Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/CoyC_B0Qx-mXNLk35fg6gdcQPjU.roa
File: CoyC_B0Qx-mXNLk35fg6gdcQPjU.roa (raw, json)
Hash identifier: ZANYqV2z/yNfqcfn+6G/bIXgg22d3OBkeIw33IYtC2M=
Subject key identifier: 0A:8C:82:FC:1D:10:C7:E9:97:34:B9:37:E5:F8:3A:81:D7:10:3E:35
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F42AB622F906B22DE0B251A9D99105D
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/CoyC_B0Qx-mXNLk35fg6gdcQPjU.roa
Signing time: Sun 01 Jan 2023 21:35:18 +0000
ROA not before: Sun 01 Jan 2023 21:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398788
IP address blocks: 2a01:488:bb12::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ab:62:2f:90:6b:22:de:0b:25:1a:9d:99:10:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a8c82fc1d10c7e99734b937e5f83a81d7103e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2f:7b:53:f4:e9:b0:73:62:dc:b7:fe:65:c8:
21:65:39:cf:58:c1:b9:7a:3e:1f:66:6b:9f:48:32:
73:85:ac:df:f7:92:ff:f8:5a:40:b0:73:ff:92:f5:
31:b8:3f:55:60:cc:9c:fd:b8:30:25:e2:5f:3f:86:
24:5a:11:6a:0d:b0:e9:47:9c:5a:6d:fc:70:bb:d7:
d7:9a:a6:70:c9:d9:6c:74:c8:e4:43:a0:f0:7c:66:
14:5e:34:1b:15:88:40:b7:ad:64:50:86:04:74:68:
64:3a:4f:55:d2:4b:32:0d:4d:3b:a2:d8:bd:ce:99:
7d:a0:50:50:f4:a9:76:43:8e:15:11:ef:88:4c:02:
d8:17:14:1a:37:57:5d:db:dd:a9:19:92:b8:e4:c9:
41:4e:fc:44:bc:c7:fe:a4:74:e2:a9:40:21:fb:3a:
46:54:b8:c4:5d:91:79:a6:66:3d:91:e9:ae:c5:30:
21:c1:cd:12:03:37:30:75:7f:18:8b:4a:57:b5:ff:
61:4e:2d:90:7c:04:7d:ea:ee:96:c6:7d:20:74:e9:
fe:d0:aa:77:d2:8c:74:af:c3:49:56:40:f4:65:f1:
40:39:92:88:46:a8:c7:89:d4:8f:30:e3:59:b9:57:
fa:f9:eb:67:ef:a0:eb:75:a6:a5:cf:24:7e:99:1b:
c8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:8C:82:FC:1D:10:C7:E9:97:34:B9:37:E5:F8:3A:81:D7:10:3E:35
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/CoyC_B0Qx-mXNLk35fg6gdcQPjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb12::/48
Signature Algorithm: sha256WithRSAEncryption
27:f8:1b:27:01:02:e8:73:bb:4e:b0:01:c5:50:e3:05:37:31:
1d:04:f5:65:e1:d5:98:06:77:85:2c:4c:25:fe:26:37:20:ea:
22:81:e8:93:d8:9e:32:2e:8f:76:87:5f:85:58:4a:92:5f:86:
cc:b5:4b:85:3a:a2:1c:d5:6c:56:29:e6:6f:a5:1f:b2:1b:91:
bf:36:fc:1d:0d:ff:8a:af:9f:6d:d8:ff:f4:cf:21:f0:22:be:
9f:15:e0:71:14:f8:ab:6f:d8:42:18:63:07:3d:8d:a7:7e:45:
93:ef:03:2e:fd:1a:f3:8a:3e:06:ae:14:2c:c6:02:25:ce:9a:
58:51:1c:99:11:d4:e5:d5:30:c2:ed:ba:2b:d7:49:27:18:6f:
cc:bd:f9:c2:91:0b:1b:a2:54:de:86:46:53:c4:eb:a2:2e:1d:
d3:7c:2c:a0:c6:1c:dc:5f:a1:c3:2d:b2:16:9a:18:b9:ee:81:
77:a0:0d:fc:dd:e6:13:e4:a6:44:24:cb:26:8f:43:f6:6c:94:
6e:c7:de:a1:39:8b:a4:e3:8f:0a:7b:c6:c8:27:60:1e:05:6c:
92:aa:13:c9:eb:54:3a:ce:ba:11:b6:ff:c3:c3:37:73:3c:31:
c7:d8:af:79:c0:60:25:95:ba:e2:84:59:a3:ef:67:66:39:74:
d5:17:73:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:40 2024 by rpki-client on console-ams.rpki-client.org