Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/8BWiyRDhvOowGDWTL-JGTafDCQI.roa
File: 8BWiyRDhvOowGDWTL-JGTafDCQI.roa (raw, json)
Hash identifier: +CRUkKSp8NjHrTumw8FRNtnS6MhhzUAX/wwaNhYbOsc=
Subject key identifier: F0:15:A2:C9:10:E1:BC:EA:30:18:35:93:2F:E2:46:4D:A7:C3:09:02
Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658
Certificate serial: 01869E5F4597E6DA885C2067F6796FFEC821
Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/8BWiyRDhvOowGDWTL-JGTafDCQI.roa
Signing time: Wed 01 Mar 2023 18:11:29 +0000
ROA not before: Wed 01 Mar 2023 18:11:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 2001:678:acc::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 May 2023 00:13:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9e:5f:45:97:e6:da:88:5c:20:67:f6:79:6f:fe:c8:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658
Validity
Not Before: Mar 1 18:11:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f015a2c910e1bcea301835932fe2464da7c30902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:76:ce:78:bc:6b:49:71:da:c3:b7:b3:43:7a:
64:52:d5:ab:ba:97:42:be:d7:45:14:db:6c:4e:a6:
71:90:68:17:bd:9d:f6:87:f4:bf:21:ec:ce:5f:7d:
78:f8:67:b1:20:dc:e9:bc:88:9e:3e:c8:d5:7d:5c:
4f:94:67:16:24:f9:92:89:b1:69:53:a0:0c:65:5e:
55:bf:7e:06:56:34:fb:d8:bf:07:40:b6:db:38:9d:
79:10:52:77:c3:b4:82:d3:2d:e9:88:bb:f0:6a:79:
ce:68:51:3f:14:d5:b8:87:6a:20:c4:52:db:4c:0c:
8f:c2:37:71:90:52:40:6c:75:1e:4c:c1:31:1d:a0:
ea:02:04:21:60:b1:47:f2:77:ae:22:68:f1:69:2f:
61:00:33:82:8e:72:84:6c:bb:ed:58:85:0a:be:48:
36:2b:e7:b2:4d:05:3e:92:fa:7e:ff:eb:f3:39:7c:
a2:34:86:2e:ca:2c:6f:10:f8:29:cc:2d:16:8c:29:
14:16:f1:e6:d5:5e:19:08:7f:ea:7f:e2:12:00:70:
e8:2a:0f:d8:4f:80:bc:fd:25:21:c8:b6:23:4e:06:
99:d9:4a:fa:ae:7d:4e:ab:2b:a4:9a:79:c5:0b:c1:
93:06:82:05:ba:40:98:0e:af:da:92:26:a0:22:43:
fa:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:15:A2:C9:10:E1:BC:EA:30:18:35:93:2F:E2:46:4D:A7:C3:09:02
X509v3 Authority Key Identifier:
keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/8BWiyRDhvOowGDWTL-JGTafDCQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:acc::/48
Signature Algorithm: sha256WithRSAEncryption
79:31:2e:21:9e:2c:95:00:11:41:2e:90:f6:d3:f7:1b:c6:61:
a9:b6:6b:26:f5:af:34:13:8f:08:03:01:71:2f:00:ff:ad:a6:
71:b7:51:e9:71:98:77:13:e5:6d:04:2b:75:7e:c2:fd:56:56:
a8:26:7d:ff:21:03:2a:92:4a:4b:de:5c:31:ef:68:e7:d3:08:
6c:bf:5d:80:f0:9d:ae:34:ad:86:6a:82:61:a9:75:4d:19:db:
f4:4f:e6:e1:b3:86:1a:90:4d:c3:01:46:4f:15:f4:6e:86:bf:
81:6c:01:ec:c6:59:ac:e5:5c:1f:84:8b:56:54:f0:c1:86:14:
37:55:3a:55:fb:32:14:53:90:4e:58:f9:9e:dc:9c:43:c0:45:
5b:71:17:02:6d:83:d6:ac:f5:c9:82:d7:ef:25:1c:d2:39:81:
c5:34:4a:2a:98:c0:e7:c0:94:e1:e8:f3:37:b7:9f:c1:e9:04:
cb:c0:e8:a0:2a:af:31:53:d3:a5:86:02:51:d5:09:a0:d1:ae:
21:69:d1:25:50:00:44:cb:bc:b6:62:8c:dd:2e:b8:81:15:59:
1e:2e:ec:67:03:c9:4a:ac:90:6f:62:03:67:e4:db:0e:f5:bb:
46:71:9f:62:59:02:27:22:51:13:29:a6:39:e2:f5:a5:ec:cc:
d0:f3:f5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:08 2024 by rpki-client on console-ams.rpki-client.org