifier:
keyid:45:FA:D4:64:94:03:F2:45:02:E9:C3:FA:40:10:39:55:BC:3B:59:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sn-p.io/repo/sn-p-io/1/45FAD4649403F24502E9C3FA40103955BC3B5924.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RfrUZJQD8kUC6cP6QBA5Vbw7WSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sn-p.io/repo/sn-p-io/1/323030313a3637633a313239633a3a2f34382d313238203d3e20323035383438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:129c::/48
Signature Algorithm: sha256WithRSAEncryption
93:4f:35:04:95:38:25:40:93:33:d2:50:5d:03:12:ca:0c:3d:
57:f0:44:d3:84:79:a4:2e:e7:e9:8f:01:f6:32:b9:27:06:36:
c0:d0:36:0b:59:fa:83:2b:83:93:77:53:8d:4e:86:8f:b1:9e:
81:e3:77:16:5b:3c:14:3a:8e:b1:42:85:16:18:26:0d:87:3f:
fd:cf:72:38:03:50:f4:47:34:17:89:92:98:40:fd:95:6b:e9:
f6:24:d6:d8:3d:d6:c4:82:ac:41:65:30:f1:1c:57:96:08:95:
58:f9:5b:c8:33:3d:1a:d9:1d:c6:72:33:ee:90:6f:30:31:03:
6b:8f:9d:57:16:47:ae:1f:9d:4c:44:3f:82:b9:96:4a:f3:5f:
51:cf:ea:b8:5c:d7:13:5a:aa:23:a0:06:64:91:7b:e4:51:88:
9d:f6:74:f4:db:b3:fd:7f:fe:70:f8:ab:fa:c6:d1:17:63:a8:
68:85:ab:ab:c0:55:b1:2c:af:52:22:93:3c:31:5a:c8:42:79:
c4:dd:81:0d:12:7f:d8:37:dd:06:fc:94:de:c3:48:bf:8b:b5:
25:f4:3f:e2:74:60:53:08:3c:cd:9f:85:f6:2c:b7:f3:e0:b6:
1e:48:98:38:3d:b5:c5:6a:af:0e:45:06:cd:16:fd:5d:cc:79:
37:36:ff:96
-----BEGIN CERTIFICATE-----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Generated at Mon May 13 19:49:23 2024 by rpki-client on console-fra.rpki-client.org