Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/8ab26c-ba17-4288-8749-8fc930d8702a/1/M17I0CpLNjW5tWVrvGeuEMs2vt0.roa
File: M17I0CpLNjW5tWVrvGeuEMs2vt0.roa (raw, json)
Hash identifier: 27gF8DxiK5zTnb49mHXlC5746os9bXskY9woG/7KCms=
Subject key identifier: 33:5E:C8:D0:2A:4B:36:35:B9:B5:65:6B:BC:67:AE:10:CB:36:BE:DD
Certificate issuer: /CN=c29c1007746981fcc408839965b1671c037d121b
Certificate serial: 01856D93E73AF494764D61EECB487BD430C9
Authority key identifier: C2:9C:10:07:74:69:81:FC:C4:08:83:99:65:B1:67:1C:03:7D:12:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wpwQB3RpgfzECIOZZbFnHAN9Ehs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/8ab26c-ba17-4288-8749-8fc930d8702a/1/M17I0CpLNjW5tWVrvGeuEMs2vt0.roa
Signing time: Sun 01 Jan 2023 13:44:47 +0000
ROA not before: Sun 01 Jan 2023 13:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199902
IP address blocks: 2001:67c:268c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:e7:3a:f4:94:76:4d:61:ee:cb:48:7b:d4:30:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c29c1007746981fcc408839965b1671c037d121b
Validity
Not Before: Jan 1 13:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=335ec8d02a4b3635b9b5656bbc67ae10cb36bedd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b8:22:81:31:df:2f:41:f5:6d:7a:ee:a7:6c:
f2:4b:87:dd:f5:e3:78:1a:5e:d5:fd:75:f8:9e:cf:
18:88:ae:08:13:bf:42:9a:75:aa:3f:81:a0:7e:c7:
90:1e:49:ce:8f:9c:bc:e8:35:8f:ca:b1:09:b4:8d:
5e:d4:09:ef:58:a5:10:5e:9f:b9:b9:da:22:f5:f5:
03:63:13:69:f2:92:78:d0:84:db:0e:d2:d5:32:b6:
67:97:41:ac:c5:38:93:21:54:c1:3b:7f:2f:17:13:
51:5d:66:1b:7c:25:26:74:3e:8b:e0:f8:24:ef:6c:
f5:91:dd:9b:2f:06:cb:62:fe:28:6c:69:12:21:8b:
03:6d:a2:7c:a4:76:4a:1d:76:1c:b6:82:e1:45:5d:
4c:18:83:86:f5:cb:dc:af:1f:02:4f:df:00:29:12:
4e:e3:2b:e7:9c:62:45:94:c2:77:ce:4b:f9:a8:6e:
7e:e4:2f:06:a5:82:89:ef:16:12:e1:86:b4:3d:9f:
11:b9:04:60:76:fe:e1:43:f5:08:a3:42:7d:49:3c:
8b:d3:1c:2c:42:a9:9a:5f:2e:07:e9:9e:ba:57:f1:
3c:f0:15:f6:17:5e:c7:96:3f:23:91:c8:fa:98:99:
be:55:1e:bc:c0:5b:47:01:c9:89:f4:3b:d9:20:84:
a2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5E:C8:D0:2A:4B:36:35:B9:B5:65:6B:BC:67:AE:10:CB:36:BE:DD
X509v3 Authority Key Identifier:
keyid:C2:9C:10:07:74:69:81:FC:C4:08:83:99:65:B1:67:1C:03:7D:12:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wpwQB3RpgfzECIOZZbFnHAN9Ehs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/8ab26c-ba17-4288-8749-8fc930d8702a/1/M17I0CpLNjW5tWVrvGeuEMs2vt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/8ab26c-ba17-4288-8749-8fc930d8702a/1/wpwQB3RpgfzECIOZZbFnHAN9Ehs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:268c::/48
Signature Algorithm: sha256WithRSAEncryption
a2:17:a4:8a:6a:dd:88:c7:cd:3d:0a:19:ad:9d:95:ec:1d:ee:
8d:2f:71:cb:17:7e:c0:14:90:3b:80:4a:3f:f6:20:9a:b4:84:
90:e6:f3:4e:d5:4a:af:b2:2d:75:90:a9:d1:ad:e4:7f:53:06:
5e:bd:fe:96:18:62:fa:df:81:c1:9b:ab:8e:1c:ce:5c:d1:5f:
8d:b6:00:eb:44:e2:3e:e9:ba:26:86:62:74:49:ab:53:b3:fe:
c6:78:3a:7e:e6:9a:15:33:db:7e:2c:fe:17:e5:04:e2:de:d9:
cf:c5:c0:df:f4:f4:37:68:74:f2:9f:8d:3d:4b:5c:26:e8:b6:
1a:66:00:f2:d3:fc:19:d1:b1:01:fe:f8:18:99:91:7d:44:33:
b8:59:84:4f:be:e4:31:c2:45:5a:96:0e:ab:ad:36:23:e0:0e:
e7:0d:68:5b:a4:3b:4b:a8:ac:91:c9:7b:ff:03:e4:df:b5:f9:
5e:06:42:49:99:72:ee:ff:82:22:c1:64:93:7b:8d:93:41:91:
ca:2c:d4:79:80:a0:eb:76:15:30:ef:39:13:4b:35:86:7d:da:
20:69:60:5e:27:bd:47:4f:28:ea:25:28:50:88:d7:03:1c:4c:
0a:e4:47:16:b5:db:a5:26:72:5c:84:a1:a4:31:79:ca:1b:06:
41:90:81:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:03 2024 by rpki-client on console-fra.rpki-client.org