Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/72dc55-6ac5-47d7-8e09-91fa61f7326c/1/6TgAeR5QFLG6lcZJIEmKcsVxSKY.roa
File: 6TgAeR5QFLG6lcZJIEmKcsVxSKY.roa (raw, json)
Hash identifier: 6HtagTv/m6gztIi/1DIL7bwXJjoJh9l2Z5nkIkyvLCo=
Subject key identifier: E9:38:00:79:1E:50:14:B1:BA:95:C6:49:20:49:8A:72:C5:71:48:A6
Certificate issuer: /CN=119a4d4c503a88f364e4c40d701c44c4437a1a0b
Certificate serial: 01856FA6DEF7719CE416DE44502CB6003EF6
Authority key identifier: 11:9A:4D:4C:50:3A:88:F3:64:E4:C4:0D:70:1C:44:C4:43:7A:1A:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EZpNTFA6iPNk5MQNcBxExEN6Ggs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/72dc55-6ac5-47d7-8e09-91fa61f7326c/1/6TgAeR5QFLG6lcZJIEmKcsVxSKY.roa
Signing time: Sun 01 Jan 2023 23:24:45 +0000
ROA not before: Sun 01 Jan 2023 23:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209693
IP address blocks: 2001:67c:910::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:de:f7:71:9c:e4:16:de:44:50:2c:b6:00:3e:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=119a4d4c503a88f364e4c40d701c44c4437a1a0b
Validity
Not Before: Jan 1 23:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e93800791e5014b1ba95c64920498a72c57148a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e1:60:d7:2d:59:dc:aa:c0:e2:44:3f:00:e1:
e1:d9:0a:26:4a:cb:6d:86:12:a2:07:4c:91:ae:ff:
92:4d:72:40:c1:15:e1:4a:67:36:3c:21:c4:cc:fb:
f2:a6:2e:34:81:bb:55:e5:f9:fe:65:6d:fb:79:1f:
06:89:a9:cb:47:33:f8:1f:b5:4a:65:d5:e6:db:ca:
50:db:da:1e:34:fb:70:c0:04:00:24:c4:1a:84:67:
6b:28:bf:68:6c:bc:6f:fb:3f:a7:62:ef:93:27:23:
39:93:99:f4:05:9b:a8:e8:2e:72:99:02:f7:9d:8a:
52:c5:79:0d:6e:a8:8a:cd:a9:a4:28:0f:ef:36:01:
b3:9e:29:db:5a:b8:ad:bc:e3:ae:bb:77:63:eb:cb:
f3:f2:87:a4:28:9e:9d:3d:84:59:29:5d:9f:8b:9e:
33:17:04:37:39:50:79:13:08:1b:b3:99:14:cf:f1:
f2:be:c2:a5:63:ce:0d:97:12:98:b6:24:c4:fe:ba:
51:34:cd:54:e8:f0:78:4e:fa:85:5c:4a:43:b0:01:
29:d7:68:75:18:16:62:e5:94:ba:22:dd:c1:b4:03:
ad:04:00:9c:18:99:9e:92:79:30:b6:76:c0:a4:c0:
20:38:70:70:78:c7:02:da:07:b8:52:10:50:5a:51:
48:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:38:00:79:1E:50:14:B1:BA:95:C6:49:20:49:8A:72:C5:71:48:A6
X509v3 Authority Key Identifier:
keyid:11:9A:4D:4C:50:3A:88:F3:64:E4:C4:0D:70:1C:44:C4:43:7A:1A:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EZpNTFA6iPNk5MQNcBxExEN6Ggs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/72dc55-6ac5-47d7-8e09-91fa61f7326c/1/6TgAeR5QFLG6lcZJIEmKcsVxSKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/72dc55-6ac5-47d7-8e09-91fa61f7326c/1/EZpNTFA6iPNk5MQNcBxExEN6Ggs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:910::/48
Signature Algorithm: sha256WithRSAEncryption
9f:e3:6a:c9:af:76:f3:39:6c:01:d9:8b:52:ee:86:87:61:26:
10:b9:e7:92:23:2e:05:c4:88:1b:65:96:9b:4a:05:01:09:25:
67:7f:bf:54:fa:eb:d2:c0:28:2b:07:c8:1f:25:3a:e6:49:b4:
e2:c5:c7:de:bd:a2:d5:49:9b:3a:a9:24:e7:e7:6a:ff:f7:e4:
50:0a:3a:d7:11:da:61:b8:4f:b8:56:4e:39:c8:49:ab:38:16:
d3:87:35:6e:ff:79:13:8e:7d:80:7b:0e:93:da:91:2e:cf:a8:
31:9d:68:1c:a4:c8:70:ad:c9:f1:6d:6e:11:f6:62:cb:e2:cc:
8d:1d:48:a8:c0:cb:99:b5:94:8c:57:3f:30:09:05:93:fd:16:
35:0b:7f:83:97:62:64:77:54:79:4f:01:e0:f7:81:85:24:37:
55:e7:34:e1:61:0d:d6:42:d1:c8:e2:b9:97:00:56:8e:f4:2b:
59:ea:1a:56:ec:07:47:4f:b5:ee:ad:9e:f0:83:34:2f:ba:fa:
9e:8a:59:2b:f7:a4:36:17:1a:80:38:73:3e:4d:b8:cb:60:88:
3a:51:1c:09:ae:c3:4d:35:35:1c:fd:d0:ec:66:da:a7:9b:73:
a1:d4:02:29:3e:aa:bd:40:f9:37:bd:da:2d:3f:5f:78:a6:29:
0c:00:29:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:18 2024 by rpki-client on console-fra.rpki-client.org