Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/US5n9QZslPaYKE4fONmLuAD-ZbU.roa
File: US5n9QZslPaYKE4fONmLuAD-ZbU.roa (raw, json)
Hash identifier: zl+4OvTl8gwgadZGAeNAZdY7+/dLPKDTk1zi5Cf4Bzw=
Subject key identifier: 51:2E:67:F5:06:6C:94:F6:98:28:4E:1F:38:D9:8B:B8:00:FE:65:B5
Certificate issuer: /CN=7ec666772d79bd7bb21199a2abdafe2202511c70
Certificate serial: 018571555C3701D875DF952E34A8C8C7A87F
Authority key identifier: 7E:C6:66:77:2D:79:BD:7B:B2:11:99:A2:AB:DA:FE:22:02:51:1C:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsZmdy15vXuyEZmiq9r-IgJRHHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/US5n9QZslPaYKE4fONmLuAD-ZbU.roa
Signing time: Mon 02 Jan 2023 07:14:57 +0000
ROA not before: Mon 02 Jan 2023 07:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206072
IP address blocks: 2001:67c:9bc::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:5c:37:01:d8:75:df:95:2e:34:a8:c8:c7:a8:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec666772d79bd7bb21199a2abdafe2202511c70
Validity
Not Before: Jan 2 07:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=512e67f5066c94f698284e1f38d98bb800fe65b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:63:3a:81:b8:27:65:02:d8:6b:9c:aa:d4:c8:
e1:05:5c:42:cb:c7:a2:63:c5:af:1d:55:9d:00:f3:
83:77:2f:ae:bd:ad:98:9b:40:5a:ab:67:f9:b3:a6:
58:da:92:95:0d:3a:0c:09:38:1f:ab:19:8a:79:41:
66:21:b9:3c:07:e2:46:bb:be:a1:b9:5b:7f:89:ca:
2e:29:aa:75:fd:0b:47:55:f8:fb:e5:e0:e8:b8:9c:
85:70:e1:6d:f0:8f:1a:ea:38:c7:2c:62:a7:78:82:
62:73:73:61:74:6d:2a:6d:f6:f1:fc:68:a7:b6:ab:
72:5c:a0:85:30:8b:a0:69:70:88:f5:23:db:77:eb:
96:97:55:28:79:e6:1e:bb:f8:29:07:4e:e2:45:9a:
38:14:0b:8a:e4:6f:31:90:0a:76:47:6a:73:cf:fc:
20:76:8e:c2:7a:f0:c0:83:ff:e0:61:c2:48:e9:e5:
83:5b:0d:33:77:20:dd:30:a2:dc:9d:32:3e:ac:c5:
9e:63:8c:77:3d:36:2d:9f:9a:75:01:37:2c:86:bd:
a7:d4:eb:cc:a8:f1:b6:92:5f:1f:b9:8c:a8:37:7e:
d5:d2:48:90:14:f6:78:84:2d:27:3b:79:bd:02:2c:
c7:72:96:9b:43:d2:ab:05:a9:d0:14:ea:02:98:30:
a5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:2E:67:F5:06:6C:94:F6:98:28:4E:1F:38:D9:8B:B8:00:FE:65:B5
X509v3 Authority Key Identifier:
keyid:7E:C6:66:77:2D:79:BD:7B:B2:11:99:A2:AB:DA:FE:22:02:51:1C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsZmdy15vXuyEZmiq9r-IgJRHHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/US5n9QZslPaYKE4fONmLuAD-ZbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/fsZmdy15vXuyEZmiq9r-IgJRHHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:9bc::/48
Signature Algorithm: sha256WithRSAEncryption
2a:11:e5:a9:15:e2:3f:99:3b:7d:50:da:ce:e2:09:fd:30:b4:
db:d1:b9:83:65:b8:3e:4e:4f:ce:7f:79:a8:51:98:0f:ac:d4:
f5:c6:11:8e:19:72:87:c7:55:d9:59:94:5f:d5:30:cd:b3:7a:
30:87:b7:cc:19:ad:47:ae:70:f7:f6:9c:5a:ce:03:3b:7f:08:
14:79:19:bd:44:5f:ee:47:30:c7:e1:cb:8d:2d:f2:6b:52:88:
ab:bd:47:bc:b7:c6:03:33:2c:7c:b9:cf:54:52:66:62:64:d3:
18:86:47:f1:bd:43:ec:61:6b:2a:c8:d6:8c:04:e5:94:58:0e:
6e:bd:18:d5:e0:b3:05:f6:5a:12:cb:59:58:37:1a:1a:5e:ac:
9e:b8:f7:11:11:ba:fa:da:16:53:e1:f5:d6:1a:15:d8:6e:db:
4d:53:69:ab:10:a6:02:02:44:4c:ad:47:f1:c2:a6:05:eb:b6:
44:60:4d:33:95:39:8d:9b:c1:61:4d:9d:d3:12:ba:cf:ac:df:
70:9c:e3:5a:48:4f:01:93:c6:93:86:72:65:60:af:7c:0e:70:
77:0f:da:f9:f4:ac:98:05:bc:8d:a5:6c:26:94:f9:23:04:5f:
23:35:e9:33:63:14:65:43:b8:dc:96:43:be:c9:0e:f0:03:75:
c1:14:0f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:58 2024 by rpki-client on console-ams.rpki-client.org