Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/c9d523-0bb9-4573-9595-76a3a10a26f2/1/6IaIrRh4JO1h0fQfi59Il22IqlI.roa
File: 6IaIrRh4JO1h0fQfi59Il22IqlI.roa (raw, json)
Hash identifier: xDNq2CMS21JcLtdlwktJPS2qd2WXl3p5IA1gvpAhVJE=
Subject key identifier: E8:86:88:AD:18:78:24:ED:61:D1:F4:1F:8B:9F:48:97:6D:88:AA:52
Certificate issuer: /CN=4dd03a586b978a70aaa82e0958a90152e72679d9
Certificate serial: 018AA809F9DADCE409928E723A4569128540
Authority key identifier: 4D:D0:3A:58:6B:97:8A:70:AA:A8:2E:09:58:A9:01:52:E7:26:79:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdA6WGuXinCqqC4JWKkBUucmedk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/c9d523-0bb9-4573-9595-76a3a10a26f2/1/6IaIrRh4JO1h0fQfi59Il22IqlI.roa
Signing time: Mon 18 Sep 2023 11:25:40 +0000
ROA not before: Mon 18 Sep 2023 11:25:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198468
IP address blocks: 2001:67c:1330::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a8:09:f9:da:dc:e4:09:92:8e:72:3a:45:69:12:85:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd03a586b978a70aaa82e0958a90152e72679d9
Validity
Not Before: Sep 18 11:25:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e88688ad187824ed61d1f41f8b9f48976d88aa52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:aa:cb:af:c7:cc:31:2a:f6:46:d2:de:cc:ec:
99:31:15:e6:29:d7:ed:e5:bb:1c:89:08:1d:68:d0:
2c:54:37:b4:b7:e7:11:45:72:cc:74:50:da:fa:c3:
a9:5e:05:96:c5:a8:84:fe:00:63:22:4a:a1:10:72:
e7:ab:e6:75:5d:0f:0a:c7:3c:ea:42:9e:aa:90:15:
51:b7:18:d2:35:ee:1e:dc:2f:9c:77:84:33:c2:cc:
ff:44:b5:55:d3:76:7c:c7:a3:34:27:31:8a:9e:53:
53:ce:a1:f8:b3:bb:3a:74:28:1f:76:e4:d0:62:d8:
77:6c:9b:7f:52:ef:a6:80:c8:10:13:c0:9f:65:91:
6a:bf:d3:88:f1:07:41:33:73:9e:1d:f5:e9:63:0d:
52:3a:92:f3:f9:d9:8d:a1:94:84:70:ca:8a:78:29:
a6:8e:99:fa:d6:4c:c1:b7:05:0f:50:92:3f:78:ec:
f8:a0:b0:9c:c2:09:68:9a:53:02:72:b4:3d:ee:d7:
84:a6:24:13:5b:7a:4c:fa:32:73:9d:33:cf:fe:34:
db:fc:41:08:d4:8d:b5:17:52:42:0b:59:50:e9:b4:
6b:3e:3f:24:52:07:97:84:9c:9a:22:6b:cf:f9:3b:
12:cd:d1:ef:86:5a:84:b6:7d:74:07:8d:f1:f3:53:
6d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:86:88:AD:18:78:24:ED:61:D1:F4:1F:8B:9F:48:97:6D:88:AA:52
X509v3 Authority Key Identifier:
keyid:4D:D0:3A:58:6B:97:8A:70:AA:A8:2E:09:58:A9:01:52:E7:26:79:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdA6WGuXinCqqC4JWKkBUucmedk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/c9d523-0bb9-4573-9595-76a3a10a26f2/1/6IaIrRh4JO1h0fQfi59Il22IqlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/c9d523-0bb9-4573-9595-76a3a10a26f2/1/TdA6WGuXinCqqC4JWKkBUucmedk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1330::/48
Signature Algorithm: sha256WithRSAEncryption
12:5b:4c:c0:52:c6:1d:4f:a7:46:49:6d:0d:e5:f6:bd:a3:5e:
1b:04:9b:bf:dd:c8:60:44:f5:14:76:3e:f3:16:db:bb:e8:bd:
a1:d9:9c:ac:e4:ec:3a:76:c9:12:34:46:28:68:58:54:b2:d7:
64:77:87:ff:55:3e:6a:2d:8f:3c:8f:a7:b4:91:3c:20:79:e8:
f0:e6:ff:8a:cd:59:c2:b9:e6:37:43:5e:2c:aa:f8:42:dd:60:
ce:3f:03:c0:dc:2b:b4:33:05:ed:ef:b1:44:bf:63:6c:9e:ed:
c7:4c:3e:1a:3d:04:3d:89:18:7f:df:ff:fb:40:db:09:49:21:
e2:62:dc:65:14:80:f7:a5:96:8b:3a:b7:d0:b0:44:46:21:a0:
93:3d:b1:b6:5d:18:ee:00:d1:ef:91:b2:e5:5b:59:1d:45:34:
96:c9:ca:15:d4:c9:34:b4:77:6e:d8:c0:21:16:a9:3d:78:d5:
a3:d0:4b:c0:92:13:76:ae:a7:7c:ff:92:e2:6e:be:7d:47:93:
0c:8b:75:55:d4:79:21:b6:a3:e3:21:10:7d:0a:a0:35:5f:91:
4f:4d:b1:e6:ca:c6:30:c2:96:f7:a4:1f:3f:3e:f1:9c:4f:58:
fa:48:ba:bb:ce:d7:f1:0f:a1:a2:c6:6a:c9:b3:b0:f1:b5:8f:
74:d7:8b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:20 2024 by rpki-client on console-ams.rpki-client.org