Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/7290d5-1ed5-4ca1-96fd-bfc73dd0bbb6/1/py58cYnhI8WPX-ZKlFf8YRlXC70.roa
File: py58cYnhI8WPX-ZKlFf8YRlXC70.roa (raw, json)
Hash identifier: Ghlp1HPdLulZIxtGvC23sCod1mqJdlvIbvcUCqgAVSo=
Subject key identifier: A7:2E:7C:71:89:E1:23:C5:8F:5F:E6:4A:94:57:FC:61:19:57:0B:BD
Certificate issuer: /CN=9b86bd882e476e4698318f370712f71c2bf50dfc
Certificate serial: 0186742AF4784332458BC3667D09B672D4B1
Authority key identifier: 9B:86:BD:88:2E:47:6E:46:98:31:8F:37:07:12:F7:1C:2B:F5:0D:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m4a9iC5HbkaYMY83BxL3HCv1Dfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/7290d5-1ed5-4ca1-96fd-bfc73dd0bbb6/1/py58cYnhI8WPX-ZKlFf8YRlXC70.roa
Signing time: Tue 21 Feb 2023 13:30:17 +0000
ROA not before: Tue 21 Feb 2023 13:30:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207021
IP address blocks: 2001:67c:10e0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:2a:f4:78:43:32:45:8b:c3:66:7d:09:b6:72:d4:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b86bd882e476e4698318f370712f71c2bf50dfc
Validity
Not Before: Feb 21 13:30:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a72e7c7189e123c58f5fe64a9457fc6119570bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:eb:81:8c:8e:76:68:5b:5e:2c:69:52:20:18:
cd:dd:8b:c9:a8:5b:c1:e5:d1:2c:1c:5f:36:0e:b1:
18:d2:ce:4a:02:b4:8d:25:94:f1:e1:e9:0f:f4:87:
3f:24:e3:27:fe:b6:4f:b3:d2:e7:d9:cf:52:a1:5b:
af:b7:80:52:fa:0e:83:fb:bb:7f:11:55:cf:93:83:
fd:58:95:df:50:e4:94:e1:f9:87:8c:30:d7:99:31:
89:d0:54:c7:73:e8:10:e2:e7:45:70:c9:75:5e:0a:
57:53:9a:e7:4c:1e:34:43:4e:bb:21:36:69:9c:1f:
7d:f1:88:a2:96:7b:d6:0f:b1:12:d1:4e:af:87:25:
f9:80:76:d0:ec:92:85:31:62:a3:52:87:15:20:18:
df:95:2c:a8:3d:be:1a:34:08:8f:7a:c9:a5:78:31:
10:58:c6:cf:ed:7a:62:92:7f:c6:50:2f:70:ed:68:
05:e1:57:5a:eb:63:51:68:40:e5:ff:69:0d:24:be:
6b:07:ab:d8:56:a8:83:ae:b1:95:5a:4e:9e:b7:72:
ea:72:f5:22:97:23:36:32:06:6c:94:bc:36:7c:4b:
55:71:95:93:ff:08:52:16:d4:6b:39:7f:4d:19:6c:
a6:ac:a3:20:ee:51:56:bb:67:e3:4e:2a:e2:db:94:
e4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2E:7C:71:89:E1:23:C5:8F:5F:E6:4A:94:57:FC:61:19:57:0B:BD
X509v3 Authority Key Identifier:
keyid:9B:86:BD:88:2E:47:6E:46:98:31:8F:37:07:12:F7:1C:2B:F5:0D:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m4a9iC5HbkaYMY83BxL3HCv1Dfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7290d5-1ed5-4ca1-96fd-bfc73dd0bbb6/1/py58cYnhI8WPX-ZKlFf8YRlXC70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7290d5-1ed5-4ca1-96fd-bfc73dd0bbb6/1/m4a9iC5HbkaYMY83BxL3HCv1Dfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:10e0::/48
Signature Algorithm: sha256WithRSAEncryption
96:81:de:20:ec:e0:9a:8d:c4:68:5d:5e:9e:0f:87:9a:79:16:
26:54:69:3c:75:39:86:1e:ec:7c:35:4b:0a:74:e2:15:79:1f:
c6:23:af:9a:47:25:28:3d:70:ea:e8:51:24:03:cb:bd:73:cb:
f9:1d:b7:fc:6e:18:37:82:ee:0c:e9:93:c3:60:46:5f:53:98:
0a:40:17:92:29:57:e1:67:1a:f6:1e:c5:a4:5a:e3:eb:13:17:
34:c3:0a:05:e9:6c:1f:6a:3d:53:7d:f8:9c:46:2f:9b:66:5c:
d0:48:c8:23:7d:88:24:43:1a:7c:61:49:49:88:46:80:b2:07:
c5:96:64:28:28:d9:bb:a5:72:1c:23:5e:ef:9e:e0:19:7d:38:
64:94:ec:fc:83:9f:f3:ae:e5:91:70:bf:c8:3c:39:3a:bd:a8:
b8:13:56:07:2d:8a:ce:29:88:0d:cf:8e:e8:32:10:3e:65:b6:
05:7d:3c:ea:a9:04:25:1b:4c:b7:35:96:8c:97:5f:8b:14:23:
7f:fd:93:35:00:a2:20:d8:84:5b:57:10:3d:b9:56:ab:8d:cb:
e7:21:2d:0c:02:5e:53:b0:ad:5f:0b:6f:d2:02:f8:89:ba:fd:
56:c9:3f:dc:38:32:f1:01:a9:a1:b7:e1:20:df:83:25:6f:dc:
87:05:d2:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:45 2024 by rpki-client on console-ams.rpki-client.org