Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/jTMrOPBJ9UiPoosL8nYcowESvcc.roa
File: jTMrOPBJ9UiPoosL8nYcowESvcc.roa (raw, json)
Hash identifier: B50SVrIhjH8kWQaOWa0qXaQC4FiqKEI2ygM+70UfRn4=
Subject key identifier: 8D:33:2B:38:F0:49:F5:48:8F:A2:8B:0B:F2:76:1C:A3:01:12:BD:C7
Certificate issuer: /CN=5283073076e673a32b7dd6bcdc0fbcc16f37b6a1
Certificate serial: 018571955EB92FEBF16885E99D961F0489B1
Authority key identifier: 52:83:07:30:76:E6:73:A3:2B:7D:D6:BC:DC:0F:BC:C1:6F:37:B6:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UoMHMHbmc6Mrfda83A-8wW83tqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/jTMrOPBJ9UiPoosL8nYcowESvcc.roa
Signing time: Mon 02 Jan 2023 08:24:52 +0000
ROA not before: Mon 02 Jan 2023 08:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3308
IP address blocks: 2a03:3b80::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:5e:b9:2f:eb:f1:68:85:e9:9d:96:1f:04:89:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5283073076e673a32b7dd6bcdc0fbcc16f37b6a1
Validity
Not Before: Jan 2 08:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d332b38f049f5488fa28b0bf2761ca30112bdc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b3:87:51:11:8a:84:34:ba:32:8a:c6:53:b4:
a7:53:10:77:73:31:4a:9d:0c:f9:ed:77:ab:81:bb:
e3:b6:54:87:b7:94:31:d1:64:fc:4c:2a:8b:6e:90:
50:f4:40:65:31:31:09:3f:8a:88:53:7c:7f:81:c1:
2c:cb:7d:9f:3f:71:39:c2:cf:d4:7d:60:c2:fb:45:
56:91:e8:1b:36:5e:90:05:88:c7:c5:7d:44:7d:79:
dd:55:b4:04:d7:04:54:2e:da:de:d9:90:70:4c:96:
f6:9b:54:8d:91:2b:f9:b8:be:97:cb:c6:8a:d4:6e:
86:53:34:a4:ef:a8:53:10:9e:06:8a:37:a6:a7:c9:
aa:76:be:c6:2a:cd:86:0e:c6:e9:33:6f:f6:0e:ae:
dc:6e:a3:2e:e8:3c:83:ed:d6:3d:db:51:d8:dc:c0:
2a:56:d0:57:95:33:16:00:91:72:0f:14:1c:1e:6b:
d1:d7:50:73:d5:82:92:8a:a0:65:7c:56:cf:24:6a:
f5:c4:5a:e0:fb:0a:93:b5:ff:0f:21:36:e4:46:7a:
a0:5c:75:5e:ae:6b:09:45:58:1d:b8:ce:04:a7:d1:
ec:bf:87:2b:a6:f9:5d:bc:e9:b4:d0:60:d8:9f:71:
14:4e:7f:8b:8d:ec:8f:16:ab:d8:a3:6d:03:04:b1:
36:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:33:2B:38:F0:49:F5:48:8F:A2:8B:0B:F2:76:1C:A3:01:12:BD:C7
X509v3 Authority Key Identifier:
keyid:52:83:07:30:76:E6:73:A3:2B:7D:D6:BC:DC:0F:BC:C1:6F:37:B6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UoMHMHbmc6Mrfda83A-8wW83tqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/jTMrOPBJ9UiPoosL8nYcowESvcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/UoMHMHbmc6Mrfda83A-8wW83tqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:3b80::/32
Signature Algorithm: sha256WithRSAEncryption
4f:a3:e5:f8:44:39:e7:d9:14:2d:7e:19:37:64:59:d0:15:68:
7f:b9:30:e8:5f:78:1b:68:7a:03:45:7e:6b:22:f1:38:f9:b6:
1d:60:88:43:04:f6:ce:49:5f:c7:40:b5:e2:ce:1c:48:0a:01:
09:dd:26:f9:f7:64:7f:6f:74:2e:ce:66:f1:53:0f:75:aa:e0:
2f:51:1b:43:53:c3:97:6f:87:e3:7c:1b:6b:c3:5e:a9:60:3c:
fc:8e:a0:b5:55:8f:52:c1:9a:09:ea:41:e1:f9:94:f1:f5:19:
b7:30:95:51:62:24:70:e3:b3:ca:c5:0c:ec:28:47:52:a0:e6:
31:f8:90:70:c6:7f:a7:d1:18:cc:1c:0b:3a:dd:e8:a3:f6:f0:
50:a3:64:7d:e8:f4:91:a4:89:ba:51:b8:71:0d:f8:f3:e9:56:
ca:5b:e0:ea:ae:ff:df:0c:14:97:2f:4b:2d:3d:cf:a1:8d:77:
a0:46:9f:af:c9:98:70:94:71:c1:3b:02:64:55:f9:d3:dc:c7:
84:19:97:72:f8:0c:2f:5e:0a:8e:25:fd:d6:fa:6b:3d:5c:42:
1e:e6:02:7a:3b:fe:10:a6:76:b8:34:54:06:d3:9b:20:7b:e8:
74:39:f7:b9:ed:01:2a:16:5f:64:d4:14:9c:d6:8b:55:9d:f4:
fc:b5:6a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:04 2024 by rpki-client on console.sobornost.net