Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b49460-c42f-4186-a556-b2426736c1e5/1/maP7aYHh1XrwJ7g5FFB-AJF5v9Y.roa
File: maP7aYHh1XrwJ7g5FFB-AJF5v9Y.roa (raw, json)
Hash identifier: i8KaB9lVDlnQSyQ10+k8WTCkGeoYE8olDHoT672aoJ4=
Subject key identifier: 99:A3:FB:69:81:E1:D5:7A:F0:27:B8:39:14:50:7E:00:91:79:BF:D6
Certificate issuer: /CN=c3a3c2bd16f8318bdd9c3eb20a8a8a701f3e27c7
Certificate serial: 018CAD8D768585D2EB4AF4246290CD34F4E7
Authority key identifier: C3:A3:C2:BD:16:F8:31:8B:DD:9C:3E:B2:0A:8A:8A:70:1F:3E:27:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6PCvRb4MYvdnD6yCoqKcB8-J8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b49460-c42f-4186-a556-b2426736c1e5/1/maP7aYHh1XrwJ7g5FFB-AJF5v9Y.roa
Signing time: Wed 27 Dec 2023 23:12:58 +0000
ROA not before: Wed 27 Dec 2023 23:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212123
IP address blocks: 2001:67c:9d8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ad:8d:76:85:85:d2:eb:4a:f4:24:62:90:cd:34:f4:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3a3c2bd16f8318bdd9c3eb20a8a8a701f3e27c7
Validity
Not Before: Dec 27 23:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99a3fb6981e1d57af027b83914507e009179bfd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:65:76:32:bb:c0:84:ee:00:d1:1a:86:28:36:
8b:76:b1:b7:95:0a:6a:d8:0a:02:d5:ef:01:06:f3:
e1:f0:52:83:49:03:0d:fd:f3:19:d4:cc:a4:cd:d7:
27:f3:be:86:b3:a5:a1:81:1a:9d:00:51:ad:9a:73:
10:a8:5a:62:89:16:4e:2c:17:93:26:56:ee:5b:b2:
1a:0e:f9:46:f8:c6:56:ea:73:98:67:7c:42:c5:cb:
c9:46:b4:15:de:dd:e7:3d:d5:f4:30:00:32:c5:60:
14:e9:e5:ea:68:1e:37:20:37:33:f7:b8:58:14:f7:
76:ee:31:3a:4d:6a:d1:17:a0:8f:59:ec:fd:eb:7b:
95:c1:63:e6:dc:36:43:b2:a0:97:5f:e3:2d:b3:05:
a8:e5:4a:86:e6:0c:5b:e7:4c:d2:d4:dc:cc:15:24:
72:9d:d9:24:d2:a6:97:bf:32:92:98:43:11:b0:81:
44:90:6f:cb:87:31:29:fc:69:63:fb:c8:95:01:ab:
aa:64:00:f0:3b:16:b3:ad:10:1d:9f:c7:ef:66:68:
f8:1f:79:5b:45:e8:c9:e4:ba:ba:66:9b:95:96:8b:
fe:da:4b:72:ac:9b:37:6a:73:50:de:6a:39:79:c4:
d0:07:7a:e8:95:6e:f5:81:40:38:d8:34:b6:e9:a5:
e5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A3:FB:69:81:E1:D5:7A:F0:27:B8:39:14:50:7E:00:91:79:BF:D6
X509v3 Authority Key Identifier:
keyid:C3:A3:C2:BD:16:F8:31:8B:DD:9C:3E:B2:0A:8A:8A:70:1F:3E:27:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6PCvRb4MYvdnD6yCoqKcB8-J8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b49460-c42f-4186-a556-b2426736c1e5/1/maP7aYHh1XrwJ7g5FFB-AJF5v9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b49460-c42f-4186-a556-b2426736c1e5/1/w6PCvRb4MYvdnD6yCoqKcB8-J8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:9d8::/48
Signature Algorithm: sha256WithRSAEncryption
ab:50:df:2b:46:cb:fb:1c:1b:d8:28:7a:b9:b4:40:16:a6:c8:
b3:4d:28:a3:ff:74:eb:a5:49:22:4f:65:57:21:8b:3d:0c:89:
e8:d1:d0:59:59:07:56:43:10:89:92:a3:43:d3:53:33:a9:96:
94:9e:33:9c:14:60:a5:71:eb:dc:c9:a2:a6:fa:b5:36:12:35:
12:f1:a9:75:c8:21:dc:5f:6f:0d:9f:6d:2c:1f:ad:5c:16:6a:
39:c3:da:a9:f1:44:15:ac:bc:2e:66:62:ad:49:87:75:14:52:
8c:4f:6d:4f:53:67:e5:5c:dc:6d:22:32:4a:6c:ab:a0:6e:51:
e9:cb:ef:5f:d8:74:7a:44:0a:11:82:0a:36:f4:95:c6:61:97:
81:47:59:49:99:c7:06:0d:ec:94:ac:63:05:25:ce:ef:2c:23:
2b:4b:77:c4:19:19:89:1b:12:80:89:b4:d3:b1:e5:ad:0c:93:
ca:c8:f1:69:85:a3:fc:fa:d3:df:f1:39:74:1c:13:0b:a7:03:
14:da:42:d1:d0:6d:ff:11:0e:24:7c:df:a4:7b:bc:f1:66:ed:
f0:30:ec:0a:d8:01:62:35:c3:0d:98:a4:e1:1b:58:10:65:e9:
fa:a6:9e:1b:b7:d3:c6:db:bb:42:4b:bf:d8:9b:a8:2a:96:5b:
77:9f:fe:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:12 2024 by rpki-client on console-ams.rpki-client.org