Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/pVeYBhqZlx_UMq8woap6V6flkdw.roa
File: pVeYBhqZlx_UMq8woap6V6flkdw.roa (raw, json)
Hash identifier: CEQ9VCmeIUl6FLHV3vaQdEQXj2Fgub27TDjDT9bmpCw=
Subject key identifier: A5:57:98:06:1A:99:97:1F:D4:32:AF:30:A1:AA:7A:57:A7:E5:91:DC
Certificate issuer: /CN=66dac8a8f314ee879a6aa843b67ea47ab1e75def
Certificate serial: 018BAE5D132FE78180FB45B9EEEF1448B6AC
Authority key identifier: 66:DA:C8:A8:F3:14:EE:87:9A:6A:A8:43:B6:7E:A4:7A:B1:E7:5D:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtrIqPMU7oeaaqhDtn6kerHnXe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/pVeYBhqZlx_UMq8woap6V6flkdw.roa
Signing time: Wed 08 Nov 2023 09:56:57 +0000
ROA not before: Wed 08 Nov 2023 09:56:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52016
IP address blocks: 2001:67c:29c8::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:5d:13:2f:e7:81:80:fb:45:b9:ee:ef:14:48:b6:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66dac8a8f314ee879a6aa843b67ea47ab1e75def
Validity
Not Before: Nov 8 09:56:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a55798061a99971fd432af30a1aa7a57a7e591dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9d:49:2f:8b:ab:76:91:2f:30:0a:9e:e0:a3:
ed:82:43:72:e9:f4:ec:52:34:a0:0f:3e:8a:3f:e8:
14:57:fd:db:75:01:71:94:08:7e:ed:56:2c:79:af:
b6:3b:4a:d8:fd:32:09:2c:4b:4c:f4:a6:16:d8:60:
64:83:2e:b1:aa:88:24:e2:a5:98:06:8f:2c:91:dc:
cd:ca:0b:c7:bb:c9:e4:6a:24:f1:d9:dc:e7:5a:d8:
33:5b:e4:8f:8b:72:70:7a:56:1b:f5:75:27:6d:49:
c8:60:3a:34:a0:71:1c:09:79:1d:1a:9c:47:ed:a7:
98:71:cd:62:87:9c:89:9a:fc:20:d7:54:be:28:c3:
fd:83:fc:19:76:97:37:56:e1:3f:45:52:66:d7:07:
ed:80:d3:dc:ae:78:9b:6c:db:a3:46:0c:42:db:1d:
4d:bb:6c:db:51:df:c0:0a:32:77:e7:04:41:93:96:
3e:98:f5:af:95:1f:02:52:42:8b:57:69:af:56:4e:
0e:b9:6d:e7:06:2c:c4:6e:74:95:b2:82:bc:84:df:
c5:26:9d:71:01:f6:53:66:b7:e2:c7:40:de:f6:48:
4f:a7:db:6f:55:c3:23:8e:79:3f:6e:e7:cc:ba:db:
6e:78:bd:a2:6f:c6:b1:81:53:13:88:e9:5c:fc:b2:
d5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:57:98:06:1A:99:97:1F:D4:32:AF:30:A1:AA:7A:57:A7:E5:91:DC
X509v3 Authority Key Identifier:
keyid:66:DA:C8:A8:F3:14:EE:87:9A:6A:A8:43:B6:7E:A4:7A:B1:E7:5D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtrIqPMU7oeaaqhDtn6kerHnXe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/pVeYBhqZlx_UMq8woap6V6flkdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/ZtrIqPMU7oeaaqhDtn6kerHnXe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:29c8::/48
Signature Algorithm: sha256WithRSAEncryption
a3:32:38:55:99:7f:01:76:fe:d0:2f:6f:37:90:17:b7:c2:4a:
ea:c4:a6:a9:6b:e4:07:62:4c:9a:be:52:d6:9e:fc:df:96:6f:
80:82:04:c0:f3:77:e1:94:d1:48:6b:9d:7b:f1:c8:be:8a:9b:
d2:c1:36:69:c0:51:18:7d:4d:35:6d:b5:32:9f:27:81:1b:59:
12:f2:20:82:c9:c8:20:7b:0e:16:bf:e5:0e:95:bf:ad:89:00:
e7:2c:d0:2c:a5:5d:02:d5:9b:68:98:07:99:1c:ce:3f:2e:11:
67:ce:09:d5:80:74:af:3f:48:d4:ce:be:67:12:ea:6a:bb:9a:
d4:19:90:4a:49:36:b9:07:25:82:89:6b:21:f5:f2:0d:7d:fc:
c3:25:46:46:89:e0:61:c9:0e:d9:44:60:8c:22:c9:e3:e6:0c:
1a:58:c4:fa:f8:40:f0:85:c5:e2:4c:20:82:88:9f:e3:ae:49:
96:49:e9:a7:d6:ca:21:b0:ca:10:7e:8a:1d:dd:f1:6e:1b:99:
68:70:97:3e:29:67:ed:59:1e:2c:d8:97:e9:19:08:e3:18:a2:
fa:7a:54:ee:1b:01:61:a3:ce:4f:2f:85:52:b1:3f:c4:11:8d:
77:39:db:0e:63:a7:d7:96:a9:d5:d1:f0:fd:4c:dc:db:eb:33:
03:4a:20:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:45 2024 by rpki-client on console-ams.rpki-client.org