Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/7f2cf2-4294-43d6-a321-47eddde2a372/1/krtvNSM5TegVjVdI7BPTKR-XqWE.roa
File: krtvNSM5TegVjVdI7BPTKR-XqWE.roa (raw, json)
Hash identifier: LHcsXqgqgaCNDoa75MItYSWOowINYVw/pxgbaT7v9gI=
Subject key identifier: 92:BB:6F:35:23:39:4D:E8:15:8D:57:48:EC:13:D3:29:1F:97:A9:61
Certificate issuer: /CN=f4272ac0423fb097583c6872567d84cae410c89b
Certificate serial: 018713EEC15E575C90641103A6FB213D308A
Authority key identifier: F4:27:2A:C0:42:3F:B0:97:58:3C:68:72:56:7D:84:CA:E4:10:C8:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9CcqwEI_sJdYPGhyVn2EyuQQyJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/7f2cf2-4294-43d6-a321-47eddde2a372/1/krtvNSM5TegVjVdI7BPTKR-XqWE.roa
Signing time: Fri 24 Mar 2023 14:03:46 +0000
ROA not before: Fri 24 Mar 2023 14:03:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210199
IP address blocks: 2001:67c:c0c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:ee:c1:5e:57:5c:90:64:11:03:a6:fb:21:3d:30:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4272ac0423fb097583c6872567d84cae410c89b
Validity
Not Before: Mar 24 14:03:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92bb6f3523394de8158d5748ec13d3291f97a961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:07:94:56:d5:f9:a5:7f:6e:55:b2:6d:93:61:
c4:81:1c:dd:68:36:6d:bd:fc:f1:6e:fd:77:50:79:
37:a7:02:a6:54:a7:b8:c6:df:a4:e2:e7:b8:5c:39:
9f:bf:04:d7:ed:1c:5c:82:8a:9c:13:9c:03:14:64:
75:7e:97:50:31:eb:3e:59:a5:5b:96:a6:9d:c2:5d:
7a:92:7b:f1:f8:83:d5:90:09:1b:78:7e:22:b2:08:
61:9c:b0:e4:42:4c:d9:ef:16:15:e0:00:50:18:02:
96:39:3f:a1:c5:4d:d9:dc:64:2e:4b:f1:72:8d:cd:
6d:5a:4e:87:6f:48:55:4a:9f:41:44:b1:9d:8c:dd:
58:4b:2f:78:b4:96:04:f6:6f:11:41:14:0e:ae:71:
c7:9c:cc:2a:ce:2c:c2:e2:57:d4:3f:aa:bd:73:fe:
ae:6d:e7:23:ab:32:d2:0a:2f:2b:c1:61:d1:52:de:
78:83:7c:d5:f0:e2:9d:af:a7:ec:15:0b:bd:10:10:
c1:a4:d5:52:8e:b8:9d:34:73:31:3b:d4:20:68:a4:
48:6c:01:75:80:2e:91:6e:61:52:0d:dc:8e:42:06:
75:49:b1:1d:0c:27:77:36:aa:68:d9:ed:df:e3:36:
1c:2d:5c:ff:73:8b:48:99:06:d4:4f:b4:26:b7:88:
da:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:BB:6F:35:23:39:4D:E8:15:8D:57:48:EC:13:D3:29:1F:97:A9:61
X509v3 Authority Key Identifier:
keyid:F4:27:2A:C0:42:3F:B0:97:58:3C:68:72:56:7D:84:CA:E4:10:C8:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9CcqwEI_sJdYPGhyVn2EyuQQyJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7f2cf2-4294-43d6-a321-47eddde2a372/1/krtvNSM5TegVjVdI7BPTKR-XqWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7f2cf2-4294-43d6-a321-47eddde2a372/1/9CcqwEI_sJdYPGhyVn2EyuQQyJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c0c::/48
Signature Algorithm: sha256WithRSAEncryption
b0:1d:67:46:98:38:ea:b9:5c:03:5c:2d:83:e6:6b:59:19:af:
10:bc:8b:10:1e:26:e9:69:ee:34:9f:06:ee:d6:7d:3a:4a:a9:
c5:26:45:83:c2:39:7b:68:e4:f5:fa:7c:16:cf:d9:a9:8f:d5:
51:ac:8e:8e:72:46:8a:92:03:17:e4:06:f4:22:57:51:6b:20:
2f:dd:0f:d8:56:a5:2b:8c:92:1a:03:1a:e4:a7:42:34:38:53:
4d:c4:f0:2a:45:9c:57:41:79:c7:29:13:32:b7:53:68:0d:15:
f0:4c:a7:10:fc:4b:4b:40:29:a0:5a:5b:6e:5f:6c:1c:3e:c3:
e0:92:a9:96:dc:c7:08:d0:44:2a:90:9b:41:53:e0:9c:10:3d:
66:69:c0:21:2a:7e:82:2c:e0:48:5b:90:38:ea:a4:43:34:a3:
fc:e3:c2:db:48:a4:5f:5d:3e:a8:ae:7a:51:ae:6d:62:5c:e8:
47:b1:5f:4b:5f:d8:87:15:36:6a:e6:bf:f1:6b:ff:ac:3e:b1:
57:60:57:64:b0:d6:4b:ec:2a:85:ff:ee:e4:1a:96:d4:a2:fd:
b9:9a:fb:05:42:78:ab:ba:93:06:bf:3b:f2:41:55:eb:d8:ce:
f4:37:9b:af:f8:29:82:9b:ec:e3:d6:9b:7e:66:75:3f:63:af:
b5:78:da:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:33 2024 by rpki-client on console-fra.rpki-client.org