Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/66Q5EfpFEaNA0xq8qnxZgDbacUU.roa
File: 66Q5EfpFEaNA0xq8qnxZgDbacUU.roa (raw, json)
Hash identifier: Co7+HdEjd3m3z0hVn2uLv7Z3zS4DpogBt8cdL5X3caQ=
Subject key identifier: EB:A4:39:11:FA:45:11:A3:40:D3:1A:BC:AA:7C:59:80:36:DA:71:45
Certificate issuer: /CN=0ba068483acbc96a31e28bcda54bbeafe3482d19
Certificate serial: 018571553666B3E68165FEEF98E9AC94BC35
Authority key identifier: 0B:A0:68:48:3A:CB:C9:6A:31:E2:8B:CD:A5:4B:BE:AF:E3:48:2D:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6BoSDrLyWox4ovNpUu-r-NILRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/66Q5EfpFEaNA0xq8qnxZgDbacUU.roa
Signing time: Mon 02 Jan 2023 07:14:47 +0000
ROA not before: Mon 02 Jan 2023 07:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204345
IP address blocks: 2001:678:634::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:36:66:b3:e6:81:65:fe:ef:98:e9:ac:94:bc:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ba068483acbc96a31e28bcda54bbeafe3482d19
Validity
Not Before: Jan 2 07:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eba43911fa4511a340d31abcaa7c598036da7145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:79:d0:f6:33:36:18:2f:04:34:0c:b5:22:98:
89:d3:eb:f5:c5:b0:e3:52:0a:0e:f6:e5:4d:47:9d:
81:38:ca:30:2c:cd:95:97:76:55:93:cb:02:a3:0d:
83:02:27:75:0c:24:04:b0:24:e0:f8:37:58:d9:d7:
ed:d9:77:c7:39:76:5e:90:ed:d8:f4:85:c3:4d:49:
f5:90:8b:5f:33:22:34:d6:5b:a8:82:20:ef:9f:b5:
03:43:7e:15:2f:10:17:4b:5b:8c:cd:c1:2b:9a:6a:
42:e6:b9:a2:fc:39:6f:62:e7:ec:bc:ad:36:14:88:
fa:d1:19:1b:3a:6f:66:22:b8:b9:a2:58:15:7b:c0:
9f:b1:b6:cb:53:cc:b5:67:0a:c4:28:f6:a2:ed:53:
8d:81:a6:27:a6:d8:be:9c:ce:a2:25:28:17:08:54:
21:30:73:3f:ba:6f:02:7b:21:3f:6d:c2:45:33:06:
0e:43:3e:c1:5a:52:61:16:59:93:38:be:1c:31:5c:
0c:b9:1c:49:f3:d2:47:16:5b:ba:c1:37:4f:9c:9a:
d4:dc:1e:f1:14:84:7c:86:53:ac:bb:81:40:85:33:
95:79:75:ba:39:d7:64:b2:c5:33:93:27:bf:36:e9:
74:3b:8b:6b:bc:9e:32:db:d7:52:85:1e:98:df:c3:
87:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A4:39:11:FA:45:11:A3:40:D3:1A:BC:AA:7C:59:80:36:DA:71:45
X509v3 Authority Key Identifier:
keyid:0B:A0:68:48:3A:CB:C9:6A:31:E2:8B:CD:A5:4B:BE:AF:E3:48:2D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6BoSDrLyWox4ovNpUu-r-NILRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/66Q5EfpFEaNA0xq8qnxZgDbacUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c6570e-f22b-488b-a3fe-fdcb93b491e5/1/C6BoSDrLyWox4ovNpUu-r-NILRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:634::/48
Signature Algorithm: sha256WithRSAEncryption
90:68:f5:b3:25:ea:79:2d:26:b4:1a:7f:c8:fa:6a:27:9a:9c:
08:5d:e9:4c:54:5d:a7:79:29:18:f3:9c:1c:42:a7:39:73:5e:
73:84:61:b4:4e:c0:23:ab:fb:a1:e8:1a:a7:94:26:28:ca:a4:
84:8b:08:0a:4b:d4:ae:c6:bb:c3:c4:4f:fb:57:2a:98:38:84:
3a:e7:7b:94:ad:fb:76:a4:72:58:1a:82:4b:f5:55:e3:31:40:
22:c5:5c:3e:a1:df:e5:bc:53:43:02:49:5d:66:10:f6:03:35:
03:7c:06:cc:73:3a:4f:fe:54:22:88:8d:a7:d1:cf:81:5f:bf:
f0:21:6c:8f:83:45:17:38:2b:e6:41:0e:b5:ef:58:80:a1:1a:
10:f5:0c:47:cb:7d:10:dc:7c:2a:37:83:f8:53:a0:35:b7:10:
b0:b8:bf:73:ae:f5:8d:d5:b4:b2:33:ce:51:2b:88:2b:06:3e:
65:5f:4b:b6:bc:e8:0c:5d:61:e8:a4:1d:b3:fa:bb:75:0a:a5:
6f:2a:ef:81:93:48:4f:a0:59:63:c6:49:b1:b0:5e:74:29:f2:
31:e5:ac:24:75:05:a8:17:b9:97:88:96:34:24:83:f3:cd:42:
6a:bd:62:26:78:5a:fb:e7:8d:ff:29:66:de:c0:93:0b:36:7b:
86:32:43:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org