Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/mcPdJzvxBuDL9K-nnczC1gPoEAA.roa
File: mcPdJzvxBuDL9K-nnczC1gPoEAA.roa (raw, json)
Hash identifier: J3K6/FMCtokG1eQ4upbQiPjMWNdKpKrmFhJSgQZK3Z4=
Subject key identifier: 99:C3:DD:27:3B:F1:06:E0:CB:F4:AF:A7:9D:CC:C2:D6:03:E8:10:00
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 018AFAD59D3FA9F5CF26D22588AC124CE074
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/mcPdJzvxBuDL9K-nnczC1gPoEAA.roa
Signing time: Wed 04 Oct 2023 13:16:57 +0000
ROA not before: Wed 04 Oct 2023 13:16:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51741
IP address blocks: 2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fa:d5:9d:3f:a9:f5:cf:26:d2:25:88:ac:12:4c:e0:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Oct 4 13:16:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99c3dd273bf106e0cbf4afa79dccc2d603e81000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f0:13:08:83:1e:c1:0d:b4:c6:a3:db:2b:ab:
6b:a8:8e:62:32:97:64:ff:a5:9e:68:e7:90:6d:b2:
e3:ad:62:09:aa:22:a8:79:01:e4:6c:0f:71:60:e6:
0a:2a:9c:51:0d:cd:89:cc:21:07:33:6b:1c:1b:9b:
e4:80:32:3a:dd:1b:33:f6:31:09:29:a2:98:74:d0:
da:95:56:f1:7a:56:2b:b4:63:bd:af:8d:80:19:40:
b2:53:27:22:86:0f:8e:42:bf:51:77:c4:ff:3a:31:
f7:a3:08:dc:8e:f3:b0:14:30:42:e8:59:7a:cd:d1:
59:d5:fb:c2:8d:d9:50:d4:8a:90:74:c4:2f:06:56:
32:d0:0d:01:51:e8:13:4f:c6:ae:8e:b8:5b:b2:ba:
09:a1:ba:e9:0e:43:f0:49:e6:bc:12:83:55:c8:8a:
2f:15:97:c3:93:f0:0e:a5:27:2f:e8:af:ab:aa:2f:
f1:a2:47:c1:0a:59:d5:ae:76:1f:ef:b0:5d:00:7b:
70:e2:57:4d:40:b7:2e:f2:ee:43:41:48:23:cd:6d:
03:42:7f:c5:94:c3:dd:e0:8d:44:25:93:cd:1e:28:
19:4f:19:db:76:19:7d:fd:a6:a0:19:45:c0:b2:13:
d1:56:64:03:98:48:cd:ee:ac:5f:10:ec:be:7e:5c:
f3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C3:DD:27:3B:F1:06:E0:CB:F4:AF:A7:9D:CC:C2:D6:03:E8:10:00
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/mcPdJzvxBuDL9K-nnczC1gPoEAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
5f:db:e9:d1:fb:56:79:2a:2e:1c:7c:3d:31:68:ab:b0:23:e7:
32:ca:9c:af:ef:68:0a:d2:03:f9:23:e6:d4:51:39:17:88:c2:
bb:a7:a2:c1:a3:6e:a4:ea:44:12:a3:81:25:4b:65:83:52:26:
9c:14:b4:02:0d:29:cf:15:18:52:6a:f4:d7:11:95:50:f4:ff:
51:e1:34:60:b5:2e:13:cf:73:bb:5a:4f:dc:4c:e0:4a:bd:92:
b3:67:ca:d5:a5:c8:42:d7:70:e1:37:a4:27:e4:63:c2:40:f7:
bb:bf:06:dd:29:dc:d9:2b:a3:62:25:f8:9e:af:59:59:19:e8:
41:ef:e6:98:bf:b0:0b:1b:19:c7:fa:83:27:42:d4:27:69:2c:
94:a9:5f:db:7b:c7:bd:bd:5f:e8:7f:71:6a:93:bb:cc:8b:0e:
61:01:58:a8:aa:dc:c6:1d:4c:fe:36:74:dc:cd:0a:74:0f:59:
72:2b:26:ed:a1:19:59:bd:e6:95:e8:c1:08:2f:99:e0:72:64:
e7:b3:a6:4b:22:a5:10:9a:09:f9:7f:67:8e:21:d4:19:89:2a:
14:98:d3:ca:57:d3:ce:3f:d6:fd:8b:b7:ea:d3:04:ad:c5:4f:
78:a2:cc:0d:7a:ee:18:13:ae:3a:5b:76:89:78:60:43:05:a9:
83:eb:dd:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:44 2023 by rpki-client on console.sobornost.net