Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/e85c71-26cd-472b-bd9a-c3f8a8cee9eb/1/8rNWb3T0fEM3bOK8Rth59kcaNzE.roa
File: 8rNWb3T0fEM3bOK8Rth59kcaNzE.roa (raw, json)
Hash identifier: jpYbiBRNBVGNEZvfd0EkXlWO1SbZWPXeOxKKvEgppk4=
Subject key identifier: F2:B3:56:6F:74:F4:7C:43:37:6C:E2:BC:46:D8:79:F6:47:1A:37:31
Certificate issuer: /CN=885bb9b88cf489e80fee61f098e8086811038719
Certificate serial: 018891180B73A380ACDCB5E0932018F885AF
Authority key identifier: 88:5B:B9:B8:8C:F4:89:E8:0F:EE:61:F0:98:E8:08:68:11:03:87:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFu5uIz0iegP7mHwmOgIaBEDhxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/e85c71-26cd-472b-bd9a-c3f8a8cee9eb/1/8rNWb3T0fEM3bOK8Rth59kcaNzE.roa
Signing time: Tue 06 Jun 2023 14:24:12 +0000
ROA not before: Tue 06 Jun 2023 14:24:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198305
IP address blocks: 2001:67c:226c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:91:18:0b:73:a3:80:ac:dc:b5:e0:93:20:18:f8:85:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885bb9b88cf489e80fee61f098e8086811038719
Validity
Not Before: Jun 6 14:24:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2b3566f74f47c43376ce2bc46d879f6471a3731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:fd:49:51:f2:4d:9b:fa:79:e5:ba:55:8e:1e:
fd:50:0e:17:52:11:f4:5a:79:74:c3:3e:e5:74:39:
93:ff:88:a4:19:cd:76:3a:29:d4:3e:cc:e9:5c:60:
2e:b3:fe:92:66:16:98:e6:91:48:c6:ee:54:f3:df:
10:fe:99:7c:83:a5:b8:82:84:bd:15:e6:dc:0c:a5:
7a:3d:47:c9:cf:eb:fc:24:96:de:e0:e5:ea:da:ad:
f8:fc:02:4e:d5:85:b0:c8:bc:6d:b3:4f:cb:e2:0c:
2d:3a:ae:ef:49:8e:40:d4:4f:34:91:22:38:05:be:
a0:77:94:f9:ce:9c:87:1c:f4:f1:27:dd:60:04:64:
82:36:5e:4f:f7:e2:a9:3e:d5:97:25:91:d3:b2:12:
a8:72:d2:ba:c1:ba:a2:3c:2e:99:95:e1:5a:35:74:
9c:36:a4:ad:be:86:a5:e9:f4:5b:08:8b:89:b3:90:
99:e4:0e:80:8e:d7:10:c4:ea:f3:5d:fd:95:8c:59:
8f:d1:0f:b2:f7:e6:2b:3d:ba:d5:6d:85:7e:94:0d:
cb:7a:4a:29:92:81:23:4d:08:e0:27:a7:b6:82:aa:
21:10:e3:26:43:97:b2:a5:5a:7e:1d:f5:bc:f8:bc:
87:d0:6f:07:3b:59:83:20:e6:94:c9:a7:ed:a0:22:
d7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B3:56:6F:74:F4:7C:43:37:6C:E2:BC:46:D8:79:F6:47:1A:37:31
X509v3 Authority Key Identifier:
keyid:88:5B:B9:B8:8C:F4:89:E8:0F:EE:61:F0:98:E8:08:68:11:03:87:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFu5uIz0iegP7mHwmOgIaBEDhxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e85c71-26cd-472b-bd9a-c3f8a8cee9eb/1/8rNWb3T0fEM3bOK8Rth59kcaNzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e85c71-26cd-472b-bd9a-c3f8a8cee9eb/1/iFu5uIz0iegP7mHwmOgIaBEDhxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:226c::/48
Signature Algorithm: sha256WithRSAEncryption
ac:f5:e6:8d:c3:3d:7f:7f:05:69:3a:03:8a:76:87:36:d0:8e:
70:b6:89:1c:0c:33:9f:1e:d3:9b:48:d9:b7:34:00:4a:9c:80:
d8:04:7b:9c:1c:21:68:8d:55:55:51:ef:15:8b:ed:1a:51:76:
bb:8e:90:8f:34:ec:46:cf:cf:87:dc:eb:e8:35:35:26:b4:43:
ee:32:72:db:ce:12:d8:cb:b7:f5:50:26:2b:77:d8:2d:84:1e:
59:c7:4b:68:a6:f6:38:36:ee:ff:41:af:ac:70:c3:c7:c1:58:
d2:b9:e0:da:4d:85:07:5d:cd:d1:74:3d:53:83:f0:08:1d:1b:
a1:4e:96:fd:31:87:ec:28:50:6e:1f:47:48:be:0b:41:2f:e2:
67:8f:83:b1:3f:6b:a9:68:0a:a7:5d:b7:4a:cf:8c:eb:64:12:
72:5f:54:96:97:67:fc:df:8e:5c:59:8f:a3:f9:0e:8a:21:1a:
2a:88:94:55:aa:a1:31:cf:a8:99:dd:a7:7a:a4:bd:ba:0f:48:
5a:74:0f:80:77:0c:68:4f:fc:75:eb:05:05:c4:0a:f3:1d:4c:
3c:4e:37:2c:f5:5f:29:fa:a5:65:70:49:e6:8b:f7:5e:a4:ad:
02:9a:6a:a4:fb:e6:ee:f7:07:a6:f8:9a:b7:a2:c1:fb:58:54:
8c:c1:34:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:38 2024 by rpki-client on console-ams.rpki-client.org