Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/abe331-7d14-4305-97c8-d7c2b48ff0ca/1/OEaKQ8j_1ky5O2YticFskDz9O4c.roa
File: OEaKQ8j_1ky5O2YticFskDz9O4c.roa (raw, json)
Hash identifier: gborhmcaj+MCByom8OxLTRF/59JfqjJqnwxcmTbisUU=
Subject key identifier: 38:46:8A:43:C8:FF:D6:4C:B9:3B:66:2D:89:C1:6C:90:3C:FD:3B:87
Certificate issuer: /CN=dd44be6ba5af12b6f1707853dcdacbda7e42212b
Certificate serial: 018A94CBAAB700214CF6D4599CB8783C1CEA
Authority key identifier: DD:44:BE:6B:A5:AF:12:B6:F1:70:78:53:DC:DA:CB:DA:7E:42:21:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3US-a6WvErbxcHhT3NrL2n5CISs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/abe331-7d14-4305-97c8-d7c2b48ff0ca/1/OEaKQ8j_1ky5O2YticFskDz9O4c.roa
Signing time: Thu 14 Sep 2023 17:44:50 +0000
ROA not before: Thu 14 Sep 2023 17:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216460
IP address blocks: 2001:67c:1bbc::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 20 Sep 2023 17:55:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:94:cb:aa:b7:00:21:4c:f6:d4:59:9c:b8:78:3c:1c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd44be6ba5af12b6f1707853dcdacbda7e42212b
Validity
Not Before: Sep 14 17:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38468a43c8ffd64cb93b662d89c16c903cfd3b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a5:d7:67:1d:31:84:dd:8c:34:cb:c5:ea:c8:
4f:26:b8:dc:85:07:ca:f9:b6:f3:29:d3:ef:92:b4:
e1:44:30:8a:2f:2c:11:de:2a:be:fe:73:70:9e:d3:
a0:a2:10:1f:21:7d:e5:bb:0c:3f:90:af:16:2c:46:
a7:ea:04:13:be:6d:9a:97:d6:cd:1c:f7:a1:be:d5:
db:07:90:4b:10:0e:22:ac:58:43:63:a0:f6:20:de:
a7:68:75:57:8c:a4:57:74:9d:0b:4c:57:86:47:ea:
4a:42:78:49:71:6e:82:e6:ca:d9:f1:26:22:d0:61:
26:10:f0:f3:8a:5c:0c:b3:b8:5a:e7:d2:69:74:c0:
91:b0:82:20:f6:98:1b:03:92:71:ba:ea:7d:2c:eb:
de:d3:56:6a:8b:a6:10:18:3a:5a:3e:bc:60:e4:b6:
11:86:98:36:4e:ed:99:6a:30:63:f0:03:cd:bd:62:
25:6b:a5:be:04:c2:1d:d2:39:04:f2:6a:bb:0b:90:
44:86:15:04:08:3b:54:5a:a6:81:e9:d4:96:1b:25:
fd:5a:7c:37:99:0b:6d:93:a5:15:e2:55:2b:da:92:
81:fc:95:7b:58:70:72:c5:d1:ac:bc:03:90:00:c4:
98:55:78:21:71:25:a5:88:ca:1a:de:7b:e8:49:ec:
94:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:46:8A:43:C8:FF:D6:4C:B9:3B:66:2D:89:C1:6C:90:3C:FD:3B:87
X509v3 Authority Key Identifier:
keyid:DD:44:BE:6B:A5:AF:12:B6:F1:70:78:53:DC:DA:CB:DA:7E:42:21:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3US-a6WvErbxcHhT3NrL2n5CISs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/abe331-7d14-4305-97c8-d7c2b48ff0ca/1/OEaKQ8j_1ky5O2YticFskDz9O4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/abe331-7d14-4305-97c8-d7c2b48ff0ca/1/3US-a6WvErbxcHhT3NrL2n5CISs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1bbc::/48
Signature Algorithm: sha256WithRSAEncryption
16:aa:25:2c:d2:c7:0d:bf:08:91:0a:e7:0e:84:3b:c8:e0:3f:
25:0a:a4:25:5e:c7:f2:45:9e:eb:94:c9:38:74:41:0d:c5:95:
84:78:76:8f:47:29:27:2e:42:f0:f2:66:17:73:8a:30:f5:79:
9b:e7:fd:7b:83:ad:ce:6b:eb:25:0f:5a:0d:98:a0:72:54:c7:
67:76:c3:63:a0:18:3a:2f:bb:90:aa:00:ff:ff:07:22:25:35:
81:b3:35:2b:3d:ff:b4:5a:23:0e:f8:98:89:fc:df:c1:9e:e1:
93:a7:72:41:8b:4f:b8:dd:08:59:ae:63:a5:75:0e:6e:59:9c:
13:54:d9:ba:ef:6a:a9:b5:f6:30:be:2d:d7:fc:65:e5:b8:8f:
5c:cd:9f:8b:42:e9:8f:10:c8:e7:40:78:09:82:4d:59:9b:67:
3a:45:d3:3d:94:b9:65:af:97:89:33:bb:af:33:df:7d:b7:5a:
b7:36:5e:17:a3:af:72:8a:59:27:54:c0:02:89:8f:17:93:c5:
b4:fe:ce:92:34:55:c8:a3:20:85:4e:6c:50:b7:be:51:bf:17:
f7:d9:1c:f8:fb:ac:b6:66:2f:b3:11:44:d2:ea:92:df:5c:12:
2d:bb:1f:a7:30:a8:ac:2a:2a:02:fd:52:27:9a:0a:7b:5a:80:
7c:e7:dc:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:35 2024 by rpki-client on console-fra.rpki-client.org