Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/IhnwZPjEDTVhvhPlvBxsBV6-8hk.roa
File: IhnwZPjEDTVhvhPlvBxsBV6-8hk.roa (raw, json)
Hash identifier: 4aTvMuEyeI7NUFKuCf6wsfPYgjszvyQ+Rhn8me6PYeM=
Subject key identifier: 22:19:F0:64:F8:C4:0D:35:61:BE:13:E5:BC:1C:6C:05:5E:BE:F2:19
Certificate issuer: /CN=acf7ab3f1a93e714f3074a05d86fcce2206305a8
Certificate serial: 018CED6F42AF437F98EA3ECC92106824C02D
Authority key identifier: AC:F7:AB:3F:1A:93:E7:14:F3:07:4A:05:D8:6F:CC:E2:20:63:05:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPerPxqT5xTzB0oF2G_M4iBjBag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/IhnwZPjEDTVhvhPlvBxsBV6-8hk.roa
Signing time: Tue 09 Jan 2024 08:55:40 +0000
ROA not before: Tue 09 Jan 2024 08:55:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215754
IP address blocks: 2001:67c:c48::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 13 Jan 2024 09:45:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ed:6f:42:af:43:7f:98:ea:3e:cc:92:10:68:24:c0:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acf7ab3f1a93e714f3074a05d86fcce2206305a8
Validity
Not Before: Jan 9 08:55:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2219f064f8c40d3561be13e5bc1c6c055ebef219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4e:69:21:ac:06:4d:94:12:df:56:c4:8f:0b:
f1:5e:19:64:69:41:cc:05:4a:39:1c:98:d0:12:f6:
4c:f6:b6:2e:59:95:e8:23:6c:93:b5:51:69:eb:b9:
44:9e:91:9f:d2:09:0b:19:51:1f:ae:1f:5f:e3:a8:
95:61:bd:4a:cd:0c:a1:b8:e3:fa:96:6a:14:4e:a0:
8d:13:b6:6e:74:ce:22:9c:9a:ee:f3:e9:fa:c7:32:
85:82:a3:c6:c3:18:a2:34:86:6f:64:7d:24:c7:d6:
b4:fb:14:79:ee:6d:db:c7:c4:cb:c9:f0:33:e5:4a:
5f:57:a5:c9:1e:c9:62:ae:56:1a:d3:28:49:29:19:
59:a0:e4:bd:1b:84:f0:70:e9:03:6d:e9:09:08:c3:
7c:07:ab:13:bf:37:70:90:8c:a9:c0:14:8c:f6:e6:
08:f7:10:d3:81:f8:d4:be:a2:c6:53:6f:63:c9:08:
b1:cb:32:49:fb:7e:4e:8e:b2:98:c7:dc:71:de:f4:
05:d3:a6:88:62:da:a9:a6:2c:96:0a:54:5a:82:bb:
ba:4e:2d:1e:02:c9:d5:ff:1c:0a:09:0d:cf:e4:1d:
1c:b6:ed:ef:a2:17:06:d2:f3:ad:46:81:4d:96:b3:
b5:27:75:8a:db:cc:b4:30:93:8a:23:74:70:ed:f6:
f0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:19:F0:64:F8:C4:0D:35:61:BE:13:E5:BC:1C:6C:05:5E:BE:F2:19
X509v3 Authority Key Identifier:
keyid:AC:F7:AB:3F:1A:93:E7:14:F3:07:4A:05:D8:6F:CC:E2:20:63:05:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPerPxqT5xTzB0oF2G_M4iBjBag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/IhnwZPjEDTVhvhPlvBxsBV6-8hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/rPerPxqT5xTzB0oF2G_M4iBjBag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c48::/48
Signature Algorithm: sha256WithRSAEncryption
32:60:0f:bf:19:4b:34:d9:99:7e:17:5d:b4:23:f6:49:25:80:
28:d5:9e:ef:62:20:d1:bf:8a:b1:08:f7:d4:da:d3:ce:88:da:
ce:9a:b8:ad:1f:8e:e3:ec:9d:6c:31:5c:21:3d:fd:fd:05:30:
a8:5b:a8:cd:36:1c:f3:ed:bd:2a:df:f1:86:4c:b3:12:3f:08:
f4:13:eb:41:14:9c:be:53:04:ee:ef:eb:bc:54:4b:53:e5:ef:
c0:4c:a3:7f:99:f7:d8:a9:51:40:41:18:e3:83:b2:42:c0:60:
04:c5:f9:bd:4d:89:c6:e0:40:54:40:4f:80:1c:8a:38:20:f2:
6a:ee:60:f1:64:65:2a:0f:9d:26:c3:6b:41:4a:5e:c8:99:a0:
67:df:6d:da:6d:15:18:3f:2c:03:d3:a7:d6:e6:06:f5:36:d6:
c9:af:fe:fa:48:91:14:ee:87:0f:cb:3d:49:f2:e1:d4:7b:d8:
5e:63:e0:f3:7c:7a:31:30:2a:b1:38:f3:5e:17:81:aa:28:09:
6f:60:7e:4b:9e:f6:11:c1:95:ca:3b:7e:cf:6a:4a:bb:0f:60:
51:38:37:7b:54:85:55:13:21:77:3a:55:5c:1a:df:70:16:6c:
46:da:0f:eb:ba:68:7b:05:0f:dd:16:aa:be:e1:b2:a2:57:4c:
7a:4e:4e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:13 2024 by rpki-client on console-ams.rpki-client.org