Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/LTl3IfPWEZzIxhR9CmA4Lko7UtE.roa
File: LTl3IfPWEZzIxhR9CmA4Lko7UtE.roa (raw, json)
Hash identifier: BXpjffwNJ4Kb1JcI1YqW+ZWpLANIty6P7d8VuUp5A7s=
Subject key identifier: 2D:39:77:21:F3:D6:11:9C:C8:C6:14:7D:0A:60:38:2E:4A:3B:52:D1
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018A4AE1A1D17137ABF5C13B07C93FAD3205
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/LTl3IfPWEZzIxhR9CmA4Lko7UtE.roa
Signing time: Thu 31 Aug 2023 09:16:55 +0000
ROA not before: Thu 31 Aug 2023 09:16:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38915
IP address blocks: 2a07:3502:1040::/48 maxlen: 48
2a07:3500:19f8::/48 maxlen: 48
2a07:3500:1998::/48 maxlen: 48
2a07:3500:19d8::/48 maxlen: 48
2a07:3500:19a8::/48 maxlen: 48
2a07:3500:19e8::/48 maxlen: 48
2a07:3500:19e0::/48 maxlen: 48
2a07:3500:19a0::/48 maxlen: 48
2a07:3500:19b0::/48 maxlen: 48
2a07:3500:19f0::/48 maxlen: 48
2a07:3500:1a00::/48 maxlen: 48
2a07:3500:1200::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:e1:a1:d1:71:37:ab:f5:c1:3b:07:c9:3f:ad:32:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Aug 31 09:16:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d397721f3d6119cc8c6147d0a60382e4a3b52d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5f:22:7e:4c:fe:d5:65:e2:3f:90:76:07:af:
c4:35:3a:41:c8:6c:14:b5:3c:78:4e:1b:35:b7:2c:
32:04:41:2d:2e:53:b8:39:6e:5a:49:6e:50:02:6a:
28:0a:c4:9a:72:04:06:95:c0:6f:bc:6b:07:54:33:
d8:c2:42:d9:18:e9:46:94:67:1a:5d:7d:c2:95:e0:
20:88:ab:21:85:41:2f:c3:5f:ae:79:c3:e1:95:24:
09:7c:86:f1:d8:46:2b:2f:8d:08:d4:9f:53:43:f6:
75:63:c0:09:d3:0a:01:c9:55:46:c4:2c:7a:9d:05:
a4:b6:51:bd:93:31:4d:8b:c2:a6:80:91:eb:f7:11:
c5:6d:fa:d2:33:46:be:1a:b9:12:d3:ec:55:61:ed:
f2:62:04:31:b5:fb:6f:f6:91:3c:1b:0b:4a:e4:c9:
3e:2b:30:bd:c4:b4:66:ca:51:ff:36:e9:63:2d:11:
85:2e:f0:16:70:40:9c:bb:5d:5d:25:c1:7d:7e:2a:
10:90:14:eb:dd:ef:53:60:ec:38:84:ce:94:63:9c:
bc:00:24:c2:b7:64:95:a7:bc:d7:a7:88:39:42:95:
53:9a:13:54:73:86:02:7d:53:0d:fb:4b:05:a3:58:
d8:9d:4a:92:32:4e:94:9b:67:a3:64:5b:ca:76:46:
17:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:39:77:21:F3:D6:11:9C:C8:C6:14:7D:0A:60:38:2E:4A:3B:52:D1
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/LTl3IfPWEZzIxhR9CmA4Lko7UtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:1200::/48
2a07:3500:1998::/48
2a07:3500:19a0::/48
2a07:3500:19a8::/48
2a07:3500:19b0::/48
2a07:3500:19d8::/48
2a07:3500:19e0::/48
2a07:3500:19e8::/48
2a07:3500:19f0::/48
2a07:3500:19f8::/48
2a07:3500:1a00::/48
2a07:3502:1040::/48
Signature Algorithm: sha256WithRSAEncryption
0e:83:40:a6:93:c7:75:97:52:ff:60:5a:71:33:fb:6c:50:20:
60:38:23:6f:74:8b:17:4b:77:f3:f1:79:e6:f9:61:28:7a:20:
df:15:0a:af:e8:a6:8c:75:47:5f:fe:1a:85:00:f1:bc:13:d4:
2a:f1:32:cb:cb:8b:e9:e1:38:da:0b:b8:94:b0:a3:7c:71:d7:
8d:78:96:10:cc:29:12:04:22:20:ef:9c:68:7c:7f:c5:77:71:
f7:bf:b8:7e:c2:96:5e:e5:59:7d:2d:20:36:cd:26:dc:21:79:
4f:66:74:82:14:f6:10:a2:b4:ad:73:e0:04:a9:37:8b:5c:37:
de:97:9c:14:2c:0e:8a:d2:12:94:3c:46:10:77:db:b5:42:1f:
cd:ae:2a:9b:4e:0f:d2:1b:ff:e6:fb:00:3e:08:46:c1:cc:cf:
60:65:43:fd:00:ae:7a:4a:66:5b:2d:cd:d2:ba:24:43:56:95:
47:cd:0d:7a:60:04:06:af:1d:6f:b6:39:2d:a0:05:81:b5:cb:
76:8f:4d:48:44:9a:b4:3a:2e:9c:1d:63:4b:09:8a:d9:fe:47:
5a:99:57:01:c5:cf:fa:9e:0f:be:b2:88:bf:8b:b4:c0:9f:3f:
3a:71:8a:c3:4b:a9:95:9f:f1:6c:a5:d7:c7:2e:e7:36:6a:f8:
88:1c:c2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:06 2023 by rpki-client on console.sobornost.net