Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/wOpJfyyD1tPEXj2gso_6e7O1rnA.roa
File: wOpJfyyD1tPEXj2gso_6e7O1rnA.roa (raw, json)
Hash identifier: 9PGWmGaTg61RALWv/KrxOqktnCbqPakYb6PVbZojJVo=
Subject key identifier: C0:EA:49:7F:2C:83:D6:D3:C4:5E:3D:A0:B2:8F:FA:7B:B3:B5:AE:70
Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0
Certificate serial: 0190B0F577D1930B5897A0CCCF6AC90D0E7D
Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/wOpJfyyD1tPEXj2gso_6e7O1rnA.roa
Signing time: Sun 14 Jul 2024 11:16:35 +0000
ROA not before: Sun 14 Jul 2024 11:16:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214534
IP address blocks: 2a14:67c1:200::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 18 Jul 2024 18:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b0:f5:77:d1:93:0b:58:97:a0:cc:cf:6a:c9:0d:0e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0
Validity
Not Before: Jul 14 11:16:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0ea497f2c83d6d3c45e3da0b28ffa7bb3b5ae70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b9:11:32:7f:17:ec:95:60:3b:92:95:2c:90:
d7:e9:50:dc:5e:f9:96:3d:77:ac:8e:99:75:84:2a:
5a:35:56:8d:90:29:ea:cd:24:a6:55:5d:f6:58:c1:
39:db:a1:71:e3:56:99:f9:53:05:b3:6d:43:e0:d4:
88:e0:ec:e6:d1:70:11:b6:65:ec:6d:ab:8c:50:2e:
07:ff:f5:68:e2:de:09:6f:38:6d:c4:12:b1:e8:44:
6c:9c:29:8d:e9:97:da:d3:4a:7a:e7:05:d5:59:fe:
4c:bc:a7:86:55:76:20:2e:a7:23:5f:76:94:bb:71:
ef:c3:ca:75:e0:af:dc:27:ff:00:0d:52:a6:91:e6:
1b:a3:c2:52:34:fb:6a:d5:74:20:7c:dd:e6:6d:ed:
6f:43:3c:c1:64:13:ea:c9:42:3b:85:73:50:55:e6:
18:d8:49:a3:28:6e:bb:cc:ca:08:22:dd:82:cf:10:
72:ed:16:ea:c3:6b:72:bf:fb:77:6a:79:a8:92:bf:
18:8d:09:8e:c1:f5:57:08:b0:06:10:04:77:2f:f3:
f0:d1:dc:7c:23:9e:b8:9a:a1:87:61:fa:a9:71:bb:
72:35:5b:8e:1c:56:3b:43:f4:51:ac:3a:b7:b9:70:
17:07:5f:8e:96:46:f5:42:d2:b1:bd:ac:93:e4:24:
12:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:EA:49:7F:2C:83:D6:D3:C4:5E:3D:A0:B2:8F:FA:7B:B3:B5:AE:70
X509v3 Authority Key Identifier:
keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/wOpJfyyD1tPEXj2gso_6e7O1rnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:67c1:200::/40
Signature Algorithm: sha256WithRSAEncryption
ae:24:1c:5b:d6:60:cb:22:bd:69:61:11:dd:0b:e2:ca:6d:77:
f4:eb:88:36:2f:08:de:55:28:39:77:7a:10:77:99:8a:95:5a:
a5:58:69:ba:d7:8c:13:e5:4a:da:7c:e0:73:a9:e1:bc:c8:9b:
9a:a7:84:fc:02:b1:58:43:88:f5:02:ab:b1:0f:d3:8a:1c:9e:
c4:3b:dc:cc:a0:ec:a5:a8:df:59:36:c6:f5:ec:8a:10:33:87:
c0:4a:0b:6d:e4:d7:6a:7a:1f:fd:bf:18:09:d8:48:74:9d:49:
2a:cb:2f:d2:a2:c8:e2:55:f6:70:0e:11:0f:73:3f:48:12:da:
80:c1:3b:1d:02:a2:78:14:52:bc:ff:dd:b1:33:e3:a8:7c:91:
04:bd:43:95:eb:ad:f5:e9:91:0c:98:96:e8:38:70:26:51:24:
d0:da:4c:41:21:a2:26:48:da:fb:29:a7:c2:10:9b:fe:fb:b4:
63:35:44:42:4c:50:44:53:63:35:3a:6b:46:68:9a:62:9a:1d:
5f:8a:cb:af:98:bd:00:a5:67:c6:0d:b9:98:af:2e:61:06:ae:
9b:bd:0b:78:41:a8:39:41:e0:e7:77:98:a3:80:ce:0c:36:75:
59:3b:65:6c:8d:98:bf:a4:5d:ff:76:fe:fa:aa:c1:80:28:4f:
45:da:2e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 20:10:51 2024 by rpki-client on console-fra.rpki-client.org