Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8af211-cf7b-4191-8e24-f41b18ee9c01/1/Gv9-F6YTfyyCNfeCR_bLXRxw0tU.roa
File: Gv9-F6YTfyyCNfeCR_bLXRxw0tU.roa (raw, json)
Hash identifier: ZKxYcbStrTKgpNjbn3SFGfGhf+u7lBPz1+GmKNEP3/o=
Subject key identifier: 1A:FF:7E:17:A6:13:7F:2C:82:35:F7:82:47:F6:CB:5D:1C:70:D2:D5
Certificate issuer: /CN=6ccf884cf78ec531986e46ede02fc68861965381
Certificate serial: 018572BA7D7652905654725037EE2DC8D48C
Authority key identifier: 6C:CF:88:4C:F7:8E:C5:31:98:6E:46:ED:E0:2F:C6:88:61:96:53:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM-ITPeOxTGYbkbt4C_GiGGWU4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8af211-cf7b-4191-8e24-f41b18ee9c01/1/Gv9-F6YTfyyCNfeCR_bLXRxw0tU.roa
Signing time: Mon 02 Jan 2023 13:45:02 +0000
ROA not before: Mon 02 Jan 2023 13:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207871
IP address blocks: 2001:678:b7c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:7d:76:52:90:56:54:72:50:37:ee:2d:c8:d4:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ccf884cf78ec531986e46ede02fc68861965381
Validity
Not Before: Jan 2 13:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1aff7e17a6137f2c8235f78247f6cb5d1c70d2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0a:3d:de:6a:94:1d:37:7c:9b:be:44:e5:54:
f8:73:20:f9:69:54:37:07:66:3c:4e:f3:65:14:e2:
cf:7d:05:34:7d:c7:bf:67:16:c0:71:95:fd:6b:09:
47:77:9f:e2:95:00:7c:06:11:0c:35:b5:88:0b:da:
4b:7c:d1:0c:06:0a:c4:ec:23:ce:96:ef:aa:53:13:
dd:ce:a0:33:a9:81:a8:ae:12:a6:1a:15:e5:3f:3a:
93:0d:ca:25:1e:0a:fb:2a:2f:eb:0a:ac:9d:80:1c:
78:e0:7f:ed:ee:3c:24:1c:1f:64:b9:b6:86:ac:7d:
bf:05:5a:fa:3f:7d:68:cd:42:1a:5d:ff:c5:44:d6:
2c:6e:20:86:ed:5d:89:43:ff:a7:43:11:de:1a:5d:
44:d2:dc:0e:af:12:d8:32:21:3a:0e:75:37:e1:13:
b2:5d:9c:3e:30:96:12:54:9c:78:28:64:57:e4:65:
25:1b:64:3b:09:ee:22:51:20:b4:01:39:55:73:f3:
fe:8a:62:00:25:ae:30:54:4c:c8:33:3a:e4:48:53:
4f:70:1e:82:6d:1d:ca:ef:17:4e:f7:35:d1:7a:cd:
9b:3a:e3:83:03:9c:70:f6:db:ad:12:d8:44:00:13:
f9:ba:9a:a2:cd:27:e1:42:ae:e3:9b:74:77:2f:c0:
11:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FF:7E:17:A6:13:7F:2C:82:35:F7:82:47:F6:CB:5D:1C:70:D2:D5
X509v3 Authority Key Identifier:
keyid:6C:CF:88:4C:F7:8E:C5:31:98:6E:46:ED:E0:2F:C6:88:61:96:53:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM-ITPeOxTGYbkbt4C_GiGGWU4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8af211-cf7b-4191-8e24-f41b18ee9c01/1/Gv9-F6YTfyyCNfeCR_bLXRxw0tU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8af211-cf7b-4191-8e24-f41b18ee9c01/1/bM-ITPeOxTGYbkbt4C_GiGGWU4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:b7c::/48
Signature Algorithm: sha256WithRSAEncryption
1b:bb:b1:f8:bd:58:c3:3a:13:63:e8:5b:ab:e3:34:44:01:6b:
c2:ac:bf:e0:7f:63:a1:4e:41:a5:1e:4a:2f:2f:f3:2a:ed:34:
bf:b8:3e:c0:94:62:02:0d:53:60:9b:36:b1:2a:cd:f8:3f:d1:
22:aa:60:eb:7c:36:02:5b:14:a5:b1:e6:f1:21:2f:b0:d0:db:
46:b1:7d:fa:69:e3:90:82:ee:3d:3f:69:aa:e0:12:04:23:f9:
5a:52:7e:22:17:24:23:e1:9e:ad:0c:83:de:a4:75:36:54:f8:
e8:8e:60:a9:ba:03:2d:9c:c1:54:34:21:39:de:1f:37:f9:0c:
48:86:90:c0:d2:e7:82:f1:b0:ab:cb:5c:42:98:a5:33:1e:70:
24:eb:97:65:41:fc:c0:63:d4:e4:2b:7d:48:0d:f6:2c:dc:9b:
2a:98:48:5c:7d:de:9b:8f:d5:d4:31:1f:16:d9:f1:29:17:dd:
94:e2:f1:a5:d9:16:88:cd:7e:07:90:1d:63:f4:10:26:58:8f:
00:cc:a0:4d:f3:57:a8:4d:18:a4:75:64:2c:b2:77:52:56:09:
0b:e6:87:f7:e4:f5:43:86:97:48:f0:10:b3:5d:a0:c9:85:da:
0f:04:52:0d:66:23:de:22:7c:19:60:8a:be:b4:58:e1:70:1c:
9b:ed:f1:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:31 2024 by rpki-client on console-ams.rpki-client.org