Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/8762f5-fae3-45f6-a79b-caedbd7140e9/1/1-1nIktrgJuJiGUn3oWI4uyunAqA.roa
File: 1-1nIktrgJuJiGUn3oWI4uyunAqA.roa (raw, json)
Hash identifier: TjaufwJddqK23mBviXu86NLZevQqKrHx16S0VXmNRO8=
Subject key identifier: FB:59:C8:92:DA:E0:26:E2:62:19:49:F7:A1:62:38:BB:2B:A7:02:A0
Certificate issuer: /CN=e27a53053841e62f3787302bd3b3dc17ae8347a3
Certificate serial: 0186930A13E30CF83A584BEB34CF5EFF7DED
Authority key identifier: E2:7A:53:05:38:41:E6:2F:37:87:30:2B:D3:B3:DC:17:AE:83:47:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4npTBThB5i83hzAr07PcF66DR6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/8762f5-fae3-45f6-a79b-caedbd7140e9/1/1-1nIktrgJuJiGUn3oWI4uyunAqA.roa
Signing time: Mon 27 Feb 2023 13:22:36 +0000
ROA not before: Mon 27 Feb 2023 13:22:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210882
IP address blocks: 2001:678:e20::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:93:0a:13:e3:0c:f8:3a:58:4b:eb:34:cf:5e:ff:7d:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e27a53053841e62f3787302bd3b3dc17ae8347a3
Validity
Not Before: Feb 27 13:22:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb59c892dae026e2621949f7a16238bb2ba702a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f2:43:bf:b3:cd:d4:25:62:f6:d8:90:ac:02:
30:80:d1:9e:f1:06:0f:1d:b5:ef:6a:de:59:8f:bc:
8f:bb:f7:c0:ac:8c:fd:af:38:05:c8:8c:41:21:94:
c1:f7:67:f3:51:af:c0:3b:c9:64:0e:1f:01:9e:c9:
53:54:70:b7:c4:80:c4:8e:18:38:82:6b:d3:55:9a:
e7:1f:8d:d7:1f:d2:22:e2:6e:9a:a5:5e:79:c7:a4:
6e:67:d3:2f:1c:59:33:6c:35:a4:ee:b3:e5:d7:2a:
ca:b6:f0:2c:75:0e:1c:73:28:1f:99:80:9c:ac:02:
b4:8f:ac:24:51:4e:9d:b4:74:ac:b7:74:cf:fb:0e:
69:eb:61:0d:3e:42:99:3c:9f:0e:21:29:09:97:b1:
d6:e9:54:38:a1:80:8f:ec:90:2a:bb:34:e6:7b:8f:
fb:95:eb:9e:ff:fb:95:15:dd:48:21:bb:9e:f1:ee:
13:49:73:14:4f:e3:73:c0:70:66:30:cb:81:8e:b2:
0c:75:12:d4:86:65:7b:e8:37:b2:58:5a:2f:4a:4c:
ea:46:8b:3b:d5:32:29:d7:95:73:4a:ce:45:35:2c:
e4:33:d3:c0:75:2a:85:9d:f3:01:4c:27:11:14:dd:
b1:8c:25:3e:19:5f:70:d2:21:18:12:15:2f:84:48:
e7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:59:C8:92:DA:E0:26:E2:62:19:49:F7:A1:62:38:BB:2B:A7:02:A0
X509v3 Authority Key Identifier:
keyid:E2:7A:53:05:38:41:E6:2F:37:87:30:2B:D3:B3:DC:17:AE:83:47:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4npTBThB5i83hzAr07PcF66DR6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/8762f5-fae3-45f6-a79b-caedbd7140e9/1/1-1nIktrgJuJiGUn3oWI4uyunAqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/8762f5-fae3-45f6-a79b-caedbd7140e9/1/4npTBThB5i83hzAr07PcF66DR6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:e20::/48
Signature Algorithm: sha256WithRSAEncryption
2e:7a:d7:a0:3f:3c:58:f1:2f:8c:91:ac:2d:28:d3:c4:a7:46:
c1:9a:17:39:bb:22:b0:4b:75:e4:d4:d9:b7:9e:1f:f0:f3:37:
26:5a:a0:84:49:ad:32:9a:80:8a:12:0d:3a:1e:42:e7:b4:6c:
f1:5a:9e:97:07:70:12:27:8f:4d:28:61:a4:71:4d:c6:db:a7:
4c:1e:70:75:db:40:bc:5f:9a:df:d2:5a:d7:12:0b:cf:d9:36:
09:77:14:2d:bd:41:46:c4:4b:d4:44:40:d5:61:57:65:4d:4c:
d6:36:49:1d:1a:39:12:3f:54:5b:18:f5:7c:d6:bb:5d:7b:8d:
df:e6:e4:6b:a5:de:2c:b7:a2:73:ff:56:24:68:0b:3b:4a:85:
7b:92:20:7a:8c:06:89:5f:e3:61:cf:8d:4d:9b:8c:35:33:47:
b7:f3:a9:43:05:1e:84:38:b2:1e:54:a4:65:07:78:63:7b:4e:
a3:3f:88:05:9b:ce:a7:e2:e4:c7:a2:4f:c0:b5:bb:3c:15:eb:
de:63:c7:d3:64:60:15:eb:ad:fb:c9:77:fe:af:30:40:28:85:
76:ef:88:fe:80:e0:be:e2:0a:f9:63:31:ee:64:ff:1c:aa:15:
e4:07:6d:53:8e:07:22:8a:d9:93:9e:a4:8b:59:5d:66:b1:ba:
19:7f:f1:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:55 2024 by rpki-client on console-ams.rpki-client.org