Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/2854f2-82d7-42bd-acbc-d08a9cdec986/1/nzOahmuoKVuHIIel9eZJ-oQ_DwE.roa
File: nzOahmuoKVuHIIel9eZJ-oQ_DwE.roa (raw, json)
Hash identifier: iVi4RqwHZZM91WfA51qEvxopLeA7j6v4NF0U1fF6jjg=
Subject key identifier: 9F:33:9A:86:6B:A8:29:5B:87:20:87:A5:F5:E6:49:FA:84:3F:0F:01
Certificate issuer: /CN=9a620e691d95aaceb3262dbdfcb0ca5099ee2444
Certificate serial: 01856D66258EC79CC4E473F920641E3197C8
Authority key identifier: 9A:62:0E:69:1D:95:AA:CE:B3:26:2D:BD:FC:B0:CA:50:99:EE:24:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mmIOaR2Vqs6zJi29_LDKUJnuJEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/2854f2-82d7-42bd-acbc-d08a9cdec986/1/nzOahmuoKVuHIIel9eZJ-oQ_DwE.roa
Signing time: Sun 01 Jan 2023 12:54:48 +0000
ROA not before: Sun 01 Jan 2023 12:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212717
IP address blocks: 2001:678:e24::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:25:8e:c7:9c:c4:e4:73:f9:20:64:1e:31:97:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a620e691d95aaceb3262dbdfcb0ca5099ee2444
Validity
Not Before: Jan 1 12:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f339a866ba8295b872087a5f5e649fa843f0f01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:be:07:bb:82:11:1e:ab:8d:a8:7b:3e:dc:2c:
aa:ed:b1:42:cb:e3:9f:81:9f:35:6a:a4:04:3c:61:
b6:2e:53:87:6d:94:c9:7b:ef:3d:a3:54:f1:6e:1b:
d5:21:2e:4d:1c:8d:dc:ff:b6:51:53:9e:00:94:53:
05:3f:ee:ea:bb:20:7a:dd:12:51:3d:ef:b1:f4:a3:
4e:a5:93:b0:ea:ea:e4:30:e7:92:77:4a:09:58:53:
6e:97:37:76:59:ec:f9:90:f2:11:d6:b0:0c:38:63:
f9:0c:52:92:37:e1:7f:12:0a:10:ef:4c:8f:77:62:
95:a2:4d:ee:54:63:38:69:13:e6:fe:68:0d:28:89:
bf:25:24:cd:e9:91:30:c1:12:2f:72:71:34:a1:45:
b5:ca:a2:6d:07:58:4e:84:f5:0d:ae:46:00:f9:6f:
d8:8a:d4:36:9d:84:e7:6f:b6:2b:45:81:d6:fb:69:
bf:b1:e8:ae:b1:76:52:42:32:c9:fe:26:36:46:03:
19:84:e6:c4:7d:c3:fb:f3:f0:ce:14:ba:a2:a1:dc:
02:66:57:fa:ce:c8:8c:90:ff:d3:74:b4:c7:55:f8:
10:49:92:7d:f6:78:cf:b0:7c:29:21:17:ac:35:31:
1a:8b:cd:10:b7:ff:a5:bf:1f:d7:fa:06:ef:e1:ef:
bb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:33:9A:86:6B:A8:29:5B:87:20:87:A5:F5:E6:49:FA:84:3F:0F:01
X509v3 Authority Key Identifier:
keyid:9A:62:0E:69:1D:95:AA:CE:B3:26:2D:BD:FC:B0:CA:50:99:EE:24:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mmIOaR2Vqs6zJi29_LDKUJnuJEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/2854f2-82d7-42bd-acbc-d08a9cdec986/1/nzOahmuoKVuHIIel9eZJ-oQ_DwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/2854f2-82d7-42bd-acbc-d08a9cdec986/1/mmIOaR2Vqs6zJi29_LDKUJnuJEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:e24::/48
Signature Algorithm: sha256WithRSAEncryption
75:fd:06:37:c2:29:f5:af:21:3d:96:16:88:31:4a:94:d9:f3:
f0:0b:d3:91:1c:c4:74:59:1f:85:80:20:6b:13:4d:bd:eb:c4:
fc:1f:ed:79:06:62:61:3c:e0:71:a0:21:00:f3:87:6c:2e:9f:
8e:ca:83:b3:a7:61:09:e6:1c:5e:88:69:f3:a5:fd:24:82:1d:
f8:a3:33:7f:19:4f:26:cd:78:a0:07:3f:76:31:dd:85:51:76:
47:ff:2e:41:69:34:7a:e5:df:a1:91:39:c6:56:f9:40:32:19:
0d:57:19:b8:0f:88:fa:d6:ff:94:d7:cf:ea:26:d7:38:8d:d4:
b3:ee:f9:44:0a:a9:5c:59:60:5c:e7:ee:ca:8d:71:be:c2:54:
47:e5:6a:bb:d3:58:bd:dc:1b:91:27:92:e5:0f:59:8d:a8:a4:
1a:e5:c4:f6:ce:24:d4:c3:95:6d:7d:22:28:a3:e1:a0:01:44:
bd:04:30:6a:c8:6a:1c:93:13:48:6c:c8:1e:00:db:e9:94:53:
5a:67:a0:55:2b:7d:d7:3e:4c:bf:91:dd:bd:84:e0:48:26:01:
e8:f9:ec:90:b5:e2:2c:07:59:c0:27:35:33:01:ca:9d:c0:13:
f5:cb:ce:d5:09:0a:02:e8:17:d9:a3:a8:2d:00:9a:d7:17:55:
c5:f6:c7:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:47 2024 by rpki-client on console-fra.rpki-client.org