Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/40b6ab-0bfd-42c1-af4b-d4aa27c1fce4/1/B21lEkKpuJTZTj8lTvDoohUYwno.roa
File: B21lEkKpuJTZTj8lTvDoohUYwno.roa (raw, json)
Hash identifier: 7lmTBdThBifKCgvmn84jHw81o3EtOZl1OD+dHc1q38c=
Subject key identifier: 07:6D:65:12:42:A9:B8:94:D9:4E:3F:25:4E:F0:E8:A2:15:18:C2:7A
Certificate issuer: /CN=c4641332e7e1def2258bfa4d05d78e34fb579297
Certificate serial: 01857E1FF59CADD0F33375141F1CA5CB8FEC
Authority key identifier: C4:64:13:32:E7:E1:DE:F2:25:8B:FA:4D:05:D7:8E:34:FB:57:92:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGQTMufh3vIli_pNBdeONPtXkpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/40b6ab-0bfd-42c1-af4b-d4aa27c1fce4/1/B21lEkKpuJTZTj8lTvDoohUYwno.roa
Signing time: Wed 04 Jan 2023 18:51:41 +0000
ROA not before: Wed 04 Jan 2023 18:51:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200586
IP address blocks: 2001:67c:b64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7e:1f:f5:9c:ad:d0:f3:33:75:14:1f:1c:a5:cb:8f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4641332e7e1def2258bfa4d05d78e34fb579297
Validity
Not Before: Jan 4 18:51:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=076d651242a9b894d94e3f254ef0e8a21518c27a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7d:ca:49:42:0b:53:2a:d9:49:a0:0d:86:14:
5d:2a:6f:12:02:ef:56:ce:a7:c9:21:19:74:b5:c5:
37:b1:d1:04:8b:a2:80:a5:bb:c1:3d:95:98:93:8f:
b3:3e:b2:b4:0b:03:b6:0c:64:cc:f5:1a:24:08:98:
41:94:ee:30:bd:01:7b:2d:d0:a4:51:3a:34:2b:f7:
f8:7e:5a:41:4c:ba:09:52:2b:de:9a:fd:d8:34:a2:
57:6d:b6:e3:e3:b7:b1:3d:2b:f0:d6:9a:c7:72:45:
b1:92:30:74:56:4d:dd:58:19:c8:d6:1f:c6:1f:1c:
b0:1e:71:f9:cd:5f:21:0d:b9:10:30:46:f8:66:b1:
bb:fa:25:cb:96:da:4a:a5:26:81:96:56:2c:bd:8d:
4b:3c:d6:25:5e:f9:85:7c:c7:ad:04:23:5c:70:22:
a0:a9:8f:be:74:5e:e4:50:7f:e9:5e:45:da:85:ef:
91:0a:a5:f6:38:97:ab:4b:75:da:15:f3:e8:94:e4:
ad:ac:d8:48:b0:54:25:db:cc:65:1a:ef:61:7b:6f:
a1:4c:0e:29:25:85:46:01:7a:58:e1:7a:40:fa:ca:
40:3f:ce:f7:60:d9:ea:e7:97:3e:ff:9f:d9:65:ca:
cd:f6:60:43:6a:6a:3c:bd:ec:d8:04:c8:ac:a3:b4:
c3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:6D:65:12:42:A9:B8:94:D9:4E:3F:25:4E:F0:E8:A2:15:18:C2:7A
X509v3 Authority Key Identifier:
keyid:C4:64:13:32:E7:E1:DE:F2:25:8B:FA:4D:05:D7:8E:34:FB:57:92:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGQTMufh3vIli_pNBdeONPtXkpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/40b6ab-0bfd-42c1-af4b-d4aa27c1fce4/1/B21lEkKpuJTZTj8lTvDoohUYwno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/40b6ab-0bfd-42c1-af4b-d4aa27c1fce4/1/xGQTMufh3vIli_pNBdeONPtXkpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b64::/48
Signature Algorithm: sha256WithRSAEncryption
17:bd:9d:87:37:1c:45:80:7f:cc:df:cd:31:1d:2f:9e:7f:a7:
c8:4b:f9:9c:a9:81:f8:b2:5d:9d:50:6d:e2:31:48:58:e3:20:
1d:13:16:1e:8f:c1:81:75:27:e5:ae:25:40:75:2a:b1:32:eb:
4f:43:f7:4e:f5:25:26:1c:44:75:85:80:e7:ed:2f:36:a6:2b:
b7:8b:4e:4b:64:be:55:ff:f9:60:5d:57:81:de:99:4a:3a:a2:
29:db:14:db:cb:72:86:77:ec:6a:08:88:ca:89:3f:39:71:9d:
b4:17:58:56:6d:e6:3e:a1:f4:81:55:7e:67:1d:dd:b0:f8:44:
9e:63:0d:34:b0:cd:e2:05:ea:c8:d6:a6:0d:79:5d:64:64:0c:
64:11:40:33:c1:73:c9:d4:cb:8b:f4:7f:f8:c3:82:d2:fa:e1:
4e:f7:11:74:2c:0e:e7:21:f3:e5:2e:90:a5:ee:e2:7a:8f:d0:
86:a7:06:28:3c:d2:4d:0a:15:a8:5c:d7:12:d7:82:79:a6:52:
44:55:35:d7:46:14:ff:52:2c:04:df:fb:60:98:4e:51:47:e6:
9b:a2:e7:a3:b0:ce:3f:e9:68:cc:bf:ef:86:ae:73:3c:b3:86:
9c:c6:c8:5c:74:d7:77:82:ed:86:f9:cd:d5:0b:1a:f7:2e:74:
9c:f9:3a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:50 2024 by rpki-client on console-ams.rpki-client.org