Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/gEp2Z9tDCahtv7IX1HFDuJgbQVI.roa
File: gEp2Z9tDCahtv7IX1HFDuJgbQVI.roa (raw, json)
Hash identifier: 04h1OmpqJM2eqtp+9D58E7vWct/Ff3VsQP8F5tTDKqY=
Subject key identifier: 80:4A:76:67:DB:43:09:A8:6D:BF:B2:17:D4:71:43:B8:98:1B:41:52
Certificate issuer: /CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Certificate serial: 01856FF96B4D22A90D094A7357340D3AFE7F
Authority key identifier: C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/gEp2Z9tDCahtv7IX1HFDuJgbQVI.roa
Signing time: Mon 02 Jan 2023 00:54:54 +0000
ROA not before: Mon 02 Jan 2023 00:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203017
IP address blocks: 2001:678:154::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:6b:4d:22:a9:0d:09:4a:73:57:34:0d:3a:fe:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Validity
Not Before: Jan 2 00:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=804a7667db4309a86dbfb217d47143b8981b4152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:28:d1:c6:f6:64:b1:0e:c0:a2:73:03:c8:80:
57:e4:9e:46:77:19:c1:48:18:da:3b:d5:c7:05:1c:
c9:9d:84:df:2b:ab:16:b3:29:fe:c9:59:f5:b0:b7:
a2:29:c6:a9:45:26:3f:7e:3b:41:98:ec:5a:01:31:
80:38:68:19:9d:cc:d8:dd:b5:6d:80:d0:e2:09:9a:
46:f3:9b:93:67:fb:6b:6f:5f:d8:66:c4:ec:e6:17:
a2:7f:2e:26:dc:71:94:8d:75:0c:86:57:ba:de:38:
cf:c4:23:25:b1:13:1f:ff:00:cc:f5:da:88:9a:f8:
54:d7:f8:a8:c2:b4:b2:9d:9f:d9:2c:15:0d:d0:03:
d7:9a:cb:a0:e2:13:6c:88:68:22:a9:4c:d1:7c:00:
e2:26:32:09:94:64:43:40:bc:f6:b4:70:7d:56:8a:
8f:07:25:dd:e4:09:ac:bb:17:c9:90:82:97:73:1e:
0a:19:2e:18:b8:5e:9d:1e:0f:07:b1:aa:c4:c0:52:
ab:e1:e6:65:22:87:78:7e:e5:00:67:25:d6:5d:23:
ff:e6:8a:7c:a6:32:c9:e7:80:ef:1d:f6:10:14:50:
4c:bd:69:85:e3:df:c8:27:9c:3c:70:e6:a7:45:49:
47:fd:bf:c1:5e:4e:10:a7:23:7b:78:83:ac:fc:ec:
56:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4A:76:67:DB:43:09:A8:6D:BF:B2:17:D4:71:43:B8:98:1B:41:52
X509v3 Authority Key Identifier:
keyid:C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/gEp2Z9tDCahtv7IX1HFDuJgbQVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:154::/48
Signature Algorithm: sha256WithRSAEncryption
26:26:98:b0:36:5e:91:2e:7b:6f:89:ef:2e:e1:bb:7d:0b:b4:
8c:29:7f:26:4f:48:1d:61:d7:cb:87:57:73:7a:83:ab:06:50:
fe:31:84:51:a3:9e:14:d4:84:21:d2:bf:d8:df:3b:4c:69:ea:
fc:3e:df:bd:37:33:25:83:49:3a:c1:e9:35:19:6f:4f:13:98:
74:3c:9b:b1:e4:93:16:32:60:ef:9a:26:25:0b:e6:dd:56:70:
8c:0e:ee:77:7c:2b:5e:af:0c:ea:97:16:c3:2c:f3:84:a1:99:
bc:f3:da:cf:62:cd:f7:59:c8:a3:10:a2:3e:e6:0a:2c:4d:ce:
ed:34:3c:99:09:ba:b1:59:7e:d8:97:5a:d9:12:8b:1b:b9:ae:
9f:5a:40:56:10:d9:e6:51:93:b6:c4:db:a3:28:d8:e4:18:f0:
29:f1:9b:83:11:80:03:c3:4a:3d:5b:8b:28:3c:2f:91:90:2e:
f5:94:2b:6d:a8:0c:fa:2e:fb:0b:98:ac:56:69:4a:16:09:01:
79:63:f0:b7:8f:41:cb:d8:d8:70:d8:90:ee:c4:a0:26:b7:7d:
00:62:2b:5b:44:cd:1e:42:75:ba:01:db:40:e6:ee:8f:b4:4b:
79:ae:44:94:37:82:16:68:dd:10:d9:2c:92:10:da:2c:fe:88:
c6:6a:e6:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:41 2024 by rpki-client on console-ams.rpki-client.org