Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/motdGWKMzugaThF2RRjKuTYKKHo.roa
File: motdGWKMzugaThF2RRjKuTYKKHo.roa (raw, json)
Hash identifier: DtCQvIA4ZK2p62TQM4MMKeSHIenoB9W/hajvZuo1lM0=
Subject key identifier: 9A:8B:5D:19:62:8C:CE:E8:1A:4E:11:76:45:18:CA:B9:36:0A:28:7A
Certificate issuer: /CN=2cba355669b4f9b9035f05b1fba211ef8696101d
Certificate serial: 01856E8B3F2580CCCA959203C2706EA5EC4D
Authority key identifier: 2C:BA:35:56:69:B4:F9:B9:03:5F:05:B1:FB:A2:11:EF:86:96:10:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LLo1Vmm0-bkDXwWx-6IR74aWEB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/motdGWKMzugaThF2RRjKuTYKKHo.roa
Signing time: Sun 01 Jan 2023 18:14:57 +0000
ROA not before: Sun 01 Jan 2023 18:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202886
IP address blocks: 2001:678:158::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:3f:25:80:cc:ca:95:92:03:c2:70:6e:a5:ec:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cba355669b4f9b9035f05b1fba211ef8696101d
Validity
Not Before: Jan 1 18:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a8b5d19628ccee81a4e11764518cab9360a287a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4b:f2:cd:ce:ad:31:09:76:84:8c:1e:83:f3:
f5:0a:17:26:0d:5e:1b:9c:8f:41:13:67:04:c6:33:
8f:6b:90:b3:12:04:04:41:23:63:ac:d9:ab:d3:bd:
1d:6e:79:ac:fd:35:f8:a5:79:4b:89:fc:b9:47:e7:
b8:9a:66:fd:b5:f2:61:4b:49:c2:be:6b:af:90:9d:
32:88:98:96:37:6a:4a:9a:bb:9c:67:3b:46:e4:77:
cd:61:98:79:4d:14:c8:de:fa:65:94:0b:bd:3e:47:
7c:59:07:60:5e:30:a4:aa:d7:43:e9:5a:0e:07:6d:
da:80:a7:10:f0:75:21:d3:c4:ad:30:a5:1a:40:14:
0a:98:80:d3:83:3f:0e:d3:ad:7e:d1:ce:de:21:9e:
15:64:32:3c:0a:45:b1:89:5c:a3:20:c9:98:91:71:
5b:fd:68:ac:9e:84:81:22:a1:0e:f1:d2:30:dc:c9:
dc:d6:5d:94:38:bc:d4:4f:29:95:ff:30:e3:29:5d:
ba:d1:5a:ca:50:8f:ea:cf:2e:57:b7:8b:36:66:26:
e1:0f:25:0c:ba:f3:de:be:8d:a9:b3:52:dd:ed:fe:
5d:79:78:f6:05:44:8d:74:e0:87:89:fd:64:73:e4:
17:e8:f5:f7:de:54:7a:f5:16:79:2b:55:aa:71:7a:
86:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:8B:5D:19:62:8C:CE:E8:1A:4E:11:76:45:18:CA:B9:36:0A:28:7A
X509v3 Authority Key Identifier:
keyid:2C:BA:35:56:69:B4:F9:B9:03:5F:05:B1:FB:A2:11:EF:86:96:10:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LLo1Vmm0-bkDXwWx-6IR74aWEB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/motdGWKMzugaThF2RRjKuTYKKHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/LLo1Vmm0-bkDXwWx-6IR74aWEB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:158::/48
Signature Algorithm: sha256WithRSAEncryption
96:5a:43:08:c9:3b:8c:fa:ad:63:c5:de:82:9d:ce:53:91:53:
fb:27:bb:ad:8f:32:54:2a:b8:ba:1c:eb:fb:3d:89:f4:5c:91:
d0:00:bf:6f:8d:8d:d3:a7:87:1b:7c:e9:10:58:15:e9:07:b1:
76:bb:f4:0c:58:1c:db:64:cc:8d:06:a8:2b:f7:48:3e:05:0c:
a8:2e:68:81:2e:23:44:57:0f:d3:05:f9:a7:80:14:9a:3b:29:
a7:9f:62:c1:83:0f:eb:08:6e:0a:56:83:97:21:da:8e:b2:b7:
28:01:71:6a:ec:f7:21:43:ac:18:0c:f2:51:9a:08:d6:57:44:
e3:46:46:22:ac:45:08:4c:42:7c:4a:52:2e:e6:8e:6a:0c:c6:
d6:27:18:83:f3:3c:5a:03:1a:4b:a4:4a:3d:67:9c:35:b1:0e:
e3:3d:19:ef:43:c5:1a:50:a1:0e:00:6d:a8:de:64:59:75:10:
a5:b2:b4:56:c2:eb:d5:ce:7f:36:19:b7:2c:68:f4:1f:7d:00:
18:a7:75:3d:8d:cd:87:34:9a:3a:41:c8:7a:e0:00:ca:c1:58:
8a:ee:35:1c:ab:c3:53:78:f2:4b:ec:cb:47:eb:30:39:9a:a8:
01:59:ae:72:2d:0c:58:41:9b:bb:28:3b:81:f9:7a:0c:d6:e4:
24:a4:d7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:27 2024 by rpki-client on console-ams.rpki-client.org