Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/HPdtWH1zKZgjdGim0YDD7D_VUT4.roa
File: HPdtWH1zKZgjdGim0YDD7D_VUT4.roa (raw, json)
Hash identifier: 72ap0MDFElTYDdkpef/JVL23s+ZMbaWkvKmd3cG9Zy0=
Subject key identifier: 1C:F7:6D:58:7D:73:29:98:23:74:68:A6:D1:80:C3:EC:3F:D5:51:3E
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018A17CF6ED0F467D4B21823670F74D536E0
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/HPdtWH1zKZgjdGim0YDD7D_VUT4.roa
Signing time: Mon 21 Aug 2023 11:16:24 +0000
ROA not before: Mon 21 Aug 2023 11:16:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55081
IP address blocks: 2a0d:77c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 23 Oct 2023 18:35:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:17:cf:6e:d0:f4:67:d4:b2:18:23:67:0f:74:d5:36:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Aug 21 11:16:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cf76d587d732998237468a6d180c3ec3fd5513e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:92:f2:57:9b:de:27:ae:10:ab:9f:99:0f:eb:
67:32:aa:92:0d:41:ae:39:28:47:ae:be:37:d1:f9:
06:4a:65:76:db:12:29:0e:db:56:e4:6b:43:26:49:
e7:1b:8e:39:26:77:a3:07:f4:bf:39:e5:ac:c7:c2:
bb:9c:57:f8:7f:2a:8c:49:98:64:2c:f4:d3:f1:7c:
88:34:63:19:17:cf:6f:25:04:66:1d:12:f7:c4:98:
4c:6e:db:ed:f1:9b:a0:50:e9:62:90:f7:63:83:5d:
15:20:cd:60:c3:31:8f:fa:0f:44:56:01:6d:7c:24:
1f:7b:6b:23:b1:7f:39:f1:b2:5f:46:31:b0:aa:df:
95:b3:82:78:08:bf:39:ca:51:d0:f1:6f:17:63:36:
88:b1:17:0f:20:62:62:56:b0:2c:25:34:7d:7d:6f:
18:12:25:d5:66:90:3a:07:ff:49:a7:98:39:23:32:
52:50:41:17:94:39:40:71:52:86:9d:d7:43:2d:00:
4f:55:d0:65:21:14:9b:0e:4f:4d:f0:6b:e4:c3:f5:
8a:84:95:0d:dc:f0:14:67:88:ab:02:82:46:17:aa:
0d:2b:30:48:24:be:cd:ef:99:7b:d5:61:03:91:c2:
ba:ef:7c:0c:22:7c:e6:d3:e1:d8:af:64:d6:2b:58:
a7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F7:6D:58:7D:73:29:98:23:74:68:A6:D1:80:C3:EC:3F:D5:51:3E
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/HPdtWH1zKZgjdGim0YDD7D_VUT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:77c0::/29
Signature Algorithm: sha256WithRSAEncryption
8b:bc:08:05:48:ae:16:dd:02:5f:1d:7b:4a:c7:2f:d4:2b:e3:
b8:e7:5a:3f:83:db:bd:7d:8f:dc:c4:67:0a:39:33:8a:ca:1f:
01:d5:1b:ed:53:97:54:25:1c:67:a3:38:94:fd:0a:fd:8d:1a:
58:3e:00:75:05:17:f0:b3:e6:7d:55:96:a9:ee:c0:c3:05:24:
60:6b:2c:e9:9b:09:5a:68:70:76:d8:80:d7:b9:5b:f8:40:fe:
35:45:f5:97:45:dd:f8:7e:81:36:88:e0:fb:e5:63:6e:25:3b:
98:78:b0:bc:d4:f4:a1:40:12:be:40:e6:6c:bb:d1:8b:a4:09:
4b:00:bb:b3:b7:d4:b7:6e:45:3b:3d:fd:58:1f:0f:e8:21:3a:
f5:be:04:8c:3d:4e:ca:a5:31:fa:ed:b0:e5:f2:2c:d3:8a:27:
41:5d:6d:45:c3:f0:af:67:1e:66:cb:c6:b8:f7:c2:ad:36:4d:
1b:73:41:1f:53:42:f8:be:60:85:51:bb:01:ef:d1:a2:3e:98:
3f:a6:b6:41:5d:49:5e:3c:2d:37:8d:7b:28:39:bc:b6:5e:01:
32:b3:21:fb:46:49:6a:4f:c1:07:78:9a:ab:92:d1:db:5f:f1:
70:4e:c5:aa:b3:0b:f3:04:c5:1a:28:02:17:21:34:da:86:6a:
35:d2:4a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org