Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/abe331-7d14-4305-97c8-d7c2b48ff0ca/1/cAhcZpHnBHQelefapMybOx8ANVM.roa
File: cAhcZpHnBHQelefapMybOx8ANVM.roa (raw, json)
Hash identifier: POhNjVtqerEy71QBM2q5Q/WTdPlEsjxaSlp/cEPOTiU=
Subject key identifier: 70:08:5C:66:91:E7:04:74:1E:95:E7:DA:A4:CC:9B:3B:1F:00:35:53
Certificate issuer: /CN=dd44be6ba5af12b6f1707853dcdacbda7e42212b
Certificate serial: 018AB3BD87097504C24857D6F34B9D76CFAE
Authority key identifier: DD:44:BE:6B:A5:AF:12:B6:F1:70:78:53:DC:DA:CB:DA:7E:42:21:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3US-a6WvErbxcHhT3NrL2n5CISs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/abe331-7d14-4305-97c8-d7c2b48ff0ca/1/cAhcZpHnBHQelefapMybOx8ANVM.roa
Signing time: Wed 20 Sep 2023 17:57:37 +0000
ROA not before: Wed 20 Sep 2023 17:57:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216460
IP address blocks: 2001:67c:1bbc::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b3:bd:87:09:75:04:c2:48:57:d6:f3:4b:9d:76:cf:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd44be6ba5af12b6f1707853dcdacbda7e42212b
Validity
Not Before: Sep 20 17:57:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70085c6691e704741e95e7daa4cc9b3b1f003553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:10:92:d9:4b:24:08:6f:d2:60:df:c5:67:27:
05:3e:5f:e8:85:d2:c1:e1:59:6d:2f:7f:82:cc:2c:
b3:e4:5f:0f:ff:01:3b:b1:a5:b4:b2:35:1a:cb:9b:
23:fa:3c:94:f3:8e:20:99:dd:a3:ec:27:52:15:71:
11:31:1c:03:77:ec:2d:b5:2f:c8:c8:c7:8a:ac:75:
0b:65:3f:7c:5d:d5:56:61:4f:03:5b:d2:29:1e:48:
59:00:ee:d5:b5:15:a1:a9:b7:f1:a9:da:0f:82:0a:
6a:85:33:c5:ed:b2:74:41:16:ae:34:92:0c:f7:6e:
96:18:b0:ff:2c:5d:91:ac:c7:85:e4:c7:ab:e0:86:
4e:ca:8a:7b:4c:53:79:fb:70:58:25:a1:07:5c:64:
2c:79:0a:50:b7:55:61:9c:c7:2d:14:69:37:98:7a:
c9:d1:6c:6d:4c:d0:c0:99:4e:51:05:b2:8a:09:7d:
bc:5b:23:dd:65:b4:a4:6c:f3:88:24:e9:0f:33:e6:
3e:05:98:75:73:32:ec:ed:67:d7:bb:8b:e8:bb:9a:
3d:c6:0b:bc:ad:60:9e:bb:21:a3:eb:29:99:36:de:
9c:aa:91:a4:3f:79:aa:e5:be:19:74:e0:99:94:4e:
3d:c3:fd:83:29:3d:96:ca:cd:7b:8a:e5:8a:09:97:
4f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:08:5C:66:91:E7:04:74:1E:95:E7:DA:A4:CC:9B:3B:1F:00:35:53
X509v3 Authority Key Identifier:
keyid:DD:44:BE:6B:A5:AF:12:B6:F1:70:78:53:DC:DA:CB:DA:7E:42:21:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3US-a6WvErbxcHhT3NrL2n5CISs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/abe331-7d14-4305-97c8-d7c2b48ff0ca/1/cAhcZpHnBHQelefapMybOx8ANVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/abe331-7d14-4305-97c8-d7c2b48ff0ca/1/3US-a6WvErbxcHhT3NrL2n5CISs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1bbc::/48
Signature Algorithm: sha256WithRSAEncryption
9e:4d:4e:fc:ff:a4:da:f4:4b:f0:c1:c6:68:90:ef:98:fc:e0:
0e:a1:bd:4c:f3:65:77:a6:73:ad:19:ef:3d:8a:1d:58:ba:be:
97:8b:e8:cb:6a:5d:0f:82:26:2b:86:64:98:c9:44:20:b5:f7:
0a:4e:a0:cb:08:b8:a0:a4:c2:bc:6d:56:31:29:aa:53:54:d4:
7f:1a:57:74:8e:11:1b:13:80:b4:ed:07:9d:d6:50:27:ed:a0:
3c:40:22:28:82:8f:9f:52:73:98:65:64:04:85:18:1d:1e:18:
0d:bf:dd:66:86:55:d9:56:e9:4f:99:a2:bc:c2:aa:73:ce:53:
03:cc:02:1b:ba:e4:bc:eb:2d:61:9c:70:a5:34:1f:d9:c8:e6:
0c:70:e9:aa:c9:10:d1:d8:66:93:74:6a:2d:ce:aa:5b:9c:d2:
c1:5e:31:ff:5c:90:83:41:a2:6e:4b:cd:77:39:d7:e5:fe:d9:
ef:33:90:32:1e:e4:6a:39:18:f8:59:80:e2:ff:3b:bf:9b:f4:
a8:0d:a7:21:39:81:06:92:55:c0:da:17:55:78:d7:83:dc:f7:
a2:9e:93:d6:90:07:ce:96:4f:67:b4:1b:b6:cb:14:77:4c:cd:
ad:31:5d:45:4e:14:6a:6c:b3:1d:c4:30:1a:4f:74:e2:1e:25:
8d:ff:f2:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:12 2024 by rpki-client on console-ams.rpki-client.org