Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/sgB1QzEIT2zQYjeRRZeL8MLphJo.roa
File: sgB1QzEIT2zQYjeRRZeL8MLphJo.roa (raw, json)
Hash identifier: R2vSf7yOPYMRACNbmuTza9uhFNPSlFOu3Lt5SzLkXLo=
Subject key identifier: B2:00:75:43:31:08:4F:6C:D0:62:37:91:45:97:8B:F0:C2:E9:84:9A
Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Certificate serial: 018A04D1FA1E94CC5B0F6CF5055CB2BBA3BA
Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/sgB1QzEIT2zQYjeRRZeL8MLphJo.roa
Signing time: Thu 17 Aug 2023 18:46:24 +0000
ROA not before: Thu 17 Aug 2023 18:46:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216441
IP address blocks: 2001:67c:98::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:04:d1:fa:1e:94:cc:5b:0f:6c:f5:05:5c:b2:bb:a3:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Validity
Not Before: Aug 17 18:46:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b200754331084f6cd062379145978bf0c2e9849a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c0:84:8a:d6:8c:61:62:f5:fc:fe:56:a7:5e:
78:00:79:20:c1:bd:37:7c:fc:21:40:a3:b6:c5:71:
36:d8:1d:17:98:69:b5:d1:7c:34:39:6c:2e:d9:a9:
11:f6:d4:7e:41:1d:bf:0b:53:2e:c8:c0:65:50:db:
b4:1d:8d:f9:97:be:db:f7:f0:53:21:e6:da:10:23:
8f:43:86:25:08:89:49:b8:91:81:ad:c3:9c:7b:4f:
77:81:d0:e3:db:e7:ab:1c:e9:ac:10:4d:52:4f:26:
9f:1d:80:27:14:10:c4:a0:d8:43:85:ef:0c:2b:eb:
e8:64:cd:d5:c1:f2:b4:1b:16:2f:14:dc:8c:da:71:
7b:6b:3f:2c:0b:97:4d:5b:ea:bf:88:4a:fe:f3:57:
e5:64:94:47:da:f8:94:f5:55:da:69:c2:99:53:95:
58:f1:84:67:30:cf:37:dd:6d:ca:e8:a8:61:31:cd:
27:e5:7d:d2:65:d4:ba:62:88:0b:51:f1:f6:48:db:
a7:ae:bf:e2:b4:cb:d5:90:0b:ca:52:6b:9f:0b:fe:
81:b2:84:b3:ec:36:20:aa:c9:84:72:83:88:7a:1b:
98:e8:07:9c:bd:4b:6a:14:f3:b9:60:4b:62:10:54:
26:97:1a:7f:67:71:89:19:22:af:ba:c7:99:2a:1c:
75:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:00:75:43:31:08:4F:6C:D0:62:37:91:45:97:8B:F0:C2:E9:84:9A
X509v3 Authority Key Identifier:
keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/sgB1QzEIT2zQYjeRRZeL8MLphJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:98::/48
Signature Algorithm: sha256WithRSAEncryption
34:d8:88:f8:dd:6e:8a:d9:9f:fe:6f:2e:4f:70:ce:10:b1:4d:
58:bd:28:ae:a3:a8:0c:6e:01:42:70:f8:07:58:15:5f:f3:4a:
5a:d4:71:b1:ae:6c:7b:4f:15:66:f3:f0:77:ec:60:b6:0b:1f:
9a:e0:e3:e2:b4:c2:15:73:23:f5:c3:83:87:a7:68:83:bb:cf:
70:3e:3e:b6:2c:46:6f:c6:66:6f:8a:c9:f0:e0:ec:8a:3a:11:
d5:37:9a:cf:da:d3:8e:3d:7e:2f:12:56:7b:47:32:74:6c:36:
48:74:3a:7f:4e:7f:25:a0:bf:b6:d5:35:85:9f:de:e5:10:6d:
66:25:fc:5d:c8:f2:9d:1e:5e:89:38:24:c5:03:15:57:a7:b6:
23:2b:f8:16:73:22:d9:50:63:df:aa:f5:8a:df:81:c3:cd:54:
3a:48:a0:ee:bd:57:51:8f:5c:c3:68:7b:56:8a:6c:b8:43:47:
c0:a3:a3:98:ee:e6:29:f7:d3:79:75:de:fd:f6:68:74:26:46:
8f:aa:51:3f:50:37:7e:c9:13:fd:dd:d1:da:61:53:d6:7b:ff:
dd:85:8a:43:dc:c7:83:86:cf:e2:21:0d:f2:3d:a9:7b:97:32:
6a:6a:b1:96:22:45:16:fa:4d:f7:17:15:00:3b:92:3b:08:8c:
5d:81:48:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:41 2024 by rpki-client on console-fra.rpki-client.org