Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/abuyRq1_XFPngAOO0upkFF-thRo.roa
File: abuyRq1_XFPngAOO0upkFF-thRo.roa (raw, json)
Hash identifier: y4qAXUYCvKVzdOIXiumR/x4l7llbJmyS4NYnBnlYess=
Subject key identifier: 69:BB:B2:46:AD:7F:5C:53:E7:80:03:8E:D2:EA:64:14:5F:AD:85:1A
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 01856D2F5AA906D1F9B24E010A61D5AB37D8
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/abuyRq1_XFPngAOO0upkFF-thRo.roa
Signing time: Sun 01 Jan 2023 11:54:57 +0000
ROA not before: Sun 01 Jan 2023 11:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210140
IP address blocks: 2001:67c:2e48::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:5a:a9:06:d1:f9:b2:4e:01:0a:61:d5:ab:37:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Jan 1 11:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69bbb246ad7f5c53e780038ed2ea64145fad851a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ad:45:c9:68:58:eb:cd:0d:97:d7:fe:ce:d7:
05:61:80:e8:8e:a4:9b:8a:5c:2f:d9:1a:d8:32:92:
6d:34:e0:3e:36:38:3a:49:ef:42:2a:f6:40:1b:4c:
4b:d1:54:e8:f2:4d:5e:0a:98:cb:3e:bc:e8:2e:ae:
2c:89:c3:a9:45:14:fc:26:07:43:07:0c:ad:b8:e7:
73:70:24:e6:c7:a2:68:af:59:68:98:22:a8:d9:74:
ad:96:de:b7:27:8e:ef:a4:c4:51:68:ae:db:56:30:
76:f7:07:e3:6c:a4:09:f9:7a:9c:a1:05:88:4b:62:
eb:48:2e:5f:f5:30:68:0a:41:64:a7:40:bf:09:30:
f5:a3:8e:90:69:ac:9b:dc:6f:f1:aa:51:5a:f9:46:
01:d4:e4:e4:de:d4:99:cb:be:27:b4:8e:f0:34:c3:
03:56:64:8b:75:25:e9:4a:52:89:50:75:36:70:31:
ae:cb:83:75:b3:5b:11:29:2a:cd:52:87:20:ea:34:
29:1f:61:c6:aa:6d:10:94:0f:51:c7:98:6b:9d:31:
6a:e7:42:74:19:67:ec:b3:b8:ee:17:a3:0c:94:b7:
6f:b9:d1:d9:86:27:d3:e9:f1:81:0c:ce:48:88:98:
1d:bb:d9:52:73:d5:32:30:2c:fe:54:76:74:31:34:
77:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:BB:B2:46:AD:7F:5C:53:E7:80:03:8E:D2:EA:64:14:5F:AD:85:1A
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/abuyRq1_XFPngAOO0upkFF-thRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e48::/48
Signature Algorithm: sha256WithRSAEncryption
7f:e3:6d:87:94:04:5e:9d:87:1d:4e:b3:61:ae:70:d8:dd:d3:
2c:12:ab:8f:cd:45:4a:c8:6e:22:3d:fc:41:66:b4:93:0b:f1:
93:56:b1:37:3b:16:cb:d2:80:0c:36:79:8d:84:cb:ed:50:25:
31:06:04:58:16:7d:2b:39:7c:1d:6c:a8:af:5d:f4:45:e4:82:
f8:19:2c:ed:64:8b:f3:27:d2:6b:b7:46:bd:d2:2d:c8:d0:31:
75:3c:fd:53:0d:ad:a2:0a:db:18:f0:10:af:3b:69:ac:2d:91:
51:12:a2:15:18:be:02:7b:93:b6:84:61:4a:29:2c:f2:27:2b:
5a:8f:f6:19:b1:ff:d3:bd:bb:64:5c:fe:94:c8:fa:d9:62:5b:
d4:42:a2:e1:bc:83:28:7c:82:1b:00:f3:1d:a9:30:7f:87:ca:
9d:02:49:33:c2:83:a2:a5:88:6d:30:92:8a:09:a1:35:ec:e5:
37:5d:f4:dd:3b:91:a1:41:04:b4:8e:62:d7:aa:49:8d:3d:95:
4f:46:c5:2e:d9:11:0c:ae:ed:26:13:4e:fe:b6:6f:fe:4b:a9:
9d:27:0e:6a:02:5a:1d:56:e5:98:b6:7c:51:cf:20:e3:6a:db:
9c:ee:56:27:8f:bc:30:11:c1:6d:c7:42:7c:07:18:3c:e9:15:
84:36:13:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:35 2024 by rpki-client on console-ams.rpki-client.org