Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/BtIy_MdiKKcBZFqlwIXaCajqgn4.roa
File: BtIy_MdiKKcBZFqlwIXaCajqgn4.roa (raw, json)
Hash identifier: 6y83qm+SEhTxjHxGaNMemJfeuELlodP7CJTUBU7OhMA=
Subject key identifier: 06:D2:32:FC:C7:62:28:A7:01:64:5A:A5:C0:85:DA:09:A8:EA:82:7E
Certificate issuer: /CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Certificate serial: 01856D8ABEB816B2396F464DD004B7D7F918
Authority key identifier: 73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/BtIy_MdiKKcBZFqlwIXaCajqgn4.roa
Signing time: Sun 01 Jan 2023 13:34:47 +0000
ROA not before: Sun 01 Jan 2023 13:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211593
IP address blocks: 2a0b:b600:3c05::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:be:b8:16:b2:39:6f:46:4d:d0:04:b7:d7:f9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Validity
Not Before: Jan 1 13:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06d232fcc76228a701645aa5c085da09a8ea827e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e8:a3:7a:1d:ee:17:44:9c:9f:c1:75:b4:34:
7a:7d:ed:5a:8c:16:75:aa:5c:2c:3e:ad:78:14:9e:
b5:55:38:2b:ab:6b:4a:68:6f:b0:d6:83:e4:a9:74:
95:48:5a:44:14:5f:2c:d2:16:c2:bd:3f:ba:ef:15:
c6:e4:c3:67:48:65:80:d6:28:a7:02:b9:3b:62:f1:
76:ca:79:67:e4:ff:3a:ce:b9:28:ce:60:f8:d8:18:
0d:1e:95:7e:7b:61:ed:e1:67:9e:ed:45:0a:1b:a6:
9d:68:54:20:15:ea:4e:84:82:18:66:73:60:ac:f8:
35:59:8b:ec:7e:17:de:2d:40:b4:ac:eb:a4:dc:c2:
3c:c3:55:f4:23:b1:77:bc:95:a3:7f:b8:64:7a:83:
34:00:3f:05:b3:79:b0:43:d0:6c:f5:48:56:59:e3:
bf:25:ce:6d:50:2c:1a:4a:a3:09:db:0c:d0:59:ee:
6d:05:e6:51:04:75:62:fc:21:fe:18:7a:e5:48:30:
4f:a8:42:98:84:65:9f:a9:9d:6b:2d:fc:1e:16:28:
36:ef:e8:10:c9:ca:30:f1:00:5a:d3:73:31:70:a0:
ca:bd:6d:48:16:55:5b:08:fb:68:da:57:c2:41:c3:
54:34:ae:ea:00:50:16:7a:16:c3:6d:79:d8:1c:f5:
4d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D2:32:FC:C7:62:28:A7:01:64:5A:A5:C0:85:DA:09:A8:EA:82:7E
X509v3 Authority Key Identifier:
keyid:73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/BtIy_MdiKKcBZFqlwIXaCajqgn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/c_mGx3Bb2AjBsC69dU-_qRgH6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b600:3c05::/48
Signature Algorithm: sha256WithRSAEncryption
a6:42:21:7b:64:ce:38:60:9d:e4:bd:b8:dc:eb:86:9d:40:ab:
2c:4d:33:2c:59:51:80:f6:a5:76:9f:ea:0c:a9:9e:32:73:b6:
56:c2:b6:f2:56:b3:b8:96:f4:63:0a:ea:97:d3:f5:3e:46:40:
33:d9:81:9d:2e:25:ae:63:fd:0b:7e:38:a2:da:8e:0d:fb:78:
32:0f:f9:80:b7:f3:8c:3d:20:68:fc:8a:79:91:40:c6:21:4b:
ad:35:7b:a6:d7:0f:a6:77:e0:77:5b:a0:8b:29:86:47:4d:4e:
6a:d1:f1:26:bf:01:5a:78:55:4c:d9:7b:c6:3e:d3:47:b3:a0:
bb:99:5e:7c:fe:05:6e:5f:f4:b1:74:6c:17:91:94:70:43:92:
8d:52:80:45:60:43:e1:d3:7a:a5:57:11:7a:64:91:05:58:a5:
d6:78:3a:b6:a0:42:79:52:5c:7c:a7:3c:45:23:0a:5b:19:61:
2b:e2:72:b5:19:5f:3d:2e:63:75:64:84:8f:4a:63:db:c7:49:
da:d4:69:19:04:2d:f1:8e:6a:1d:8a:35:be:5d:18:a1:29:92:
c9:b3:b6:19:8d:0a:b0:23:e3:74:70:96:f2:de:dd:b0:b9:35:
84:da:22:e9:23:10:13:96:15:df:fb:83:bd:ac:23:f7:c6:45:
bb:99:fa:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:14 2024 by rpki-client on console-fra.rpki-client.org