Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/6R0svUiuEmBNiW7Kz50Y_i2i2lg.roa
File: 6R0svUiuEmBNiW7Kz50Y_i2i2lg.roa (raw, json)
Hash identifier: XnOb+AH7384us+3z/ad1itj/eqCeXCXbXGIFgksMuyQ=
Subject key identifier: E9:1D:2C:BD:48:AE:12:60:4D:89:6E:CA:CF:9D:18:FE:2D:A2:DA:58
Certificate issuer: /CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Certificate serial: 01856D54080FEA9C220757010955285B756C
Authority key identifier: 3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/6R0svUiuEmBNiW7Kz50Y_i2i2lg.roa
Signing time: Sun 01 Jan 2023 12:35:01 +0000
ROA not before: Sun 01 Jan 2023 12:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200301
IP address blocks: 2001:678:7e4::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:08:0f:ea:9c:22:07:57:01:09:55:28:5b:75:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Validity
Not Before: Jan 1 12:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e91d2cbd48ae12604d896ecacf9d18fe2da2da58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5d:fa:3b:1c:a4:23:12:0b:61:b8:60:c5:9a:
eb:07:e7:0d:b6:d2:aa:5c:c4:e2:16:2a:80:a7:f4:
7b:c7:da:92:36:c0:d0:53:98:35:8c:19:9c:a3:a9:
f2:a2:9a:10:78:9a:ff:05:9f:1f:55:f3:44:fa:ea:
f8:92:72:1a:22:f7:71:54:40:f1:dd:1a:c9:09:88:
63:72:88:cf:7f:7b:59:e4:12:3a:12:d2:77:b6:31:
f1:f6:3d:ab:2b:39:fa:d0:60:7b:b4:53:1d:88:f0:
b5:71:71:8d:45:e9:ba:bc:9e:6e:7b:67:b6:21:ae:
ed:2f:00:45:e7:e0:50:fa:e5:10:65:a0:05:b2:de:
ed:58:16:30:94:9f:3e:e1:2e:71:9e:8f:4e:dd:f8:
c4:48:90:a6:61:9b:06:5f:15:8b:0c:80:8b:99:0a:
e4:02:f9:08:a4:3f:06:f1:90:10:ce:cd:5c:fd:1d:
9e:ab:c2:c3:13:7b:74:3a:8b:37:4f:32:4f:75:de:
a9:b5:1b:a2:60:39:a8:9b:ba:28:95:4d:72:b7:5a:
5c:72:89:0f:15:17:0a:5e:2c:47:68:28:f6:04:3f:
9d:c7:9a:42:39:32:b6:7d:96:82:4b:b8:72:bd:a3:
7d:6b:c0:e0:2f:33:d5:5e:45:47:75:80:f8:c0:d3:
12:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:1D:2C:BD:48:AE:12:60:4D:89:6E:CA:CF:9D:18:FE:2D:A2:DA:58
X509v3 Authority Key Identifier:
keyid:3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/6R0svUiuEmBNiW7Kz50Y_i2i2lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:7e4::/48
Signature Algorithm: sha256WithRSAEncryption
1c:c4:1a:91:60:49:f4:24:a8:a2:58:3b:dd:a9:fc:e8:ba:3c:
12:fb:8c:2d:c8:00:b9:a9:a0:5e:49:5c:97:13:dc:e9:c7:d4:
2c:de:5e:09:bf:ec:91:92:20:87:df:83:5a:e9:bb:7b:d8:f1:
c0:ed:f6:94:10:4c:f9:ae:5d:61:2f:5d:fb:1b:a7:8a:da:d3:
e5:b4:67:b1:f1:97:f4:d2:c6:98:58:df:c0:62:e5:d4:59:2c:
6c:de:f7:0c:0c:c5:a6:23:1e:23:e1:44:46:ea:30:1a:9d:48:
1a:b6:76:e4:04:d3:4f:5f:11:c0:88:46:e3:f4:aa:ff:b0:8c:
ec:00:7f:cf:37:bc:e9:fa:b4:6d:66:8c:87:39:c6:c2:04:ef:
92:f9:25:49:5e:6d:fc:2f:13:6b:c0:38:3b:0d:26:4b:2c:57:
44:28:a0:cc:64:39:14:f8:01:aa:b5:95:0f:75:8b:92:7b:e0:
f3:6a:5c:3c:78:44:5c:d2:48:da:f6:2f:85:99:70:df:19:57:
10:9d:e2:e9:b6:04:39:62:69:4c:c9:e1:1c:da:d7:aa:d5:93:
54:5e:c6:ed:bc:74:06:9c:93:87:b7:d0:66:16:80:56:be:cc:
0d:43:6c:93:db:64:e8:63:b9:60:82:70:88:84:b6:94:d7:45:
aa:42:09:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:34 2024 by rpki-client on console-fra.rpki-client.org