Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/CiT_NsHvpjcE74DaOTg2gZAF0Xw.roa
File: CiT_NsHvpjcE74DaOTg2gZAF0Xw.roa (raw, json)
Hash identifier: rEyiEIcsg3W2poOeBV31R08aNmPqi56iCCuzbzG+o5U=
Subject key identifier: 0A:24:FF:36:C1:EF:A6:37:04:EF:80:DA:39:38:36:81:90:05:D1:7C
Certificate issuer: /CN=f648b15582d34bd5170a9dd13b81325babae5e3a
Certificate serial: 0185730CAC2FBAE3BDE5D84799B9E77D4A7C
Authority key identifier: F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/CiT_NsHvpjcE74DaOTg2gZAF0Xw.roa
Signing time: Mon 02 Jan 2023 15:14:48 +0000
ROA not before: Mon 02 Jan 2023 15:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209347
IP address blocks: 2001:678:978::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:ac:2f:ba:e3:bd:e5:d8:47:99:b9:e7:7d:4a:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f648b15582d34bd5170a9dd13b81325babae5e3a
Validity
Not Before: Jan 2 15:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a24ff36c1efa63704ef80da393836819005d17c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:78:5d:d0:29:17:07:ce:23:29:d3:a7:d2:34:
b9:26:88:dc:8e:a2:47:a4:d2:d6:32:52:8a:ec:4c:
c4:53:9e:59:81:48:7e:57:17:5d:39:c4:fa:73:d7:
7a:e1:45:80:6b:9d:cb:55:51:fa:a0:13:47:35:82:
32:53:af:fe:b3:eb:c1:64:31:e7:e7:4a:87:d1:89:
0f:6d:ec:f5:53:d7:16:17:b3:e1:8d:15:c6:60:9b:
2c:9e:17:0b:8f:1a:e7:95:04:b5:77:ed:a8:da:8f:
76:23:1f:db:f2:18:5e:cb:2f:97:fe:d0:e3:0d:5c:
c6:21:37:c3:6d:ff:e4:4e:5f:2d:d2:d5:f4:2f:15:
bf:11:c6:36:9c:b6:95:74:70:cc:90:20:85:07:2b:
b1:67:aa:fd:c8:95:60:90:aa:c0:bc:85:b3:b9:fe:
c0:c4:71:51:02:bb:b8:20:c7:63:8a:98:10:ec:45:
28:e2:e9:fb:fe:1e:4a:df:06:a5:c3:bf:1f:cf:32:
33:77:19:2f:fa:ff:9f:cd:b1:d6:ca:10:30:30:31:
bc:3c:2a:cc:65:38:6d:50:7b:9e:ea:91:54:7e:b1:
ba:3a:9c:ce:c2:32:a1:2d:81:25:a5:31:19:0b:26:
10:06:84:40:c7:1e:7c:28:86:19:6c:eb:95:d2:cb:
02:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:24:FF:36:C1:EF:A6:37:04:EF:80:DA:39:38:36:81:90:05:D1:7C
X509v3 Authority Key Identifier:
keyid:F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/CiT_NsHvpjcE74DaOTg2gZAF0Xw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:978::/48
Signature Algorithm: sha256WithRSAEncryption
70:b2:7d:1c:20:6c:1b:d3:59:91:8c:53:6b:99:4b:3c:10:c7:
ea:50:8e:24:de:a4:7b:15:4b:2e:22:b6:03:fc:65:55:75:d9:
11:cf:df:75:58:38:aa:03:5c:74:7b:d2:aa:0b:ee:3e:ec:58:
cb:2a:ee:fb:3d:8e:9b:a0:c3:39:0c:68:23:90:37:78:55:30:
3c:f5:4e:99:09:77:24:b1:96:c1:89:66:55:e2:e4:ee:ce:d7:
80:df:67:46:12:d3:36:7a:c0:03:db:a3:ea:f8:cc:8c:df:9d:
ac:d4:03:c6:cb:80:64:17:02:db:e8:b4:ca:c9:50:3d:76:9d:
cb:1f:cd:89:98:be:9a:bd:09:20:8c:59:f1:f1:f0:74:63:ce:
35:61:44:10:97:25:a0:21:1f:d5:6d:21:44:0a:08:69:6d:bb:
4a:43:6c:a8:26:d0:7a:cc:5d:15:90:ee:77:17:08:68:8b:93:
35:66:bd:b1:ae:87:68:a0:20:6d:a9:d4:c6:0b:80:ca:e8:4e:
00:f0:e2:0e:f2:fc:fe:09:e7:d4:c3:7d:f9:f8:b6:f1:e0:9e:
18:7b:4f:0e:55:45:9f:87:ed:eb:d1:09:af:81:13:13:05:40:
0a:6f:4c:a3:cf:6d:9a:26:75:96:48:e4:87:90:92:67:46:c7:
ac:bf:70:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:42 2024 by rpki-client on console-ams.rpki-client.org