Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a96ac3-3990-45aa-b48e-870cc5f43cd5/1/mQMKfoTTI4Yj8liBXz_tYAurhaA.roa
File: mQMKfoTTI4Yj8liBXz_tYAurhaA.roa (raw, json)
Hash identifier: wfzWBtSzDfLFukNv4jWPuM+D6jHelEoIZT6dKThejl4=
Subject key identifier: 99:03:0A:7E:84:D3:23:86:23:F2:58:81:5F:3F:ED:60:0B:AB:85:A0
Certificate issuer: /CN=8032c07faa22feb5969ff1f3b4905d1ea1e4deeb
Certificate serial: 01856BAEC828350111F55965F5493114DD9D
Authority key identifier: 80:32:C0:7F:AA:22:FE:B5:96:9F:F1:F3:B4:90:5D:1E:A1:E4:DE:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gDLAf6oi_rWWn_HztJBdHqHk3us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a96ac3-3990-45aa-b48e-870cc5f43cd5/1/mQMKfoTTI4Yj8liBXz_tYAurhaA.roa
Signing time: Sun 01 Jan 2023 04:54:54 +0000
ROA not before: Sun 01 Jan 2023 04:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31317
IP address blocks: 2001:67c:10b0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:c8:28:35:01:11:f5:59:65:f5:49:31:14:dd:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8032c07faa22feb5969ff1f3b4905d1ea1e4deeb
Validity
Not Before: Jan 1 04:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99030a7e84d3238623f258815f3fed600bab85a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c2:11:51:65:05:41:13:40:56:2f:97:23:48:
cb:3b:5f:44:a6:a2:07:8e:78:73:e2:2f:59:57:13:
a8:0a:45:26:6f:a7:a2:41:5a:9c:d3:5d:a2:99:43:
e7:05:89:12:3f:53:26:11:68:4a:a7:91:7f:cf:b6:
49:a6:f6:2a:ff:29:34:3f:3c:ff:4e:fc:39:7f:37:
90:46:36:5a:1c:87:0f:31:08:0b:34:6e:0f:4d:d9:
0b:2b:f5:43:0a:c3:26:75:e6:f1:a0:4f:9c:70:ee:
92:73:43:c9:00:51:47:18:dd:7b:f2:35:e7:6c:2a:
0a:7a:19:8f:e8:1a:7d:79:06:71:52:27:d0:49:04:
35:34:ed:cd:bf:c7:5e:5f:80:f2:07:87:f1:4e:11:
55:c3:1c:af:44:53:ef:07:9e:64:11:e6:8b:73:d2:
f8:02:f5:11:9f:95:9c:c1:cb:dc:d5:30:6b:42:04:
02:5e:a7:1a:ee:50:87:14:fb:d5:61:4c:34:b9:f2:
b2:20:30:9f:83:5d:3e:06:f9:bf:f7:f7:8f:2a:b5:
14:86:6a:b4:e5:44:e3:2a:c9:35:5a:3a:6e:f8:c9:
40:dc:94:9d:7a:7d:2c:0d:c1:40:ff:5a:5d:c7:25:
46:6e:e7:23:bf:f7:6e:5b:27:9b:98:8c:a0:cf:a9:
88:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:03:0A:7E:84:D3:23:86:23:F2:58:81:5F:3F:ED:60:0B:AB:85:A0
X509v3 Authority Key Identifier:
keyid:80:32:C0:7F:AA:22:FE:B5:96:9F:F1:F3:B4:90:5D:1E:A1:E4:DE:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gDLAf6oi_rWWn_HztJBdHqHk3us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a96ac3-3990-45aa-b48e-870cc5f43cd5/1/mQMKfoTTI4Yj8liBXz_tYAurhaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a96ac3-3990-45aa-b48e-870cc5f43cd5/1/gDLAf6oi_rWWn_HztJBdHqHk3us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:10b0::/48
Signature Algorithm: sha256WithRSAEncryption
0e:85:c2:12:5d:1b:c7:f1:c2:63:f7:ab:5e:f5:c3:95:14:25:
e4:07:3d:58:2a:a0:81:49:4f:36:f3:b4:59:2f:4a:d6:61:86:
e1:c6:36:b4:32:f4:67:57:34:99:ff:6c:be:05:3c:14:8d:72:
92:8f:7b:29:fc:be:f5:86:2c:4a:7d:8a:b8:c0:cd:14:c3:5f:
8d:02:c9:45:10:4b:ab:df:4f:b3:61:e5:4a:63:ae:a3:31:53:
02:a0:f2:e4:c4:21:21:48:b0:bb:b6:a7:1c:61:6a:3d:b6:db:
18:d7:07:85:f7:c0:7c:59:9c:91:44:2a:05:c4:c5:5d:29:07:
6b:b2:b4:98:bb:b3:f8:15:37:b6:a2:8e:d4:1d:a1:ed:20:c9:
c8:8e:74:33:e4:9d:5f:df:18:a1:f9:7d:1d:10:ed:65:fe:3f:
76:7f:aa:88:37:45:dc:96:52:36:90:bb:50:ed:b1:11:94:e7:
b9:9e:69:2a:63:cb:d3:13:b9:ff:83:c5:73:7d:bf:2f:59:24:
74:a0:fa:a4:00:be:cc:7f:1e:40:47:5e:7b:7b:62:3b:95:81:
a4:bc:4f:2d:36:77:86:85:41:d9:fe:07:08:6c:06:12:a8:94:
e2:1c:65:95:6b:fa:48:5f:88:6e:96:2b:11:d4:27:88:ea:82:
3e:31:37:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:30 2024 by rpki-client on console-ams.rpki-client.org