Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d6c15a-3dff-44d7-a538-a951f200f652/1/41Y9qmpLKETtDhsgLqYqpQJrY2M.roa
File: 41Y9qmpLKETtDhsgLqYqpQJrY2M.roa (raw, json)
Hash identifier: TZo74xFv0lLEQn1rLtBdFEbUP8GQDRB3h/Sl1RYap+4=
Subject key identifier: E3:56:3D:AA:6A:4B:28:44:ED:0E:1B:20:2E:A6:2A:A5:02:6B:63:63
Certificate issuer: /CN=1a29b2a45de0136feabbfae4baa70172aa86619b
Certificate serial: 01857169D95109C21D0D7512CF5A75F52AF6
Authority key identifier: 1A:29:B2:A4:5D:E0:13:6F:EA:BB:FA:E4:BA:A7:01:72:AA:86:61:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GimypF3gE2_qu_rkuqcBcqqGYZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d6c15a-3dff-44d7-a538-a951f200f652/1/41Y9qmpLKETtDhsgLqYqpQJrY2M.roa
Signing time: Mon 02 Jan 2023 07:37:20 +0000
ROA not before: Mon 02 Jan 2023 07:37:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49810
IP address blocks: 2001:67c:91c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 Mar 2023 05:43:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:d9:51:09:c2:1d:0d:75:12:cf:5a:75:f5:2a:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a29b2a45de0136feabbfae4baa70172aa86619b
Validity
Not Before: Jan 2 07:37:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3563daa6a4b2844ed0e1b202ea62aa5026b6363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:a7:46:b1:95:81:a6:2f:d4:53:10:3a:e1:63:
21:ec:ea:a5:92:51:fe:51:5a:99:be:f3:68:55:b5:
8e:ea:80:ad:77:bd:2b:31:e8:2a:15:ad:00:79:82:
bb:e5:21:91:af:9c:47:84:33:a2:7a:9e:c6:4d:8f:
de:50:4f:ac:68:e8:99:7d:74:be:22:e3:81:44:3a:
5e:e6:53:37:19:07:47:04:98:02:6d:39:7b:9e:be:
32:84:c5:45:3b:3d:30:41:bf:e3:0c:b1:36:ab:06:
f8:7e:62:62:dc:e6:b7:8d:18:25:b8:44:d1:2e:3d:
63:52:f4:48:9a:32:e3:10:c0:f4:a8:23:88:22:d6:
6d:ad:d7:16:a2:2c:4b:43:81:04:37:9b:61:7d:d4:
a7:09:7e:78:79:45:ba:a7:96:d6:50:51:a0:c9:04:
2f:3c:1d:52:50:4f:d9:47:3c:e3:50:5a:ca:3f:07:
a6:c3:53:d6:f1:fe:c5:e8:29:8b:f9:a8:d1:e5:d0:
b8:33:0a:f0:10:c3:06:ed:62:db:73:c8:f7:06:6c:
7a:69:d8:9e:4f:21:eb:48:ab:4f:62:9b:77:2a:f4:
05:c9:04:1e:80:24:9d:3b:67:ca:9a:ec:dc:fc:1e:
2e:12:13:d2:8c:9e:71:df:d2:0f:b2:18:80:38:b8:
8c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:56:3D:AA:6A:4B:28:44:ED:0E:1B:20:2E:A6:2A:A5:02:6B:63:63
X509v3 Authority Key Identifier:
keyid:1A:29:B2:A4:5D:E0:13:6F:EA:BB:FA:E4:BA:A7:01:72:AA:86:61:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GimypF3gE2_qu_rkuqcBcqqGYZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d6c15a-3dff-44d7-a538-a951f200f652/1/41Y9qmpLKETtDhsgLqYqpQJrY2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d6c15a-3dff-44d7-a538-a951f200f652/1/GimypF3gE2_qu_rkuqcBcqqGYZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:91c::/48
Signature Algorithm: sha256WithRSAEncryption
88:25:94:61:c3:25:1e:0b:46:5b:93:d1:ed:cf:f5:46:7f:eb:
60:9a:2c:e5:cc:ee:dc:07:25:68:56:1d:13:78:cd:50:b4:3f:
d9:58:95:cc:d2:91:29:f6:a9:41:3e:2e:47:fc:b0:56:fe:f3:
8a:95:c7:9e:7e:30:5a:4d:a1:2a:f6:7b:7a:72:01:cb:a9:9b:
26:aa:a5:a7:1e:50:1b:5f:9c:cc:8b:06:51:47:75:42:26:05:
1c:16:15:24:ad:bd:c6:07:f4:2b:9b:b7:d1:6f:4c:26:e1:57:
2e:f4:d5:3c:8a:43:8f:43:1a:f2:f9:4e:a5:71:88:f2:8f:ae:
96:90:fd:6e:be:09:cf:06:fa:a3:2c:ff:d6:54:d3:b2:7e:6f:
7b:d2:9b:b4:5a:9a:1f:98:1e:c3:cb:23:d4:6b:0a:e8:e8:5a:
07:0d:fd:9f:3e:16:8b:3d:eb:bc:97:1e:08:f7:bf:1f:98:2f:
35:2a:91:01:81:13:d1:34:1c:12:4d:42:93:b6:45:56:45:c3:
2d:44:d8:30:03:c3:5a:f1:5f:06:01:7a:a5:ad:7a:17:30:73:
3a:54:e9:d2:b6:c4:64:c8:f9:19:1c:fc:b6:1d:b8:a3:5b:35:
fa:fd:3d:d2:da:00:87:e2:40:64:1d:7d:99:97:ba:ba:85:9c:
a9:d9:66:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:43 2024 by rpki-client on console-fra.rpki-client.org