Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/0b8951-2699-44b3-9067-d9a40c4d3291/1/I3uy1mojZk873mRjmd8vezeg6Yc.roa
File: I3uy1mojZk873mRjmd8vezeg6Yc.roa (raw, json)
Hash identifier: Np6JLUFRp/9lyhRS1V1CECcKIrZI6GU8touTpYdVQv4=
Subject key identifier: 23:7B:B2:D6:6A:23:66:4F:3B:DE:64:63:99:DF:2F:7B:37:A0:E9:87
Certificate issuer: /CN=cf89cb889f99212e8bf53d06e45d87abb9169506
Certificate serial: 01856F42907B923830418A415C5E79337391
Authority key identifier: CF:89:CB:88:9F:99:21:2E:8B:F5:3D:06:E4:5D:87:AB:B9:16:95:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z4nLiJ-ZIS6L9T0G5F2Hq7kWlQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/0b8951-2699-44b3-9067-d9a40c4d3291/1/I3uy1mojZk873mRjmd8vezeg6Yc.roa
Signing time: Sun 01 Jan 2023 21:35:11 +0000
ROA not before: Sun 01 Jan 2023 21:35:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29663
IP address blocks: 2001:67c:2ac0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:90:7b:92:38:30:41:8a:41:5c:5e:79:33:73:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf89cb889f99212e8bf53d06e45d87abb9169506
Validity
Not Before: Jan 1 21:35:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=237bb2d66a23664f3bde646399df2f7b37a0e987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:26:f3:f7:ee:9b:51:b2:04:7b:ab:b8:14:22:
94:84:d2:7c:37:17:f7:e8:2a:18:e8:37:49:b6:33:
c6:25:2d:da:21:ca:74:da:e8:a2:86:86:ed:02:40:
42:38:76:fb:a8:b8:e7:c5:75:ab:02:0c:74:e4:ed:
e8:a0:61:a0:af:cb:77:0d:47:96:ec:5e:0f:33:5c:
0c:73:3c:a1:05:60:83:bc:28:d5:d3:77:5f:06:3d:
ec:18:32:19:2c:18:53:3c:bc:bc:24:07:1d:72:b4:
45:6c:41:ea:b8:58:16:40:a8:09:53:84:9d:40:de:
a1:3c:e8:30:95:67:66:e1:76:d3:b2:51:51:7f:79:
e1:81:c8:35:33:45:b4:15:00:56:53:15:ad:25:87:
17:ee:38:66:fb:bb:24:f4:a3:a9:5d:b4:ca:89:d8:
cb:c5:1b:a3:81:21:16:3d:c0:2f:bb:58:67:db:9d:
b1:26:44:bc:a7:8d:f9:13:7f:3e:de:39:2e:56:6b:
c1:a2:68:eb:7f:c8:cb:26:f1:2c:1b:59:72:0d:02:
cc:1e:0e:14:a9:5d:3d:6c:fb:0c:4a:fe:7a:63:54:
d6:17:89:98:c4:bb:41:dc:bf:46:0e:c1:fd:c0:9f:
97:4c:9e:c4:d3:9a:aa:30:10:47:2d:2a:e9:30:61:
e3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7B:B2:D6:6A:23:66:4F:3B:DE:64:63:99:DF:2F:7B:37:A0:E9:87
X509v3 Authority Key Identifier:
keyid:CF:89:CB:88:9F:99:21:2E:8B:F5:3D:06:E4:5D:87:AB:B9:16:95:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z4nLiJ-ZIS6L9T0G5F2Hq7kWlQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0b8951-2699-44b3-9067-d9a40c4d3291/1/I3uy1mojZk873mRjmd8vezeg6Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0b8951-2699-44b3-9067-d9a40c4d3291/1/z4nLiJ-ZIS6L9T0G5F2Hq7kWlQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ac0::/48
Signature Algorithm: sha256WithRSAEncryption
34:e8:42:bc:17:81:b8:bd:53:55:7e:78:54:98:10:89:cf:8f:
32:1e:e0:8b:0b:18:a6:c7:40:ea:9b:54:c3:da:6d:d3:c3:cd:
71:47:82:44:b1:f3:22:b7:e7:ad:ec:59:81:45:39:5c:98:17:
48:9c:1f:2b:58:a4:fa:48:f2:31:66:3c:ed:02:c3:ea:93:ff:
6f:d9:a4:e2:d2:be:ff:5f:f8:1d:20:e0:f1:1b:8b:ca:89:ea:
25:c1:c4:67:b1:f9:5f:6d:aa:a5:95:97:2d:98:d4:fc:65:04:
9d:e4:d0:65:61:f8:77:90:ed:7e:95:69:6d:e2:4c:1c:a4:dc:
a6:9d:c1:88:35:df:0e:ef:19:1b:7c:c3:49:c2:71:77:fa:72:
ba:70:22:fe:a6:d6:8f:2d:54:fd:77:df:c8:63:01:6f:21:62:
b5:b1:b3:65:e5:ad:64:d1:ca:7a:76:a6:12:ec:03:6b:1f:a7:
3d:22:7d:1e:9e:8f:b5:60:b1:33:66:78:14:28:5d:03:73:56:
02:b9:25:a2:c9:f3:24:c8:53:bb:d8:c7:ed:93:dd:2d:67:82:
e1:1c:33:10:6e:94:61:46:4b:15:b2:80:37:f0:02:62:db:7a:
ff:ef:a6:6b:d4:70:3e:44:52:21:6f:e4:f0:b7:61:2b:46:87:
e5:2d:6f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:33 2024 by rpki-client on console-fra.rpki-client.org