Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/CjKJWhdEY13E07CcUZCSgKoM92o.roa
File: CjKJWhdEY13E07CcUZCSgKoM92o.roa (raw, json)
Hash identifier: 3/w+xT4yz+ZpFrzKczKe+coeJ3otRFEgn0FTKYzykjs=
Subject key identifier: 0A:32:89:5A:17:44:63:5D:C4:D3:B0:9C:51:90:92:80:AA:0C:F7:6A
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF6F60B0826BF7B975CF0D183AEC6D
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/CjKJWhdEY13E07CcUZCSgKoM92o.roa
Signing time: Sun 01 Jan 2023 15:24:46 +0000
ROA not before: Sun 01 Jan 2023 15:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52153
IP address blocks: 2001:a10:186::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:6f:60:b0:82:6b:f7:b9:75:cf:0d:18:3a:ec:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a32895a1744635dc4d3b09c51909280aa0cf76a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c4:f7:cb:f0:33:70:b1:0b:c1:8e:41:e6:04:
bc:96:13:ee:08:cb:a4:50:be:95:fa:07:cd:2d:b7:
80:c7:7a:32:cf:a6:ed:8f:ac:aa:08:c5:76:8c:b5:
57:54:4c:1e:e1:af:31:b0:1e:ab:cc:7e:6e:03:b7:
20:a5:7c:1c:33:0d:28:3a:c3:14:0c:6d:7a:8f:0d:
eb:c1:33:ac:99:24:54:3b:d0:d3:21:10:20:b1:6b:
00:e9:17:8e:36:08:6e:da:c0:32:04:ae:c0:59:36:
7a:b4:e8:20:e7:6a:fe:76:1f:5a:6b:a3:a5:2c:5c:
07:d4:33:7e:ca:5d:6c:ac:1a:6f:1c:24:2a:88:33:
38:62:15:f9:0f:60:b4:ae:16:91:fe:f8:59:ac:38:
ea:43:b9:70:0e:b5:0b:ba:2b:27:d6:4e:ef:53:e6:
b5:54:d8:36:d6:c3:58:48:9c:4e:2f:10:51:8f:81:
65:b0:7b:b7:e3:ad:95:f1:0a:e2:23:b5:6e:c2:0c:
56:03:a2:9d:26:b1:db:ad:b7:48:09:ae:c6:85:1e:
03:ed:d8:1c:dc:09:32:a9:34:47:e3:42:56:88:1f:
8b:0e:f4:03:4b:c5:fb:c1:b8:49:2d:27:f9:8f:5d:
45:5a:86:1e:dd:b5:63:60:ee:39:a4:4c:c0:75:e3:
f2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:32:89:5A:17:44:63:5D:C4:D3:B0:9C:51:90:92:80:AA:0C:F7:6A
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/CjKJWhdEY13E07CcUZCSgKoM92o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:a10:186::/48
Signature Algorithm: sha256WithRSAEncryption
43:e0:9d:5e:64:29:3b:0d:69:4b:e4:6d:e7:05:df:3a:de:5c:
4e:ec:f4:41:54:c4:94:73:1e:3b:c0:9b:75:59:40:b3:e5:57:
50:58:c1:8b:32:13:fe:89:81:68:60:0d:3c:55:68:7b:2e:b3:
7c:83:e5:d9:e5:f1:3b:08:96:d6:53:32:90:40:7c:fa:01:fd:
8f:bf:10:df:3d:b9:b3:8e:0b:99:d2:fd:57:b9:c9:21:f9:06:
08:0d:03:12:a4:12:d2:f1:20:f5:96:f6:e6:db:bb:65:f1:38:
11:5e:07:6c:40:71:ff:46:f1:90:2b:32:8c:77:25:a5:05:ab:
65:3c:33:44:28:02:2b:15:09:9c:0f:85:c9:31:0a:89:5c:1e:
66:6a:69:b2:81:6c:39:b6:af:3b:1f:7f:27:db:43:d1:eb:34:
32:23:66:d1:b5:c3:88:09:9c:08:6d:90:da:e6:6c:79:fd:9a:
cb:b2:78:19:0a:76:4a:20:ae:8e:6d:24:c8:47:d0:43:ad:b7:
88:6a:54:ab:d7:03:ef:9a:18:50:af:2f:f1:0b:84:a3:d9:79:
9e:ec:af:c3:e8:8f:7f:f4:ea:aa:40:24:3a:b1:1e:5b:1d:d3:
14:cd:65:e3:b6:33:82:e6:9f:0e:cb:c1:8a:c7:3b:0b:75:a4:
67:3d:f0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org