Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/UrMfEkxM2hJAqbe9iUjTBCCkX_Q.roa
File: UrMfEkxM2hJAqbe9iUjTBCCkX_Q.roa (raw, json)
Hash identifier: jkNKxrKf3Us/oveAKH90/MN9Eb7D/GNQLG10U+tskEU=
Subject key identifier: 52:B3:1F:12:4C:4C:DA:12:40:A9:B7:BD:89:48:D3:04:20:A4:5F:F4
Certificate issuer: /CN=cd6cba10ab465cf0ee3e76025c67f8554d2d01a5
Certificate serial: 0187AEE0CFBAB2FB7AF43DCB63B0BCA698AC
Authority key identifier: CD:6C:BA:10:AB:46:5C:F0:EE:3E:76:02:5C:67:F8:55:4D:2D:01:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWy6EKtGXPDuPnYCXGf4VU0tAaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/UrMfEkxM2hJAqbe9iUjTBCCkX_Q.roa
Signing time: Sun 23 Apr 2023 16:09:41 +0000
ROA not before: Sun 23 Apr 2023 16:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206271
IP address blocks: 2001:67c:be4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ae:e0:cf:ba:b2:fb:7a:f4:3d:cb:63:b0:bc:a6:98:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd6cba10ab465cf0ee3e76025c67f8554d2d01a5
Validity
Not Before: Apr 23 16:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52b31f124c4cda1240a9b7bd8948d30420a45ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:45:bd:f1:d3:8a:46:d7:a7:bd:5d:32:25:bb:
c5:44:03:fd:9e:19:38:12:12:f7:81:4a:95:90:71:
7c:a7:de:4f:56:56:c0:e1:b4:43:34:1e:de:da:d1:
48:e0:12:2f:b9:e6:23:15:25:76:a8:d4:13:7c:1a:
3f:92:74:d3:b1:82:56:8a:97:b8:26:7b:45:08:97:
17:30:8a:41:8c:4b:a9:bc:b3:61:52:ed:ec:b8:39:
89:ee:e0:6b:81:67:8f:76:b7:15:39:f8:b8:00:fb:
f1:b3:7e:16:3f:c3:75:36:a0:6a:d4:9a:5b:24:de:
8f:95:66:a7:83:11:05:66:01:44:11:e6:b5:79:fe:
ae:e3:3a:e1:45:e7:d2:28:e1:93:6b:12:1c:43:65:
01:4a:2c:4a:02:9f:62:ac:cc:df:18:98:be:6b:ab:
63:22:87:50:bd:33:7b:47:23:e0:d5:c4:0e:9b:a8:
ce:2d:09:10:ac:7e:bc:a7:f0:f0:97:c5:e5:38:db:
3d:3f:89:78:da:47:a7:00:de:60:7d:80:99:38:88:
25:1e:14:ff:37:73:3b:08:0d:a9:96:3a:7d:0c:1c:
09:02:9b:76:3b:42:1d:70:b5:c1:a4:9c:5a:75:31:
41:65:89:61:87:32:5b:2a:0c:26:67:72:40:1f:2e:
fc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B3:1F:12:4C:4C:DA:12:40:A9:B7:BD:89:48:D3:04:20:A4:5F:F4
X509v3 Authority Key Identifier:
keyid:CD:6C:BA:10:AB:46:5C:F0:EE:3E:76:02:5C:67:F8:55:4D:2D:01:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWy6EKtGXPDuPnYCXGf4VU0tAaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/UrMfEkxM2hJAqbe9iUjTBCCkX_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/zWy6EKtGXPDuPnYCXGf4VU0tAaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:be4::/48
Signature Algorithm: sha256WithRSAEncryption
95:07:85:43:70:81:c6:f8:15:5a:40:5b:13:06:4d:e4:3b:16:
ca:f6:31:7e:ef:a7:de:74:b2:af:b1:63:68:48:6b:5d:12:74:
9c:b5:76:16:f0:5c:08:6c:7d:c2:f2:39:e5:04:f2:c5:f5:f0:
a0:ce:5a:35:43:c1:0f:26:4f:09:fe:43:a8:6d:60:df:e0:2f:
ac:97:fa:a1:5f:96:27:6f:ee:6f:23:8d:19:93:75:b5:5c:5c:
fa:50:60:2b:e5:11:b7:74:49:2b:cc:eb:75:6f:8f:46:b5:c0:
58:bc:ca:15:72:88:6d:3f:a1:55:bc:d8:d3:7f:2c:69:5a:b4:
96:dd:dd:b6:6a:ff:7c:47:dd:33:60:40:5a:08:51:46:14:61:
69:6b:7e:af:b8:cb:08:8f:12:7a:f3:ec:d1:ce:a8:44:04:80:
3a:97:a6:45:f8:e4:67:55:0d:80:10:0a:29:c9:5c:87:7e:bf:
55:2f:d0:89:1c:26:04:85:de:12:74:ce:be:2b:c9:42:2a:74:
05:0e:1f:5b:f4:4a:3f:88:64:45:ee:bb:cc:d7:83:62:fa:30:
ee:1a:f5:ba:bb:ea:fd:1b:71:dd:d9:31:e5:30:50:b9:ad:e8:
de:93:24:c7:96:1b:eb:84:62:3b:dd:4e:b7:5c:e4:80:6f:11:
4a:f2:01:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:30 2024 by rpki-client on console-ams.rpki-client.org