Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/15ma01SO5S1YphmRLZoP6WiNhmE.roa
File: 15ma01SO5S1YphmRLZoP6WiNhmE.roa (raw, json)
Hash identifier: aBJKuz1lkO6yCxumFfV8rDJ+Y8R4FMw5wExpHbeajLw=
Subject key identifier: D7:99:9A:D3:54:8E:E5:2D:58:A6:19:91:2D:9A:0F:E9:68:8D:86:61
Certificate issuer: /CN=81e3e697cdd6e225ac5b1161cdf704de9cfc2655
Certificate serial: 0185CA7721E98A4AF4175F0D74060D33248C
Authority key identifier: 81:E3:E6:97:CD:D6:E2:25:AC:5B:11:61:CD:F7:04:DE:9C:FC:26:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/15ma01SO5S1YphmRLZoP6WiNhmE.roa
Signing time: Thu 19 Jan 2023 14:38:03 +0000
ROA not before: Thu 19 Jan 2023 14:38:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205491
IP address blocks: 2001:67c:b7c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ca:77:21:e9:8a:4a:f4:17:5f:0d:74:06:0d:33:24:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e3e697cdd6e225ac5b1161cdf704de9cfc2655
Validity
Not Before: Jan 19 14:38:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7999ad3548ee52d58a619912d9a0fe9688d8661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:95:c8:19:50:ef:7b:8f:94:97:63:2c:71:dc:
04:69:9c:31:ec:a1:64:89:b4:88:27:df:3e:b4:ee:
41:a0:5d:cd:99:8d:3f:37:03:2c:7b:71:f1:dc:b0:
b5:2f:3f:bd:d6:04:fc:20:71:d8:84:c5:98:2f:c0:
e0:68:ae:de:6d:41:2b:2c:3c:3c:77:b3:d6:92:bb:
c9:97:c1:78:89:a4:37:99:01:34:43:84:08:e6:65:
b6:2f:52:8c:63:41:a0:05:3d:b0:6a:19:74:ea:06:
00:c0:77:5b:aa:95:00:57:18:c2:39:89:43:cf:dd:
d2:52:e2:aa:a5:b5:21:65:be:6a:65:ac:9d:4d:7d:
67:74:ec:47:ff:04:cf:e0:d9:fa:11:9c:e3:94:f3:
dd:22:e1:4d:7e:34:a2:50:da:bc:b2:56:3d:bf:d0:
4a:5d:30:c5:1f:a2:3f:d5:3f:88:dc:99:a0:5a:8a:
19:b4:70:07:cc:48:2b:53:9a:ed:c4:11:7a:aa:2b:
6a:04:b1:08:4e:75:04:7b:b1:0f:e4:79:71:81:a5:
14:e7:ef:04:e8:85:95:8c:9d:fd:a0:aa:f1:24:22:
95:44:0b:ee:29:95:10:73:6a:91:cc:db:b3:0a:3a:
a4:5e:28:df:f9:d6:5d:5d:ef:c1:13:7d:c6:43:a8:
cb:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:99:9A:D3:54:8E:E5:2D:58:A6:19:91:2D:9A:0F:E9:68:8D:86:61
X509v3 Authority Key Identifier:
keyid:81:E3:E6:97:CD:D6:E2:25:AC:5B:11:61:CD:F7:04:DE:9C:FC:26:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/15ma01SO5S1YphmRLZoP6WiNhmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b7c::/48
Signature Algorithm: sha256WithRSAEncryption
3d:58:01:e9:22:ea:35:82:8e:d0:5f:da:e8:73:a5:51:53:b8:
d4:8c:97:90:d8:e3:2d:55:eb:e5:22:13:57:02:41:17:3d:7e:
ef:8c:55:b7:bb:e7:ac:6e:c3:d8:72:14:09:34:5b:1c:42:3e:
17:23:cf:a8:dd:d3:1f:ab:e4:4c:f8:14:10:16:33:0f:eb:bc:
b9:40:9b:c2:15:79:21:86:9d:e8:6b:70:7e:35:17:52:0d:c2:
a4:ff:80:7b:17:1f:d2:16:f6:97:35:f3:bf:af:7b:97:7c:54:
fa:f3:91:86:d3:85:ab:f9:75:c8:99:e6:07:13:65:27:c7:9c:
a7:94:28:11:23:2f:66:31:ee:05:ce:01:ff:5c:6f:66:05:30:
f8:51:1c:5d:fb:ea:51:a1:c4:c7:a7:c6:2f:ee:31:c5:2c:5e:
0a:9e:b8:e0:41:85:90:08:72:57:5f:f1:60:1b:db:0a:9c:2d:
94:1a:f4:50:08:26:21:36:b6:0c:cf:78:0c:29:38:a8:b5:f8:
a5:ba:25:3d:a3:a2:a1:35:4a:9d:31:18:cf:20:5e:52:d4:93:
3f:17:cf:7e:35:68:f7:e9:af:e1:9b:d5:63:b5:3e:35:30:40:
02:1c:1a:f6:68:40:fb:3e:ee:3f:bd:09:f2:30:3f:c9:aa:0d:
a2:3e:49:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:12 2024 by rpki-client on console-fra.rpki-client.org