Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/t0EtwZ9CpGeQO_IVGKLJe7e_7mY.roa
File: t0EtwZ9CpGeQO_IVGKLJe7e_7mY.roa (raw, json)
Hash identifier: X9Lf+2Ix0mAKFp72yyBoltnmilPy2L8HAXKMXm3YQ0k=
Subject key identifier: B7:41:2D:C1:9F:42:A4:67:90:3B:F2:15:18:A2:C9:7B:B7:BF:EE:66
Certificate issuer: /CN=6693f2b04eb85b6a2a6e21c03cfbb77287a45aff
Certificate serial: 0189EF734E77EAF1EF781D5E87A28B717B6E
Authority key identifier: 66:93:F2:B0:4E:B8:5B:6A:2A:6E:21:C0:3C:FB:B7:72:87:A4:5A:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpPysE64W2oqbiHAPPu3coekWv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/t0EtwZ9CpGeQO_IVGKLJe7e_7mY.roa
Signing time: Sun 13 Aug 2023 15:10:58 +0000
ROA not before: Sun 13 Aug 2023 15:10:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44227
IP address blocks: 156.67.15.0/24 maxlen: 24
2001:67c:978::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ef:73:4e:77:ea:f1:ef:78:1d:5e:87:a2:8b:71:7b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6693f2b04eb85b6a2a6e21c03cfbb77287a45aff
Validity
Not Before: Aug 13 15:10:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7412dc19f42a467903bf21518a2c97bb7bfee66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:66:86:9b:32:12:3e:2a:2f:17:11:99:5c:2f:
57:90:cf:74:4e:6f:ba:95:42:d1:bb:64:de:c3:1f:
97:d8:dc:2f:4c:ee:4d:21:64:1b:96:19:aa:a6:d3:
82:10:80:fe:c3:5f:7c:c2:17:04:47:b1:9f:53:f9:
6a:60:45:64:52:53:b1:af:05:4b:12:be:4b:16:90:
90:d8:af:50:2b:50:84:2f:46:ef:03:5b:0c:eb:1d:
7a:ea:ec:5b:5c:20:20:a5:a4:21:74:57:78:da:57:
6a:26:53:6f:38:80:38:a1:57:ad:49:f7:41:65:eb:
2d:b4:f8:4c:a4:d9:08:e4:88:09:40:bb:76:2b:26:
23:b6:b5:80:af:d1:15:4a:78:8e:72:6a:13:bf:30:
8d:59:53:2f:bb:ed:34:74:4d:b3:72:63:f7:53:34:
f9:84:18:ea:c4:ee:fb:c2:9e:53:76:29:d4:e4:87:
a8:f0:44:eb:ac:ca:de:7f:fb:82:0e:83:da:2c:54:
8f:0e:d4:b8:bf:28:2a:c1:ae:91:67:04:9b:71:f4:
4e:9a:b1:7c:7f:92:34:5a:11:95:84:c8:54:f6:a1:
cb:6c:1a:8c:d1:ba:ec:58:78:28:5c:66:b0:62:16:
92:c4:31:36:5a:d6:85:79:6e:e3:9b:68:9d:cc:7a:
90:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:41:2D:C1:9F:42:A4:67:90:3B:F2:15:18:A2:C9:7B:B7:BF:EE:66
X509v3 Authority Key Identifier:
keyid:66:93:F2:B0:4E:B8:5B:6A:2A:6E:21:C0:3C:FB:B7:72:87:A4:5A:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpPysE64W2oqbiHAPPu3coekWv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/t0EtwZ9CpGeQO_IVGKLJe7e_7mY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/ZpPysE64W2oqbiHAPPu3coekWv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.15.0/24
IPv6:
2001:67c:978::/48
Signature Algorithm: sha256WithRSAEncryption
3c:c8:fa:7a:0b:ae:b8:7d:76:57:cf:d5:6c:19:c4:34:62:db:
a5:12:cb:75:ff:48:ea:1e:92:2b:a7:52:8a:4a:ac:bf:14:53:
5a:6c:a4:2c:de:7e:18:c8:eb:1a:c0:c8:65:c5:11:56:25:0a:
43:63:e5:fe:64:cb:c5:7c:5a:4f:f1:2d:54:cb:74:fa:cb:03:
d9:d8:46:ef:9f:9f:bd:a1:be:33:30:9d:99:2b:2f:c4:1d:47:
36:ba:7d:ad:5e:ed:ca:a0:57:44:f3:31:09:ac:54:61:cf:76:
55:35:e0:da:a9:3d:37:69:8a:bc:28:89:79:2a:be:d1:fe:34:
65:4f:ea:d1:04:71:0e:a1:14:74:d0:34:ae:03:df:ad:56:07:
d0:c9:95:76:14:ba:e2:cb:29:a2:04:6d:2f:c4:6d:c2:10:32:
1d:23:70:02:a7:6c:56:c5:cb:67:dc:e8:83:a2:67:95:71:40:
b0:ec:de:1b:38:99:09:02:cf:f2:9e:b8:f8:67:34:ea:f5:1b:
c7:e6:0f:bc:91:0f:c1:d9:d6:85:fe:e9:e6:b4:09:9b:36:ac:
eb:54:f2:c0:0e:bf:3e:23:6e:2c:6e:34:9d:07:30:13:67:56:
20:0b:b0:95:fc:54:76:63:ad:cf:38:5b:76:7a:96:c7:60:4f:
3d:a5:08:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:31 2024 by rpki-client on console-ams.rpki-client.org