Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/8Xd4OEqkrLy0VaF8vqynbRA7RM8.roa
File: 8Xd4OEqkrLy0VaF8vqynbRA7RM8.roa (raw, json)
Hash identifier: 0EIYUjTexSG7K8hhITRV1bmn+gxknts2wqXrGXIuLSI=
Subject key identifier: F1:77:78:38:4A:A4:AC:BC:B4:55:A1:7C:BE:AC:A7:6D:10:3B:44:CF
Certificate issuer: /CN=9665c8110d0dd86a7ebb0938aa32e09d1db122f6
Certificate serial: 01856BD3745DC2A25650F1995C022325F0D8
Authority key identifier: 96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/8Xd4OEqkrLy0VaF8vqynbRA7RM8.roa
Signing time: Sun 01 Jan 2023 05:34:58 +0000
ROA not before: Sun 01 Jan 2023 05:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210466
IP address blocks: 2001:67c:2b64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:74:5d:c2:a2:56:50:f1:99:5c:02:23:25:f0:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9665c8110d0dd86a7ebb0938aa32e09d1db122f6
Validity
Not Before: Jan 1 05:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f17778384aa4acbcb455a17cbeaca76d103b44cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:66:e5:46:a3:64:ce:10:dc:60:77:c3:49:97:
3e:a4:32:73:64:67:1c:fc:c5:47:c4:83:e2:7b:e3:
61:84:d8:70:40:59:65:04:33:a0:f2:0a:80:fe:ac:
c9:c4:53:92:b8:91:07:35:ce:33:90:d9:ca:3e:82:
43:57:03:be:6a:30:43:84:86:67:6d:2c:09:dc:f1:
d1:e7:ff:32:e0:6a:cf:eb:90:06:0b:5a:38:db:d2:
05:ac:07:75:21:34:cd:af:7a:a2:ce:a9:fa:fa:b5:
63:0b:a5:11:f7:29:ae:b3:58:38:3f:f8:b6:5f:28:
64:4c:1d:56:89:83:9e:2b:b5:ae:f8:ce:af:f7:47:
2b:61:47:69:f8:46:e5:24:4b:18:c4:9e:ae:18:4b:
cb:a2:98:a5:82:ae:88:e4:c4:aa:3e:38:b4:9a:c0:
35:00:b6:b4:39:70:aa:07:9e:9e:0e:a8:f8:9a:4f:
b9:61:e8:d1:43:36:91:1d:3c:f5:8d:22:b6:64:7d:
3a:fa:37:af:14:43:69:06:69:98:41:bd:78:5b:04:
7b:54:f4:f9:00:dc:46:08:1c:ed:67:07:d0:b0:3d:
2e:b9:87:de:00:7f:48:da:61:8e:7e:3d:0f:8f:d3:
03:c8:98:30:28:f5:a9:81:fe:94:72:b5:1c:cb:2d:
7e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:77:78:38:4A:A4:AC:BC:B4:55:A1:7C:BE:AC:A7:6D:10:3B:44:CF
X509v3 Authority Key Identifier:
keyid:96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/8Xd4OEqkrLy0VaF8vqynbRA7RM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2b64::/48
Signature Algorithm: sha256WithRSAEncryption
3e:99:b2:15:86:23:ee:ba:ea:48:1a:6f:32:e1:94:40:a3:14:
8b:b9:67:65:03:23:ef:63:53:7b:da:1d:19:c3:6d:c1:35:98:
e0:7c:1d:35:b2:d6:4f:6c:9d:30:07:62:ca:b1:6e:e3:61:72:
02:88:12:52:b7:49:53:e6:60:7d:90:5e:d3:3f:9a:ba:4b:fa:
88:79:1c:fd:27:38:5a:21:31:31:43:d7:ff:03:61:62:f2:e0:
94:ed:10:4d:db:eb:0c:6d:2e:83:07:5a:57:86:03:f1:f0:ad:
8d:17:10:26:15:c2:f2:6b:72:ee:98:59:f4:69:cb:1b:64:33:
43:88:cd:56:6b:e8:52:7f:bb:66:6d:e3:47:77:1e:0a:77:1e:
2e:f9:e7:75:3d:0f:28:d2:91:04:06:06:ec:bb:0b:49:aa:ca:
46:a6:2d:7f:46:ad:3d:d1:00:5b:83:c4:72:6b:32:0b:75:f4:
f0:6f:44:7f:04:cb:83:34:ef:af:b4:43:32:19:8b:35:a3:85:
8f:59:37:a8:40:a2:67:12:f2:3c:bc:6e:67:56:d2:7a:bd:6f:
d3:d3:76:63:a1:71:1a:70:46:ce:a3:00:ba:88:e8:82:ae:e1:
cf:4b:4d:88:47:2f:06:8c:d6:f4:bc:de:74:b3:58:7f:d3:91:
bf:49:f1:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:45 2024 by rpki-client on console-ams.rpki-client.org