Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6046a6-decb-49a3-a3b4-3087f86a63ab/1/bH7cf-KnzM8fLfzeDbbuxLOZkTM.roa
File: bH7cf-KnzM8fLfzeDbbuxLOZkTM.roa (raw, json)
Hash identifier: G8SVnrqik2iipHth/80ICdNvSkcvxA70C4parc3vIUI=
Subject key identifier: 6C:7E:DC:7F:E2:A7:CC:CF:1F:2D:FC:DE:0D:B6:EE:C4:B3:99:91:33
Certificate issuer: /CN=c605871889b9dcafe7ec3136aed1ddfee2dfbc7d
Certificate serial: 01856E82049ADEB9286EF994D81717182834
Authority key identifier: C6:05:87:18:89:B9:DC:AF:E7:EC:31:36:AE:D1:DD:FE:E2:DF:BC:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xgWHGIm53K_n7DE2rtHd_uLfvH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6046a6-decb-49a3-a3b4-3087f86a63ab/1/bH7cf-KnzM8fLfzeDbbuxLOZkTM.roa
Signing time: Sun 01 Jan 2023 18:04:52 +0000
ROA not before: Sun 01 Jan 2023 18:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61385
IP address blocks: 2a05:9281::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:82:04:9a:de:b9:28:6e:f9:94:d8:17:17:18:28:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c605871889b9dcafe7ec3136aed1ddfee2dfbc7d
Validity
Not Before: Jan 1 18:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c7edc7fe2a7cccf1f2dfcde0db6eec4b3999133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:81:61:33:5f:66:ab:00:34:2d:66:40:d6:
fb:7d:01:f2:b4:0b:06:38:6d:59:e6:3f:14:0e:70:
6f:93:46:fe:ce:e2:8c:66:2b:ec:8d:8e:12:be:f5:
1e:da:09:44:68:43:ef:6d:fd:32:8f:83:bf:42:be:
4a:72:f6:75:84:7f:0d:e8:e3:86:6e:13:c6:d8:3a:
2b:c6:f9:c3:54:ec:83:8e:07:55:fe:c3:d5:de:03:
1d:d4:3e:a6:be:84:ca:92:f0:90:e7:5f:e1:f7:a2:
16:57:16:73:75:aa:8d:07:a1:de:f0:a6:e1:53:4e:
b9:c6:48:bb:fd:bd:9a:04:46:4f:ac:3a:bb:54:01:
b9:ac:9b:37:87:ba:3f:f5:02:63:9f:88:52:cf:b7:
36:58:ea:f6:eb:cf:f2:c6:6c:79:f8:80:9f:88:44:
7e:a5:1f:97:c3:f3:26:43:6e:49:16:49:be:0f:f6:
a5:31:6f:21:5b:7c:51:30:a2:e1:3b:d3:03:08:92:
5c:b9:46:4e:87:22:59:e7:87:2a:38:f7:a0:99:18:
6e:59:a6:76:f9:b0:0d:ff:4a:de:aa:24:df:74:69:
78:43:23:d4:69:c2:1d:54:4b:d6:01:cc:da:a5:36:
5a:ef:20:d8:98:a2:2c:3a:c2:9f:f1:63:82:eb:3e:
6c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7E:DC:7F:E2:A7:CC:CF:1F:2D:FC:DE:0D:B6:EE:C4:B3:99:91:33
X509v3 Authority Key Identifier:
keyid:C6:05:87:18:89:B9:DC:AF:E7:EC:31:36:AE:D1:DD:FE:E2:DF:BC:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xgWHGIm53K_n7DE2rtHd_uLfvH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6046a6-decb-49a3-a3b4-3087f86a63ab/1/bH7cf-KnzM8fLfzeDbbuxLOZkTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6046a6-decb-49a3-a3b4-3087f86a63ab/1/xgWHGIm53K_n7DE2rtHd_uLfvH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9281::/32
Signature Algorithm: sha256WithRSAEncryption
41:4c:20:ea:19:b1:2e:03:24:12:0e:b8:9d:f1:f7:cc:f5:bf:
26:48:f3:66:c5:ee:1c:bf:1c:38:9b:f1:7c:0c:6d:80:e5:9d:
95:4c:12:bc:d2:8a:b1:f7:cd:50:75:22:81:eb:54:8b:33:ba:
cd:05:3b:e3:1c:e4:79:ab:a5:71:df:85:17:10:0f:f1:c3:c6:
24:b5:89:04:9f:38:d8:e0:27:c0:23:55:3d:3b:f0:9a:d0:27:
2e:a6:e1:a9:ea:7f:74:d8:eb:03:5e:1f:54:57:68:75:df:23:
f5:5b:8a:22:48:e3:5e:1c:a9:11:58:b1:b1:99:e9:92:96:d6:
b4:27:ef:29:3d:c2:0c:da:73:d1:e9:80:a1:f1:34:33:b4:42:
0e:da:56:ae:cf:ab:98:80:2f:8d:0d:83:8a:2b:c1:26:11:74:
24:d5:f5:9f:69:a2:60:fa:da:8c:63:84:46:21:4b:96:eb:76:
ec:2d:28:95:cd:eb:14:bb:07:2b:eb:95:f9:26:3b:a3:25:7e:
cb:45:4b:b4:90:ff:0c:c6:54:7e:1a:c7:16:77:6f:c1:a8:32:
56:18:be:68:80:b5:1c:7c:ff:84:ec:3b:1c:e7:b2:12:47:59:
21:c2:b7:fb:46:62:b4:18:ca:75:b9:c2:b8:21:92:d0:cc:e7:
48:cc:0c:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:29 2024 by rpki-client on console-ams.rpki-client.org