Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/Simple/2/323030313a6466323a343563313a3a2f34382d3438203d3e20313531313838.roa
File: 323030313a6466323a343563313a3a2f34382d3438203d3e20313531313838.roa (raw, json)
Hash identifier: o2WNGOkYnvzchVhOYMmYFfLIbizMPOxB2EAQtRzxiz8=
Subject key identifier: 97:88:60:53:12:47:6E:BC:6C:3F:AA:92:13:45:EF:14:0C:15:51:91
Certificate issuer: /CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9
Certificate serial: 60CD0E08F36D777346AC89A184A26B036EC88CF0
Authority key identifier: 70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer
Subject info access: rsync://rpki.co/repo/Simple/2/323030313a6466323a343563313a3a2f34382d3438203d3e20313531313838.roa
Signing time: Mon 09 Oct 2023 04:42:12 +0000
ROA not before: Mon 09 Oct 2023 04:37:12 +0000
ROA not after: Mon 07 Oct 2024 04:42:12 +0000
asID: 151188
IP address blocks: 2001:df2:45c1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 22 Mar 2024 15:08:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:cd:0e:08:f3:6d:77:73:46:ac:89:a1:84:a2:6b:03:6e:c8:8c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9
Validity
Not Before: Oct 9 04:37:12 2023 GMT
Not After : Oct 7 04:42:12 2024 GMT
Subject: CN=9788605312476EBC6C3FAA921345EF140C155191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f1:5d:c9:ec:47:d6:0f:f0:57:13:e3:3b:a4:
6d:2c:c0:c2:34:c2:83:90:b5:3a:64:ea:31:cc:96:
b2:6d:f1:14:06:1e:a1:ea:1e:7e:0d:9a:79:7e:f2:
2b:55:ea:5a:ab:d6:e1:fe:fc:40:18:81:b3:f5:75:
56:42:83:e2:f6:b8:ba:c8:b4:4b:09:47:34:29:a5:
40:f4:2d:49:d0:cb:ef:04:25:4c:ed:5c:a4:ea:9d:
20:d2:32:e3:88:2b:ea:37:74:54:84:5b:79:2c:36:
05:d6:60:58:03:7c:56:db:99:f8:a7:3a:fb:44:a9:
f2:5c:e1:2a:96:31:cc:18:2d:a5:44:bf:c0:ca:70:
0c:74:c7:e5:17:29:46:62:44:42:6b:77:77:cd:19:
d3:b1:33:38:1b:83:c8:97:e7:c8:f9:1c:5d:c2:83:
0b:20:5c:30:d1:87:c4:88:af:15:44:03:1a:14:c7:
64:3a:67:ce:85:12:82:49:2d:f0:ca:51:d5:02:46:
99:f1:03:bc:7c:f5:7c:5b:3f:be:8f:c2:43:e9:df:
14:26:dd:54:3d:a8:fc:29:41:91:31:95:df:08:1c:
b3:62:31:c3:77:f0:de:9c:cc:9c:18:76:24:74:b7:
20:a4:19:7f:49:bd:41:49:4f:49:d6:e2:f7:bb:af:
dc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:88:60:53:12:47:6E:BC:6C:3F:AA:92:13:45:EF:14:0C:15:51:91
X509v3 Authority Key Identifier:
keyid:70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/Simple/2/323030313a6466323a343563313a3a2f34382d3438203d3e20313531313838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df2:45c1::/48
Signature Algorithm: sha256WithRSAEncryption
67:d7:31:f0:f1:cd:7d:44:95:54:c2:b3:b2:bc:5b:fd:69:f7:
77:d6:1d:f0:ce:1f:cd:4b:a9:ca:f8:f2:3e:99:46:f0:0a:1c:
de:cb:a6:f8:3a:12:8f:57:c3:e6:4d:fd:90:94:c4:6b:51:35:
82:a3:67:80:0a:fb:fb:2b:3a:e7:d8:ce:12:e7:7f:72:28:ee:
f5:ce:99:6b:cb:f0:cb:c3:8a:cb:5d:7a:04:01:36:88:d0:68:
0b:4f:74:36:e7:61:03:c1:ee:37:c0:81:5d:e9:52:7e:ee:c9:
96:9e:66:b0:da:83:fa:75:bb:b6:91:f1:02:00:2b:12:74:4d:
79:38:de:5a:25:52:98:cd:b9:4c:3c:f0:87:75:b4:30:a2:cf:
ab:7f:a9:73:2c:ae:4e:34:66:59:a2:c9:bd:dd:80:ca:0a:07:
38:66:10:5a:f4:77:3d:a9:ce:75:fe:f9:ee:9f:c9:7f:98:af:
bd:1f:9c:0a:9e:c1:b0:bc:6e:a7:09:4d:88:54:a9:cf:7d:12:
31:c4:b2:7a:17:74:d1:b2:a1:ba:a1:69:df:27:19:71:eb:11:
fe:99:8a:b6:70:0a:ad:2e:b8:13:51:ed:57:da:93:ee:63:5c:
da:e6:f0:73:51:c8:a6:52:dd:6c:3e:24:35:db:9e:08:f3:15:
7d:27:5d:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 22 18:41:50 2024 by rpki-client on console-fra.rpki-client.org