Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/017f89-9130-4a4e-8547-f3b9741d1d4f/1/De8H-MmUqusMgdZJh0pYMmTtXWQ.roa
File: De8H-MmUqusMgdZJh0pYMmTtXWQ.roa (raw, json)
Hash identifier: iWU5/lzzxQjx4Zg2wOHT5rOpOQkSr/h8/LxGTNQLLsg=
Subject key identifier: 0D:EF:07:F8:C9:94:AA:EB:0C:81:D6:49:87:4A:58:32:64:ED:5D:64
Certificate issuer: /CN=ff2a50eedfe78040209d6c0ab95f83b5460398dd
Certificate serial: 01856B77B004B29A589269E183BF83920668
Authority key identifier: FF:2A:50:EE:DF:E7:80:40:20:9D:6C:0A:B9:5F:83:B5:46:03:98:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ypQ7t_ngEAgnWwKuV-DtUYDmN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/017f89-9130-4a4e-8547-f3b9741d1d4f/1/De8H-MmUqusMgdZJh0pYMmTtXWQ.roa
Signing time: Sun 01 Jan 2023 03:54:43 +0000
ROA not before: Sun 01 Jan 2023 03:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207076
IP address blocks: 2001:67c:1430::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:77:b0:04:b2:9a:58:92:69:e1:83:bf:83:92:06:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff2a50eedfe78040209d6c0ab95f83b5460398dd
Validity
Not Before: Jan 1 03:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0def07f8c994aaeb0c81d649874a583264ed5d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a2:7b:bc:b1:63:65:bf:0c:f4:83:f1:da:f8:
8f:f4:d3:2f:6c:5f:94:fc:f3:04:30:e7:5b:97:9d:
fc:c7:ef:d6:d1:12:10:97:e2:f0:76:fc:b8:01:61:
24:12:b5:4c:a2:ba:23:e0:10:d4:df:be:e2:8e:21:
0c:b4:e2:43:92:f0:cd:35:d6:82:7f:80:89:0f:4b:
3f:9c:42:98:25:4b:1a:af:1f:93:ab:c0:f5:31:2b:
a4:c5:2b:10:36:94:59:9e:e5:df:e7:08:c1:72:b8:
03:5f:de:a0:45:5e:68:87:e5:ee:8c:17:36:44:a2:
00:e8:5a:dc:67:f2:da:13:6b:7a:75:89:8c:46:f0:
64:3c:9f:ed:38:c9:18:08:6c:55:2d:fe:0e:83:bb:
9c:e4:31:ce:3b:a2:c8:21:d7:06:45:51:34:fc:0f:
0e:a0:3b:59:a8:62:d1:b0:8f:44:34:ac:13:1e:79:
9e:52:78:92:ce:3b:9c:6c:6e:07:a0:18:70:6f:e4:
bd:bb:76:d8:be:6c:28:d5:14:fb:03:6a:58:f2:56:
9d:77:74:f2:cd:39:6a:8a:52:83:fc:1e:80:76:6f:
5b:60:8b:e7:37:1d:11:49:ad:9a:98:46:1f:1f:76:
b6:58:bc:55:43:be:18:5e:4d:6f:b2:61:b3:41:04:
23:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EF:07:F8:C9:94:AA:EB:0C:81:D6:49:87:4A:58:32:64:ED:5D:64
X509v3 Authority Key Identifier:
keyid:FF:2A:50:EE:DF:E7:80:40:20:9D:6C:0A:B9:5F:83:B5:46:03:98:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ypQ7t_ngEAgnWwKuV-DtUYDmN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/017f89-9130-4a4e-8547-f3b9741d1d4f/1/De8H-MmUqusMgdZJh0pYMmTtXWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/017f89-9130-4a4e-8547-f3b9741d1d4f/1/_ypQ7t_ngEAgnWwKuV-DtUYDmN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1430::/48
Signature Algorithm: sha256WithRSAEncryption
7e:2d:6e:d1:39:61:a7:84:2e:00:f5:af:f3:40:68:77:17:4f:
70:30:9d:59:b6:ee:89:2c:2d:bd:02:98:b8:69:98:ce:9c:e0:
6e:a3:90:70:22:25:b1:4b:96:42:84:59:d4:d6:4f:c8:f4:a4:
f2:37:2f:96:8f:b3:53:a9:8c:0b:8c:ac:b0:d0:2d:f9:a5:65:
ce:c7:dd:68:09:e2:1f:2f:b7:00:83:81:a7:9c:30:e4:bd:99:
07:65:0a:20:c3:7b:e1:ac:8d:9c:9a:4f:66:79:66:2e:be:a9:
b0:90:1c:71:55:11:d1:cc:67:a2:2b:59:de:cb:83:b2:50:5c:
8e:67:79:57:4b:6c:f2:54:8f:bd:3f:81:0e:f6:38:6c:e0:79:
c5:fe:d9:16:57:7a:c9:54:9f:68:70:95:47:b3:7a:37:b2:46:
2b:23:52:3d:2c:fb:d4:6e:7b:1c:c6:e4:32:da:81:af:63:87:
56:fa:be:ce:53:cc:8a:29:4d:77:0a:24:0b:9d:a8:21:0c:04:
47:23:ca:d0:02:58:a5:8a:de:7a:87:1a:a3:cc:37:22:ce:63:
23:df:56:d8:83:5a:ae:4f:16:ed:62:b5:02:a4:b9:6a:52:b7:
dd:a4:4b:6e:62:5f:b9:6f:30:01:f3:5c:0d:af:cc:06:0d:db:
62:d0:25:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:55 2024 by rpki-client on console-fra.rpki-client.org