Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/03d342-a349-4656-9d40-b3e43d305b89/1/62lWpG3neKmWbxmSMZ4AYwINuBI.roa
File: 62lWpG3neKmWbxmSMZ4AYwINuBI.roa (raw, json)
Hash identifier: U0BKu/y2rlEr8Ay6juju9X+fDaCDuhDOBCUT8S74iEA=
Subject key identifier: EB:69:56:A4:6D:E7:78:A9:96:6F:19:92:31:9E:00:63:02:0D:B8:12
Certificate issuer: /CN=5fa7b6aef0bd2411304e4f3c6957c82eb2567cd3
Certificate serial: 01857195854AE281CCF005B0D23A61FFBFDB
Authority key identifier: 5F:A7:B6:AE:F0:BD:24:11:30:4E:4F:3C:69:57:C8:2E:B2:56:7C:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X6e2rvC9JBEwTk88aVfILrJWfNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/03d342-a349-4656-9d40-b3e43d305b89/1/62lWpG3neKmWbxmSMZ4AYwINuBI.roa
Signing time: Mon 02 Jan 2023 08:25:02 +0000
ROA not before: Mon 02 Jan 2023 08:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201190
IP address blocks: 2001:67c:b0c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:85:4a:e2:81:cc:f0:05:b0:d2:3a:61:ff:bf:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fa7b6aef0bd2411304e4f3c6957c82eb2567cd3
Validity
Not Before: Jan 2 08:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb6956a46de778a9966f1992319e0063020db812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:34:4e:6a:48:34:af:2f:8e:d8:18:27:0b:39:
86:84:8f:81:3e:70:3f:1d:10:b0:fd:df:2b:59:01:
73:b4:11:51:7f:58:8d:db:2c:f2:e7:be:27:7b:bd:
ec:02:af:da:d3:4a:02:d3:ac:87:50:9a:c0:a7:1c:
ce:aa:d1:b3:c0:b8:2e:91:d3:85:7d:9c:4a:72:b8:
47:69:1e:93:ce:d3:4e:08:a9:6f:f6:14:c9:4e:dd:
b4:7f:60:83:6b:bc:14:e8:a3:2f:40:a6:d4:73:f7:
eb:a8:b6:65:5b:b1:5b:8e:ff:71:2d:9a:71:97:5d:
07:00:85:a0:17:63:d6:35:08:f4:bd:3b:16:a8:09:
7d:6f:c8:ac:bd:93:04:91:ff:b1:bf:ce:42:b7:e4:
68:76:bd:51:b6:82:74:66:cc:dd:bf:6f:b2:63:e6:
6b:47:9f:08:d5:76:49:f1:90:1a:ea:b5:a5:a2:d7:
82:55:cd:eb:c4:ab:b5:62:02:6d:5f:f3:b8:bf:66:
49:3f:c9:46:85:81:ae:40:a3:6d:0c:de:45:0a:8e:
e2:28:e2:79:75:01:a1:e8:84:66:7e:22:13:3f:79:
d2:c7:f6:3c:20:ad:54:52:e9:14:db:15:d1:78:83:
c4:cd:dc:7d:45:c3:6a:28:24:08:a1:69:67:5e:51:
05:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:69:56:A4:6D:E7:78:A9:96:6F:19:92:31:9E:00:63:02:0D:B8:12
X509v3 Authority Key Identifier:
keyid:5F:A7:B6:AE:F0:BD:24:11:30:4E:4F:3C:69:57:C8:2E:B2:56:7C:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X6e2rvC9JBEwTk88aVfILrJWfNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/03d342-a349-4656-9d40-b3e43d305b89/1/62lWpG3neKmWbxmSMZ4AYwINuBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/03d342-a349-4656-9d40-b3e43d305b89/1/X6e2rvC9JBEwTk88aVfILrJWfNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b0c::/48
Signature Algorithm: sha256WithRSAEncryption
97:e5:63:14:9c:9c:35:c5:29:9a:25:09:03:02:61:12:37:14:
2b:55:e0:50:5d:cf:dc:a3:17:91:cc:f6:af:23:fe:f5:de:f3:
61:2c:61:9b:94:02:44:af:bf:4b:ad:d1:cf:0f:c8:8a:0b:a5:
3a:db:5c:2b:38:4e:33:64:a2:66:6e:a9:f4:c0:6e:5a:10:5c:
4f:e0:93:03:0a:7e:02:91:1a:58:9e:ca:53:d2:fa:91:01:a7:
29:d6:68:f3:d4:e7:09:04:aa:94:16:43:63:e6:9f:cd:29:05:
fa:c2:7b:84:bf:da:c6:9b:c7:15:2b:8a:57:84:62:92:11:1b:
1b:57:c9:99:77:1b:65:e1:0c:14:a8:d0:3c:30:42:f2:c4:24:
a9:8f:44:c1:c7:b6:99:36:3f:d9:c9:71:61:55:f0:02:df:dd:
24:15:38:86:75:1d:bf:ed:5e:53:97:2e:06:84:c8:a9:34:08:
5e:99:a9:39:59:ba:46:fa:29:36:a9:77:5b:ab:22:ad:36:9c:
f6:58:af:15:af:86:95:8c:a4:83:4c:a9:38:06:bb:2d:49:2e:
b1:06:b7:db:de:20:5e:87:0c:0b:2c:13:a7:14:97:a7:b7:92:
ad:0c:9e:2e:e3:97:29:3d:1a:89:ff:63:90:41:98:da:04:0c:
37:df:4f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:05 2024 by rpki-client on console-fra.rpki-client.org