Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/HXTMmcdH5NwAjm-DdhUq5dXyL6U.roa
File: HXTMmcdH5NwAjm-DdhUq5dXyL6U.roa (raw, json)
Hash identifier: v3oGe3BxGarpgGCPpXhlryq264ptTzUOvJHA1cHenJM=
Subject key identifier: 1D:74:CC:99:C7:47:E4:DC:00:8E:6F:83:76:15:2A:E5:D5:F2:2F:A5
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA7A8664928460F91DCFCFF49F5CCF
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/HXTMmcdH5NwAjm-DdhUq5dXyL6U.roa
Signing time: Mon 02 Jan 2023 13:45:01 +0000
ROA not before: Mon 02 Jan 2023 13:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35491
IP address blocks: 2001:1a68:15::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:7a:86:64:92:84:60:f9:1d:cf:cf:f4:9f:5c:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d74cc99c747e4dc008e6f8376152ae5d5f22fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:56:75:7e:7b:bb:87:ed:a7:e8:f9:54:c9:9d:
bd:1b:c3:9a:80:0c:f1:fa:39:64:22:c9:b9:62:f6:
c9:00:28:48:ed:22:a8:81:53:df:da:da:86:3b:0b:
8d:5b:f9:4a:b1:19:29:62:e9:31:54:47:37:89:78:
c4:7f:6f:80:87:a8:aa:36:12:82:c6:c1:72:9a:a2:
ad:f5:59:1f:2d:e8:7b:2d:a5:4c:d5:51:97:9e:1c:
83:3c:76:33:fa:2d:6f:09:4e:c5:f2:22:81:71:f8:
60:24:64:e3:48:cf:cb:64:6a:ae:5d:ab:93:a7:9e:
32:74:79:52:19:96:19:9e:1b:7c:4d:e5:d4:dc:af:
bb:c1:73:a7:6b:7b:a0:e6:16:18:82:18:69:1c:0e:
82:ac:42:a0:4b:6b:4a:31:c2:ad:a9:5a:ae:75:3c:
6c:ca:73:da:be:7a:e7:f4:cb:c9:e5:c4:6f:79:ac:
ec:01:9f:0d:b1:6a:3f:d8:f3:38:8f:64:21:05:fc:
24:1c:67:3d:d0:68:a8:25:0b:33:df:cb:0b:e4:b6:
9f:aa:2b:94:06:5a:1e:e6:60:e3:12:8d:11:58:73:
9d:ea:c4:c2:eb:49:4b:b8:1b:26:b7:ad:57:e9:07:
5f:3b:d2:b8:41:bd:2a:c9:c6:3e:14:25:ef:19:d5:
73:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:74:CC:99:C7:47:E4:DC:00:8E:6F:83:76:15:2A:E5:D5:F2:2F:A5
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/HXTMmcdH5NwAjm-DdhUq5dXyL6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1a68:15::/48
Signature Algorithm: sha256WithRSAEncryption
72:b6:88:05:3e:7a:ff:cb:d6:df:1b:e7:2f:7b:e5:29:29:c4:
e7:95:31:fc:97:a1:d2:94:ad:45:c3:8c:f1:00:3b:4a:48:ff:
85:4d:0a:62:51:b4:d1:2d:9a:f8:94:4c:c5:d4:26:a0:54:70:
bd:07:7e:da:b4:0d:64:3a:ce:e9:1d:a1:a6:6f:69:75:70:10:
8f:34:65:64:e9:73:01:6a:ac:c2:bc:65:b5:fc:58:b4:c6:e5:
16:4c:c9:85:95:88:5f:32:fe:b1:b8:5e:ad:96:f5:89:7a:31:
af:3c:a6:e9:ef:43:21:52:b7:66:4a:43:9f:a2:1c:25:12:b9:
ce:dc:c0:42:eb:2b:7a:4a:b1:14:33:17:2e:4b:b7:7a:e3:e8:
fa:0c:53:f3:e3:35:ce:e6:19:f6:79:35:2f:86:b7:52:54:32:
d1:f9:41:03:34:15:50:15:43:2f:26:11:b1:9e:7c:85:1b:63:
24:aa:e4:dc:14:45:bd:3c:29:13:ac:c3:12:af:eb:6d:47:d5:
e2:4e:1c:94:9a:22:c1:1f:af:02:c4:eb:0d:6f:2d:19:04:79:
1d:df:29:a2:93:c0:99:c0:8c:6e:f1:91:af:67:b4:9c:fd:ed:
30:f0:b6:1f:d5:c2:7f:76:5e:b2:33:32:e8:cb:f6:ae:70:2e:
d9:26:56:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org