Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e589c2-1acb-4d82-9b9a-52362b6b3334/1/1cjjXeyH3zy1Iy5d5HVl8c0HR5s.roa
File: 1cjjXeyH3zy1Iy5d5HVl8c0HR5s.roa (raw, json)
Hash identifier: 1tAW3Oz0XbT37LjLR4qi+TC9dzastw/AviADMK9SRGY=
Subject key identifier: D5:C8:E3:5D:EC:87:DF:3C:B5:23:2E:5D:E4:75:65:F1:CD:07:47:9B
Certificate issuer: /CN=05964b6d51902fdc1aa6841bb3d3c622a579825a
Certificate serial: 01859E38C5EAB79AB5FF8A91FD17971EBC89
Authority key identifier: 05:96:4B:6D:51:90:2F:DC:1A:A6:84:1B:B3:D3:C6:22:A5:79:82:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZZLbVGQL9wapoQbs9PGIqV5glo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e589c2-1acb-4d82-9b9a-52362b6b3334/1/1cjjXeyH3zy1Iy5d5HVl8c0HR5s.roa
Signing time: Wed 11 Jan 2023 00:26:38 +0000
ROA not before: Wed 11 Jan 2023 00:26:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202520
IP address blocks: 2001:67c:b58::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9e:38:c5:ea:b7:9a:b5:ff:8a:91:fd:17:97:1e:bc:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05964b6d51902fdc1aa6841bb3d3c622a579825a
Validity
Not Before: Jan 11 00:26:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5c8e35dec87df3cb5232e5de47565f1cd07479b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ba:8b:c9:3d:00:71:bf:5c:20:b5:3f:7d:66:
d2:c0:71:33:b2:0e:2b:8c:6d:fe:b3:65:ea:c5:21:
0e:ba:0d:c8:5b:66:71:03:21:0a:59:ba:9f:a5:51:
ab:4b:2a:1d:02:44:dc:d3:fc:99:81:d5:de:66:67:
72:4b:9a:f3:d0:fb:2f:42:e0:8b:86:01:59:b2:f9:
21:a4:3f:56:db:5a:33:91:1e:be:c7:0d:c1:f5:5c:
64:00:6f:bd:d7:2a:44:ef:11:4f:7c:18:9f:c0:0f:
50:34:da:da:ad:33:b5:28:a1:c1:96:5b:b7:51:1a:
97:b7:d9:a6:5b:7c:d6:49:bf:de:14:eb:94:d8:7f:
ed:94:6d:02:a8:41:cc:53:bb:3d:20:b5:5c:68:71:
82:d6:31:b2:0a:d8:78:f8:cb:ce:12:aa:65:04:88:
4e:83:62:32:be:d9:c9:eb:41:52:bd:e7:46:03:7a:
fc:f1:0c:14:79:cb:46:36:c5:ee:24:0d:3a:81:fe:
28:32:49:75:01:d4:27:b5:4e:a1:20:f6:2e:0a:cd:
bb:ac:e1:0c:84:04:42:59:6e:4a:1b:a4:64:11:fb:
e2:5c:3b:61:7d:d9:df:49:64:b2:f8:e8:c8:0f:22:
db:f0:89:f5:fc:b0:85:f5:6c:d5:fc:7b:eb:3d:47:
d0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C8:E3:5D:EC:87:DF:3C:B5:23:2E:5D:E4:75:65:F1:CD:07:47:9B
X509v3 Authority Key Identifier:
keyid:05:96:4B:6D:51:90:2F:DC:1A:A6:84:1B:B3:D3:C6:22:A5:79:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZZLbVGQL9wapoQbs9PGIqV5glo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e589c2-1acb-4d82-9b9a-52362b6b3334/1/1cjjXeyH3zy1Iy5d5HVl8c0HR5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e589c2-1acb-4d82-9b9a-52362b6b3334/1/BZZLbVGQL9wapoQbs9PGIqV5glo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b58::/48
Signature Algorithm: sha256WithRSAEncryption
18:02:80:3f:a3:39:5f:ca:1f:dd:5c:02:a0:8d:4b:ce:32:4e:
00:67:5c:80:29:bb:9c:b1:22:05:25:b1:66:8f:d6:34:87:4b:
fb:b4:3c:c9:06:5a:05:be:21:04:66:0e:5c:8b:0e:9c:41:fe:
ca:1e:6e:f9:82:97:c8:8c:a3:4e:1c:8f:53:56:76:80:dc:de:
64:63:15:4b:ce:55:8e:5e:1f:4c:cc:d9:fc:a4:80:b0:7e:a8:
6f:de:0f:cd:cc:93:53:ed:51:a5:64:34:71:44:37:e4:2f:55:
66:1c:2e:27:63:00:8d:6b:a3:44:6d:1b:97:64:18:e6:e9:f2:
8f:77:79:b6:81:7c:7b:e1:2f:f2:99:7a:54:88:ce:70:08:7a:
4b:e0:ee:84:ef:f3:05:d6:72:ac:5c:b6:16:58:fd:3b:c8:15:
cf:1a:29:52:c2:1e:f1:89:f8:5d:e8:0d:31:80:3b:35:4c:0c:
3a:6f:01:97:c1:da:bc:3e:9a:c3:dd:82:bf:77:d6:87:ca:b4:
a3:ff:9d:58:c0:2f:48:b2:03:df:02:40:71:c6:0a:06:1c:fb:
db:40:a7:08:39:0e:6d:6d:9a:28:e9:76:09:94:95:ca:59:ec:
eb:53:89:03:64:a2:0b:1a:ca:52:c7:d2:d0:1b:66:55:8d:57:
32:77:64:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org