Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2fc266-1247-4f00-b161-6eb9a22129e1/1/m8G6zcqWoIqPAyQJYcwMda3mWv0.roa
File: m8G6zcqWoIqPAyQJYcwMda3mWv0.roa (raw, json)
Hash identifier: oT/Cp5E2DzJAse9OzqEJh07GRntECDTpYAs5wF2nrF4=
Subject key identifier: 9B:C1:BA:CD:CA:96:A0:8A:8F:03:24:09:61:CC:0C:75:AD:E6:5A:FD
Certificate issuer: /CN=0aaaa79caacff5f0304b9ae9002e2713fbff6d52
Certificate serial: 018572A7F2794A907830D8BDE27818074FF0
Authority key identifier: 0A:AA:A7:9C:AA:CF:F5:F0:30:4B:9A:E9:00:2E:27:13:FB:FF:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CqqnnKrP9fAwS5rpAC4nE_v_bVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2fc266-1247-4f00-b161-6eb9a22129e1/1/m8G6zcqWoIqPAyQJYcwMda3mWv0.roa
Signing time: Mon 02 Jan 2023 13:24:47 +0000
ROA not before: Mon 02 Jan 2023 13:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12525
IP address blocks: 2001:67c:554::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:f2:79:4a:90:78:30:d8:bd:e2:78:18:07:4f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0aaaa79caacff5f0304b9ae9002e2713fbff6d52
Validity
Not Before: Jan 2 13:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bc1bacdca96a08a8f03240961cc0c75ade65afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:20:3c:52:ff:bd:c6:fb:31:77:5c:a3:b7:5b:
4c:56:df:4d:ae:09:98:cf:78:d6:53:b4:3f:00:3c:
09:2e:ad:2b:4c:ad:9f:d2:0f:2f:d9:2b:57:0c:20:
c5:d5:ef:74:be:36:6a:d7:0e:c7:cf:ab:f6:27:61:
f4:ad:d9:25:9b:87:3f:1c:96:d4:95:24:3e:3e:2b:
e5:05:62:3c:27:f9:7a:1d:f1:23:d9:c0:7d:c2:24:
a9:f0:4c:5f:95:e8:5f:dd:48:13:12:4c:b7:a1:5d:
cd:1d:5f:cb:ee:5a:44:27:c8:66:ea:e9:17:fd:7c:
b2:9f:99:e3:24:1a:4a:4f:e5:a0:1d:05:2f:8c:48:
6d:c1:3c:b7:5b:0f:ee:71:c0:99:c0:68:72:22:08:
bf:18:fe:56:b1:6e:07:39:19:02:8c:b6:bb:75:8b:
dc:e2:56:44:46:17:23:6d:42:64:c3:b8:a7:f3:22:
c7:df:7d:34:96:47:60:53:ce:02:38:89:17:4b:39:
37:a6:5e:25:c9:5e:12:40:ab:43:67:3a:4f:86:39:
bd:d3:34:1c:9f:7d:bb:20:b9:9c:f0:f6:a8:13:15:
70:e7:f6:97:9b:81:06:4c:2e:da:ba:49:5e:3f:27:
a7:0b:20:84:44:00:6f:6e:fe:4d:9c:10:40:e1:b7:
c9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C1:BA:CD:CA:96:A0:8A:8F:03:24:09:61:CC:0C:75:AD:E6:5A:FD
X509v3 Authority Key Identifier:
keyid:0A:AA:A7:9C:AA:CF:F5:F0:30:4B:9A:E9:00:2E:27:13:FB:FF:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CqqnnKrP9fAwS5rpAC4nE_v_bVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2fc266-1247-4f00-b161-6eb9a22129e1/1/m8G6zcqWoIqPAyQJYcwMda3mWv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2fc266-1247-4f00-b161-6eb9a22129e1/1/CqqnnKrP9fAwS5rpAC4nE_v_bVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:554::/48
Signature Algorithm: sha256WithRSAEncryption
94:ce:51:f9:68:e3:f0:4e:90:d7:07:bd:3d:4e:97:f4:0f:8c:
c2:e6:e3:a1:76:72:9f:44:da:4f:49:9e:30:e2:8b:b6:0b:0e:
aa:90:14:27:0f:76:d2:97:d0:5c:95:45:c3:1f:9a:5f:39:eb:
9f:5b:08:30:77:c0:7f:d6:b9:e6:21:08:a7:d5:6c:5e:36:55:
07:a1:6c:f5:d7:38:5f:39:e2:b8:61:59:da:0f:1d:f1:63:5d:
73:0a:94:fc:2b:38:80:96:4f:d7:34:ed:90:31:b6:2f:e4:06:
a9:a4:92:11:4d:f9:0a:2a:aa:a6:1a:9a:32:8a:21:28:5d:48:
f6:3b:f9:53:05:3f:c7:92:1b:55:9b:a6:ea:10:12:84:f1:cf:
2f:1d:61:95:15:e8:c3:41:85:68:00:66:1b:43:7f:d7:bb:2c:
92:e5:90:cd:ef:44:08:34:a1:15:f5:b2:84:21:c3:b1:c8:fc:
0e:a3:6b:19:1a:c7:a7:70:9b:8d:f0:85:ce:7f:71:88:33:b7:
fd:b8:24:78:2e:b8:5a:79:76:71:58:c4:f5:ed:34:13:1d:4b:
c6:4e:01:f7:2b:85:0f:af:d8:42:c0:82:47:c3:00:c8:97:3b:
23:e8:1b:d8:b9:cf:83:aa:0b:49:8a:19:70:2b:b4:c8:d8:59:
8a:15:72:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:34 2024 by rpki-client on console-ams.rpki-client.org