Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/AvlVDFVD-wWUim2Cq_bBaXT4Vv8.roa
File: AvlVDFVD-wWUim2Cq_bBaXT4Vv8.roa (raw, json)
Hash identifier: yYzctMpdQsrMhbnBGmMdBKz9EudjScFw9hl8e+I0RIY=
Subject key identifier: 02:F9:55:0C:55:43:FB:05:94:8A:6D:82:AB:F6:C1:69:74:F8:56:FF
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA84CF7C4579501FF2CB28ED08EB68
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/AvlVDFVD-wWUim2Cq_bBaXT4Vv8.roa
Signing time: Mon 02 Jan 2023 13:45:04 +0000
ROA not before: Mon 02 Jan 2023 13:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198430
IP address blocks: 2001:1a68:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:84:cf:7c:45:79:50:1f:f2:cb:28:ed:08:eb:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02f9550c5543fb05948a6d82abf6c16974f856ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4b:b9:21:37:17:9c:b1:f3:8b:f4:85:a5:be:
0b:a6:dd:e5:ad:4e:f5:d8:6c:9e:ef:94:1e:d9:e8:
33:d5:54:22:3d:1e:83:1f:80:4b:67:51:af:20:8f:
e6:8c:7f:e1:ad:c5:17:27:3e:02:0e:6f:e5:84:6f:
3b:a8:ad:b7:d4:3e:ee:b5:6e:cc:d9:9e:eb:fe:0e:
3e:84:86:f1:87:bd:b3:bd:cb:71:fc:2e:3b:0d:2c:
de:ba:79:e6:2f:ae:4a:b5:cc:b6:58:1a:4a:4a:eb:
6c:ca:95:d0:b8:b8:e6:24:02:e9:e0:fd:40:b4:fb:
93:07:ca:85:d9:fa:79:44:ef:40:9e:f7:3f:4b:35:
1e:a4:2e:98:9e:22:77:2b:d6:6b:31:5f:ee:c4:3d:
77:ef:74:96:1d:89:71:18:4e:c1:8e:b8:6d:17:b6:
21:ef:0e:ac:90:6c:f5:00:8b:26:2d:7b:25:d1:95:
72:8d:d1:7d:3f:00:3e:be:e6:fe:4e:69:09:cc:9d:
da:40:62:c5:6f:57:28:da:71:4d:c4:3b:f2:23:54:
6b:c2:23:ad:43:a2:49:52:a8:52:9c:d6:80:2a:aa:
f9:cc:83:88:78:ec:b9:35:0c:66:60:ed:7c:20:7f:
63:e7:5d:a6:f7:fa:a9:c9:2d:39:a6:58:61:cd:e4:
ae:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F9:55:0C:55:43:FB:05:94:8A:6D:82:AB:F6:C1:69:74:F8:56:FF
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/AvlVDFVD-wWUim2Cq_bBaXT4Vv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1a68:2::/48
Signature Algorithm: sha256WithRSAEncryption
23:15:86:76:73:ac:b5:40:bd:10:33:a6:c6:f0:63:cb:ec:df:
cd:02:39:28:5a:06:37:55:1d:c3:b0:bf:ea:4c:58:89:98:cd:
94:09:17:a7:25:43:7a:85:5b:36:86:8e:ce:43:21:7e:82:f7:
bd:a4:4e:4a:24:b3:57:1f:6d:65:c0:35:f8:78:30:4a:8b:71:
67:f7:92:b7:f1:e5:a2:45:1e:2f:eb:2e:d4:0f:50:55:8e:78:
10:d8:31:25:e3:31:f0:d5:53:d3:0c:17:8c:86:dc:5a:53:42:
cb:07:1c:90:07:2b:c0:03:b8:8a:7e:df:2c:c3:70:55:e5:11:
5a:8f:e1:43:f1:46:e9:c8:3d:06:ae:78:0b:a0:30:92:f8:d2:
aa:4a:1b:9d:f7:3b:89:17:70:ce:15:b1:d9:bb:12:a7:42:37:
5a:65:66:09:a5:ab:c9:a4:57:7f:99:59:9c:ad:c2:92:f1:22:
3a:09:53:00:13:ae:1d:34:db:d7:66:53:0b:93:d3:de:82:6e:
f5:67:22:43:4f:22:46:a1:4a:b7:73:aa:6f:de:90:cc:46:36:
68:22:ef:0f:e4:ff:33:ee:d9:dc:b4:5e:2b:21:cf:35:74:dd:
0d:9a:22:e8:ea:f1:03:7c:6f:b5:6d:64:70:73:51:7f:9c:7a:
be:e0:20:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org