Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ciRFy6ADZX0NyhZS970wGkBncFA.roa
File: ciRFy6ADZX0NyhZS970wGkBncFA.roa (raw, json)
Hash identifier: ol89iKRQ0IXGbGt38yTpGJJp3GT9BR7Yx0HK3hPIXKg=
Subject key identifier: 72:24:45:CB:A0:03:65:7D:0D:CA:16:52:F7:BD:30:1A:40:67:70:50
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 01865AFBD0A68F25313D86EDD018A7E030BD
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ciRFy6ADZX0NyhZS970wGkBncFA.roa
Signing time: Thu 16 Feb 2023 16:08:17 +0000
ROA not before: Thu 16 Feb 2023 16:08:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 2a0e:e800::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 08 Mar 2023 11:24:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5a:fb:d0:a6:8f:25:31:3d:86:ed:d0:18:a7:e0:30:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Feb 16 16:08:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=722445cba003657d0dca1652f7bd301a40677050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f8:74:97:41:ec:a9:66:9f:3b:67:71:ad:c8:
90:b8:e1:bf:b2:40:e9:0f:ec:b3:11:c5:30:39:77:
e6:e8:91:37:78:54:f5:c4:e6:ee:63:f8:60:49:a4:
d3:2c:96:11:c5:f4:7a:23:03:ff:1d:4f:0e:61:57:
5c:3e:ac:92:cf:23:e3:63:45:cd:53:83:32:d9:de:
2c:e2:63:60:0a:48:da:22:ef:c8:72:52:d3:54:5c:
40:eb:93:9d:a8:a8:37:a6:16:28:de:17:e4:c5:cf:
b1:d4:90:e3:a3:a5:5c:ce:5f:e5:50:e9:5b:34:5b:
60:4c:81:df:ce:03:68:c1:33:f8:49:69:9c:3d:50:
0a:42:c0:d9:88:88:f8:e8:43:8c:ea:63:e1:e8:a2:
da:bc:a2:cf:6f:0a:1e:63:24:93:9e:ad:fc:cc:d8:
66:9d:69:b1:c6:70:e7:75:eb:c8:05:0a:09:b7:59:
8b:fc:4c:c5:d2:00:d0:f5:6b:75:9c:3f:4c:b5:0c:
f2:10:b2:b3:c2:44:ad:46:88:0d:05:8d:55:12:71:
db:88:90:62:8b:89:10:a3:ed:ca:e5:20:11:21:5e:
af:7a:fa:d3:a7:48:0c:06:c9:e9:b8:1e:05:f8:86:
66:0a:94:a7:89:2a:76:15:7c:2b:71:54:8c:64:f0:
bb:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:24:45:CB:A0:03:65:7D:0D:CA:16:52:F7:BD:30:1A:40:67:70:50
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ciRFy6ADZX0NyhZS970wGkBncFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e800::/29
Signature Algorithm: sha256WithRSAEncryption
54:df:4c:a5:40:c6:2a:d8:cf:d6:ca:b6:a4:8c:f8:c3:41:51:
1c:5e:57:87:ee:db:ad:d2:97:3a:42:84:4e:6b:90:1d:4e:a8:
3c:2b:ce:3d:1c:67:c7:5b:5d:9a:d3:61:bc:69:f8:b9:ce:93:
aa:71:17:bd:12:90:54:55:77:42:eb:a2:55:5e:68:1f:f4:61:
0c:bb:17:d6:1d:ec:48:87:44:c7:98:c3:00:c5:82:07:27:84:
f2:4b:d7:7c:77:f2:0f:d6:8f:fd:3e:8b:83:93:55:60:33:74:
e8:19:0f:b1:70:21:73:12:5f:9b:41:c8:ad:94:0d:8a:0a:69:
d2:c2:bb:96:96:fd:93:49:22:9e:f1:5f:b5:46:5c:15:7b:ac:
df:60:dd:6b:59:33:1a:35:f5:5d:bf:6b:b6:40:a3:38:b1:6b:
dd:72:2d:e7:33:e4:8e:9f:b5:a5:6d:36:48:1d:ce:7c:05:6f:
48:1c:03:b8:25:c5:a9:fc:2b:63:2f:d3:50:e4:7e:80:33:20:
b2:a4:4a:79:c8:6d:ca:4e:64:f2:52:9f:51:8c:25:64:ab:e2:
0e:71:a4:17:b2:17:42:78:37:ab:80:8e:e9:9b:df:77:79:44:
24:10:d6:07:4d:81:0e:cb:ba:28:37:44:84:e8:5a:1a:25:7a:
6b:63:79:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org