Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/c9d523-0bb9-4573-9595-76a3a10a26f2/1/xiZmI2GPHyiGE1-McdGAd0GdjWs.roa
File: xiZmI2GPHyiGE1-McdGAd0GdjWs.roa (raw, json)
Hash identifier: 3D7JHVDoiinq9SU0DLeMKDub7/buTFEKe4qwLLDgTFQ=
Subject key identifier: C6:26:66:23:61:8F:1F:28:86:13:5F:8C:71:D1:80:77:41:9D:8D:6B
Certificate issuer: /CN=4dd03a586b978a70aaa82e0958a90152e72679d9
Certificate serial: 018CC86F42433824CFBC58A65DCA3EC0C72C
Authority key identifier: 4D:D0:3A:58:6B:97:8A:70:AA:A8:2E:09:58:A9:01:52:E7:26:79:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdA6WGuXinCqqC4JWKkBUucmedk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/c9d523-0bb9-4573-9595-76a3a10a26f2/1/xiZmI2GPHyiGE1-McdGAd0GdjWs.roa
Signing time: Tue 02 Jan 2024 04:29:43 +0000
ROA not before: Tue 02 Jan 2024 04:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198468
IP address blocks: 2001:67c:1330::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 31 May 2024 18:37:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:42:43:38:24:cf:bc:58:a6:5d:ca:3e:c0:c7:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd03a586b978a70aaa82e0958a90152e72679d9
Validity
Not Before: Jan 2 04:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6266623618f1f2886135f8c71d18077419d8d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d5:5b:5d:1d:47:46:06:07:f0:02:a8:50:e1:
83:e5:01:e2:1e:9e:60:b2:3d:a6:28:35:b9:11:44:
8b:1e:68:22:ff:0c:3f:55:ea:ea:51:28:ab:26:86:
57:88:99:4e:53:8b:92:c6:82:b8:8d:c7:cd:0a:3b:
a7:6a:7b:7e:00:98:57:58:3b:d1:49:4d:c5:0c:0c:
69:ae:3d:95:83:a1:2c:3f:89:42:4b:74:e3:9f:a9:
1d:f8:d0:17:81:54:ff:7b:68:86:46:dd:33:d9:6e:
28:09:1c:fb:db:70:7e:63:f2:28:41:d7:11:97:ee:
15:07:1f:67:bf:a7:f3:f8:b6:92:fd:8f:bd:91:46:
9a:24:4f:28:e5:85:85:08:e0:af:7d:7a:83:48:2e:
30:9d:2c:4d:8f:40:01:f9:83:d0:6c:5d:d4:76:7e:
0f:aa:9d:85:0d:c7:e3:22:f7:d4:ac:6d:fd:26:87:
34:73:82:62:65:2f:c2:44:d2:48:ed:05:b2:02:9a:
2b:46:f5:66:f0:be:0b:e0:e4:a7:e4:93:8d:50:fe:
8f:e9:bc:32:f6:12:11:b6:e1:99:b3:a1:ff:08:bd:
a6:63:2f:5f:b9:b2:0a:b1:69:c1:26:10:53:f3:29:
22:65:a2:2a:da:a5:f9:e6:5e:ac:97:05:9e:00:1a:
1e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:26:66:23:61:8F:1F:28:86:13:5F:8C:71:D1:80:77:41:9D:8D:6B
X509v3 Authority Key Identifier:
keyid:4D:D0:3A:58:6B:97:8A:70:AA:A8:2E:09:58:A9:01:52:E7:26:79:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdA6WGuXinCqqC4JWKkBUucmedk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/c9d523-0bb9-4573-9595-76a3a10a26f2/1/xiZmI2GPHyiGE1-McdGAd0GdjWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/c9d523-0bb9-4573-9595-76a3a10a26f2/1/TdA6WGuXinCqqC4JWKkBUucmedk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1330::/48
Signature Algorithm: sha256WithRSAEncryption
33:2f:89:60:8e:bf:1d:a0:c0:4a:8f:a0:4e:12:af:86:a5:ad:
be:72:ec:69:c6:03:0e:af:14:75:df:52:81:b2:a5:1c:e6:7d:
db:b5:d3:35:9b:43:71:cc:90:16:29:40:39:32:0e:98:1e:8e:
ee:59:de:0a:cd:39:dd:04:d9:3e:96:85:0b:4f:cd:9e:a5:36:
10:3b:29:cf:0c:46:5f:07:f3:d5:29:f9:38:0f:b6:94:4c:5d:
52:a9:12:14:6c:4e:34:e7:8c:87:5b:e2:c3:43:9a:d0:68:32:
55:51:3f:10:73:a6:33:6a:4d:4e:2c:9f:0c:cd:c9:44:61:fb:
4b:ed:a3:b1:4d:01:30:8f:a3:62:04:92:8f:ad:3b:fb:e0:26:
71:60:0d:59:65:ef:2d:34:d7:dd:40:e9:12:59:8d:7b:f6:b9:
78:ea:35:16:76:05:25:96:69:70:50:01:68:bd:31:19:34:5e:
c3:ee:e1:04:cd:dc:fb:8a:0c:b2:b3:8c:45:ac:16:8a:86:10:
1f:9c:b7:fb:ef:ca:41:9f:83:8b:5f:3d:0b:c6:d3:17:07:a7:
cf:05:5a:fb:94:97:eb:f8:15:47:aa:b9:02:a4:14:ca:9d:3d:
de:80:4a:22:2e:de:bb:44:8b:b0:b0:e8:9e:2b:ad:ac:73:20:
5b:1e:0e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:05 2024 by rpki-client on console-fra.rpki-client.org