Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/8adf7e-2ded-424d-8951-e682bcb9a63a/1/AFCprJCbgIg7Ea2oZnYmzcT5ME8.roa
File: AFCprJCbgIg7Ea2oZnYmzcT5ME8.roa (raw, json)
Hash identifier: CIikLprTMJBpGH+QNOFfgMY6UfreQtyzEX051OzDDvM=
Subject key identifier: 00:50:A9:AC:90:9B:80:88:3B:11:AD:A8:66:76:26:CD:C4:F9:30:4F
Certificate issuer: /CN=8c13eb8fd9d8db4b68a969c8ffdd4846802ab0ab
Certificate serial: 01865448187FBB6D3CD1ACB3B791B81A90B0
Authority key identifier: 8C:13:EB:8F:D9:D8:DB:4B:68:A9:69:C8:FF:DD:48:46:80:2A:B0:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBPrj9nY20toqWnI_91IRoAqsKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/8adf7e-2ded-424d-8951-e682bcb9a63a/1/AFCprJCbgIg7Ea2oZnYmzcT5ME8.roa
Signing time: Wed 15 Feb 2023 08:54:16 +0000
ROA not before: Wed 15 Feb 2023 08:54:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200856
IP address blocks: 2001:67c:b24::/48 maxlen: 128
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:48:18:7f:bb:6d:3c:d1:ac:b3:b7:91:b8:1a:90:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c13eb8fd9d8db4b68a969c8ffdd4846802ab0ab
Validity
Not Before: Feb 15 08:54:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0050a9ac909b80883b11ada8667626cdc4f9304f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6f:37:8e:81:a5:ee:7d:06:af:70:1d:9f:04:
a5:5a:26:fa:1c:63:65:85:47:b2:fd:f1:f0:eb:17:
50:1d:13:55:8b:fb:c4:8e:ce:60:4c:63:28:71:32:
0e:61:2a:6d:2c:56:82:16:d4:b9:ce:2d:11:62:2e:
fc:24:53:de:7d:97:1e:4f:09:4a:03:df:69:1a:40:
89:c4:fc:64:9f:80:1b:d1:44:81:26:46:01:5e:9f:
b7:e3:b1:14:d0:c3:f1:84:f2:cf:8f:9e:8d:05:5d:
68:52:19:29:c5:8a:74:5f:22:a3:5f:5f:ea:45:0b:
5f:57:a1:a9:31:e7:ae:53:32:88:18:3f:4b:0b:e7:
0a:1e:71:9d:09:13:d0:01:a5:71:58:33:50:17:94:
cd:92:50:93:c0:8a:3b:ca:53:ea:fb:99:2e:a4:07:
b5:33:da:fd:c6:a7:46:65:0b:c2:14:fd:b3:f9:bf:
96:08:20:84:0f:59:18:ed:c9:21:3c:02:90:d3:60:
b5:3b:4d:78:05:56:ed:9c:e0:94:7c:2f:a3:bf:69:
b3:94:60:97:9e:8f:cd:74:93:6c:ba:4f:e3:35:bc:
28:81:c6:2e:f9:47:26:c8:ff:2b:c8:6a:17:37:ce:
c7:17:f0:04:c8:74:15:f9:98:29:11:ce:be:bc:e5:
44:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:50:A9:AC:90:9B:80:88:3B:11:AD:A8:66:76:26:CD:C4:F9:30:4F
X509v3 Authority Key Identifier:
keyid:8C:13:EB:8F:D9:D8:DB:4B:68:A9:69:C8:FF:DD:48:46:80:2A:B0:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBPrj9nY20toqWnI_91IRoAqsKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8adf7e-2ded-424d-8951-e682bcb9a63a/1/AFCprJCbgIg7Ea2oZnYmzcT5ME8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8adf7e-2ded-424d-8951-e682bcb9a63a/1/jBPrj9nY20toqWnI_91IRoAqsKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b24::/48
Signature Algorithm: sha256WithRSAEncryption
9b:75:d1:bc:c8:32:a3:f7:0c:31:bc:50:64:36:2d:29:99:f6:
46:1e:d3:21:c7:84:00:9f:f9:9d:b0:b5:94:21:f5:60:8e:e7:
2a:77:f7:47:2f:40:d0:3c:55:a9:6e:4c:2e:b3:2b:5d:d8:ce:
e2:fc:67:25:6c:30:bd:d8:dd:e8:f7:e9:ca:1f:49:6d:1f:3b:
d7:72:c6:e7:4a:0b:7a:36:c8:53:45:d4:f7:cd:69:dd:9e:3e:
ef:cc:90:15:d6:76:46:3f:f7:50:0b:80:1a:eb:54:78:17:17:
60:c5:e7:47:c2:96:c8:d9:4c:ab:a4:46:1d:ac:c0:1f:8b:e6:
e9:5c:1a:23:2e:b4:ba:cd:fa:76:fc:12:5c:ed:20:2e:ec:e2:
58:9e:4a:2c:ec:0b:e1:0b:df:c1:75:e1:ba:34:df:5c:19:a9:
3e:79:a5:7a:8b:61:c1:c6:0e:4f:0f:0f:81:1b:43:01:2e:77:
ff:1e:d4:f1:43:4b:8a:08:6b:ff:55:aa:17:a9:f5:2e:05:b0:
a1:04:69:7e:cb:1b:08:24:15:70:66:e4:38:57:90:ff:a7:88:
0e:63:7b:80:bf:5d:4e:98:b0:cc:66:aa:29:3e:8d:29:f5:f3:
ab:c0:fc:99:2e:13:8e:6a:3d:1e:b3:95:5a:3b:0b:d9:c0:e0:
96:66:11:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:53 2024 by rpki-client on console-fra.rpki-client.org