Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/tOiV1Q6Uv9baQSUzBavdouIsqLA.roa
File: tOiV1Q6Uv9baQSUzBavdouIsqLA.roa (raw, json)
Hash identifier: 3tfEqhYEZJgb61Kqj4ba0eLybCO/6i4BCvVmwOpAKBs=
Subject key identifier: B4:E8:95:D5:0E:94:BF:D6:DA:41:25:33:05:AB:DD:A2:E2:2C:A8:B0
Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658
Certificate serial: 0189B16CFBDF39F71A99344C9DCB0182E830
Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/tOiV1Q6Uv9baQSUzBavdouIsqLA.roa
Signing time: Tue 01 Aug 2023 14:07:36 +0000
ROA not before: Tue 01 Aug 2023 14:07:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207427
IP address blocks: 2001:678:acc::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Nov 2023 18:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b1:6c:fb:df:39:f7:1a:99:34:4c:9d:cb:01:82:e8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658
Validity
Not Before: Aug 1 14:07:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4e895d50e94bfd6da41253305abdda2e22ca8b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3b:43:22:a1:e5:83:dd:61:8c:af:37:83:2e:
fe:8d:2b:af:3f:85:a5:4d:b1:2b:62:b9:e7:de:50:
75:dd:e1:e5:81:68:64:0a:fa:85:01:d5:1d:2d:24:
5c:95:63:bb:e4:e4:18:e1:ba:38:d1:03:0c:25:cf:
66:5d:c2:f3:a2:64:ad:6c:b4:82:5d:cd:cc:79:12:
e1:22:58:a9:00:d9:d2:8f:bb:20:84:89:02:fe:4e:
d0:be:16:14:49:c8:f2:8b:44:a2:81:3a:f1:af:1b:
8b:18:9f:fc:74:b3:77:b5:33:c2:ef:74:e0:21:f3:
b7:48:13:40:0f:25:ec:d1:9b:b4:60:d4:62:70:7b:
b0:e9:2e:6d:c4:2f:ae:06:24:16:a6:a2:30:1f:80:
83:cf:ff:b3:16:0c:6f:a6:88:12:f6:e4:4e:c2:b7:
09:20:2a:8a:be:6c:82:59:1a:f4:1d:f8:39:01:bf:
61:23:84:22:0c:9c:52:4d:f3:55:4f:a5:71:c8:6b:
75:6a:fd:f7:e2:e5:d4:21:6f:3f:ac:94:a7:74:89:
71:55:aa:c0:0a:50:0a:7d:ad:43:8e:9d:b6:39:2e:
34:3b:94:27:39:36:3b:2a:75:9e:90:6e:1c:79:a5:
af:40:ab:4e:d1:39:5c:61:98:5b:a0:93:27:cb:ab:
55:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E8:95:D5:0E:94:BF:D6:DA:41:25:33:05:AB:DD:A2:E2:2C:A8:B0
X509v3 Authority Key Identifier:
keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/tOiV1Q6Uv9baQSUzBavdouIsqLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:acc::/48
Signature Algorithm: sha256WithRSAEncryption
b4:e5:80:f7:ab:5a:9e:b3:48:b1:ae:81:8c:53:7a:52:39:6a:
98:6c:fc:94:2d:b4:8f:ed:e2:78:fb:0d:ff:73:50:ff:06:87:
38:6e:a2:e2:a6:4c:42:f3:bf:08:c0:88:10:c6:02:7d:1b:2d:
79:ff:9f:b5:fb:d6:f9:25:70:f0:4a:9e:af:2c:dd:12:03:ea:
06:2f:18:cd:05:bc:19:64:45:7e:90:f3:8f:ce:d0:96:2b:b1:
ca:db:a1:f8:64:9a:1d:47:60:82:ed:e3:bd:d5:10:9c:30:82:
0e:5d:a3:2e:b8:06:72:6e:75:ac:73:7f:da:e9:b8:26:60:67:
5b:07:1d:d6:80:2c:5e:95:93:c9:4c:77:d4:f3:10:4e:52:ee:
30:e4:85:78:2a:4a:d5:5f:d5:a1:e7:9d:9d:f6:86:6c:63:30:
4a:bf:e4:57:1e:92:56:14:2b:3a:fa:29:85:5b:e4:fb:40:ee:
36:89:53:71:5d:e8:06:50:a0:55:11:75:54:d1:5a:ea:94:ef:
36:ea:5a:4c:b6:8b:38:71:73:fd:d6:7f:3d:2f:3b:7c:8d:ee:
d5:91:46:82:e8:ec:38:66:ed:08:17:cf:e6:bc:65:dd:31:de:
65:af:4a:be:0a:5f:f1:dd:92:66:28:1e:a9:79:4c:fa:d6:90:
7e:86:f5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:12 2024 by rpki-client on console-ams.rpki-client.org