Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/IBCR1MRPFLehdMpyQ46qJgmv1P0.roa
File: IBCR1MRPFLehdMpyQ46qJgmv1P0.roa (raw, json)
Hash identifier: iO9/u2kuo8EHl6Wt7VLUKPu9T88TKniTXTTMMBwLiCw=
Subject key identifier: 20:10:91:D4:C4:4F:14:B7:A1:74:CA:72:43:8E:AA:26:09:AF:D4:FD
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 018C64BC874E871013771A6578870B7DA103
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/IBCR1MRPFLehdMpyQ46qJgmv1P0.roa
Signing time: Wed 13 Dec 2023 19:52:06 +0000
ROA not before: Wed 13 Dec 2023 19:52:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62349
IP address blocks: 2a0a:6b40::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:64:bc:87:4e:87:10:13:77:1a:65:78:87:0b:7d:a1:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Dec 13 19:52:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=201091d4c44f14b7a174ca72438eaa2609afd4fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0e:5b:44:2f:14:e9:a2:af:16:73:98:51:3a:
20:b0:bf:a1:66:1d:79:24:03:da:08:11:2e:89:04:
b2:fb:01:c0:32:4f:37:8f:24:08:74:f2:83:4f:0f:
e5:1d:6f:c0:8c:05:50:06:c6:de:6d:24:7a:b2:9c:
e5:28:e3:fb:db:ff:06:23:8a:93:b4:76:dc:93:16:
28:37:e8:8c:c2:7d:2d:19:af:7e:5f:31:88:13:52:
83:75:3e:00:b5:e7:88:a5:3f:d5:f0:24:74:1e:06:
2e:59:53:7a:79:8b:dd:ce:18:a0:f0:0e:13:61:ed:
62:0f:67:87:05:1a:f2:cf:09:07:3d:ae:1d:86:b0:
4f:33:1d:8d:5a:98:f7:14:03:f0:b5:25:59:77:25:
7e:6c:49:d6:39:70:99:c5:4a:6f:19:54:60:7b:f8:
29:32:7a:6c:34:6d:9b:b2:62:e8:e5:d6:b3:96:2f:
fd:ed:ba:ed:15:ef:63:1f:eb:88:6a:8c:3a:75:66:
ad:a6:1c:58:e6:62:ba:84:f4:69:75:da:5b:a7:37:
db:a1:08:1c:87:51:33:92:96:b8:6d:53:12:dd:8a:
fe:ee:7e:27:a9:34:91:a2:e8:12:7e:68:ab:67:b2:
8a:c3:d8:a5:53:19:05:63:e4:b8:7c:e0:9b:86:b2:
df:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:10:91:D4:C4:4F:14:B7:A1:74:CA:72:43:8E:AA:26:09:AF:D4:FD
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/IBCR1MRPFLehdMpyQ46qJgmv1P0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6b40::/29
Signature Algorithm: sha256WithRSAEncryption
51:ff:3d:91:9e:3c:35:b2:a3:32:b7:26:e3:e4:a0:77:ee:79:
7a:96:c6:3e:61:83:3c:a9:d2:bb:7a:0f:5c:b0:21:3b:0f:07:
63:96:4d:88:33:71:b8:df:a6:21:d5:96:88:6b:3c:b1:96:ce:
50:59:d0:c1:67:b5:dd:3b:a8:60:62:6b:93:fc:8e:2a:9b:ba:
6d:62:e2:e9:c5:db:1b:48:ad:06:86:2b:65:4a:96:44:10:19:
be:aa:e0:da:9c:a5:25:57:01:04:8f:28:11:39:e5:f8:ca:13:
18:a0:b6:b1:40:7f:ca:82:2c:4b:a5:58:63:ce:ae:16:99:7a:
ea:77:12:19:c6:f2:9e:57:19:63:cb:08:65:08:75:8c:32:e5:
7a:ea:ea:0b:ed:c8:88:dc:22:a9:7b:03:22:b0:d4:41:1a:59:
a1:5b:01:62:97:3d:df:c8:7d:0f:d7:a5:c6:1c:29:77:cb:5b:
93:c7:5a:52:7d:ba:7e:88:8d:f7:9f:76:d7:84:f2:bd:d6:f4:
58:40:9b:0e:57:d9:7e:5a:23:a2:5a:11:fb:c7:c6:85:20:d9:
d4:a3:57:ae:4d:28:ef:bb:64:a8:70:14:05:67:8b:0d:e9:90:
73:be:8f:9f:0d:74:6d:2b:ae:08:e6:d9:57:9c:b2:26:f7:07:
2e:59:bc:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:40 2024 by rpki-client on console-fra.rpki-client.org