Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/c78df3-fc47-4edb-a9a0-94fd9e2969af/1/AVW0X3mk-Yu8SiQx98zqELq9ukE.roa
File: AVW0X3mk-Yu8SiQx98zqELq9ukE.roa (raw, json)
Hash identifier: tMF2BH3oxyXbT5D4FldTu4S07ImYGOm/vAlHesPSj3I=
Subject key identifier: 01:55:B4:5F:79:A4:F9:8B:BC:4A:24:31:F7:CC:EA:10:BA:BD:BA:41
Certificate issuer: /CN=2e1d2457e0be54dc78fc1f6687db3e94b068ac9b
Certificate serial: 0185704287A64FC1D841A11F41032763E38C
Authority key identifier: 2E:1D:24:57:E0:BE:54:DC:78:FC:1F:66:87:DB:3E:94:B0:68:AC:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lh0kV-C-VNx4_B9mh9s-lLBorJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/c78df3-fc47-4edb-a9a0-94fd9e2969af/1/AVW0X3mk-Yu8SiQx98zqELq9ukE.roa
Signing time: Mon 02 Jan 2023 02:14:46 +0000
ROA not before: Mon 02 Jan 2023 02:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211514
IP address blocks: 2001:678:f24::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:87:a6:4f:c1:d8:41:a1:1f:41:03:27:63:e3:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e1d2457e0be54dc78fc1f6687db3e94b068ac9b
Validity
Not Before: Jan 2 02:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0155b45f79a4f98bbc4a2431f7ccea10babdba41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:50:ef:b7:00:66:89:dd:e7:87:7b:4e:2f:bc:
dc:59:65:11:3d:b4:5f:08:f7:7c:f7:15:f7:9a:52:
cf:e9:a7:4c:ba:75:d0:fa:64:90:7d:73:99:6d:1f:
04:24:54:a0:dc:3f:1c:dc:28:8e:5e:33:86:a4:34:
39:48:5e:f6:8a:01:5a:d2:15:88:88:ed:58:ed:cc:
24:db:5a:8b:b2:04:ae:f6:a3:9a:d4:29:ea:c5:8c:
3d:0f:a6:30:bb:14:f1:7a:12:c1:7c:90:7a:43:bb:
84:41:a6:68:fe:d1:31:da:f4:d3:e5:13:ce:ba:4d:
37:0f:7f:4d:78:ef:e2:a1:86:85:7f:13:79:63:78:
aa:21:04:8e:d9:eb:57:d9:6d:50:99:4c:b2:d3:da:
90:bd:cb:92:03:b2:ff:c2:43:26:3f:61:c3:1b:61:
08:2a:d1:5f:41:48:a4:33:f3:5d:16:20:48:a2:d2:
16:ae:9c:f4:66:35:76:a7:cf:5f:a5:54:04:0d:57:
e0:bf:cf:4a:75:b0:c3:84:f5:37:fc:51:d7:d0:ef:
b0:31:fe:82:d0:c8:e4:dc:57:08:7b:10:1f:72:b4:
1d:d3:8e:b5:1b:ea:5e:8c:cc:41:ba:7b:6c:8d:7f:
21:3c:6f:1a:72:0f:5a:41:e9:11:8a:b9:ed:7b:ff:
93:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:55:B4:5F:79:A4:F9:8B:BC:4A:24:31:F7:CC:EA:10:BA:BD:BA:41
X509v3 Authority Key Identifier:
keyid:2E:1D:24:57:E0:BE:54:DC:78:FC:1F:66:87:DB:3E:94:B0:68:AC:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lh0kV-C-VNx4_B9mh9s-lLBorJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c78df3-fc47-4edb-a9a0-94fd9e2969af/1/AVW0X3mk-Yu8SiQx98zqELq9ukE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c78df3-fc47-4edb-a9a0-94fd9e2969af/1/Lh0kV-C-VNx4_B9mh9s-lLBorJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f24::/48
Signature Algorithm: sha256WithRSAEncryption
14:6d:6e:99:e8:1f:e6:d9:d3:01:31:1c:b4:e6:f3:be:ef:fe:
bc:ec:0b:7f:88:5a:a1:f9:34:36:8e:18:56:1f:f9:95:20:71:
ae:2f:58:e6:40:b0:fb:d0:e0:c1:90:e8:ce:b4:45:4a:c7:58:
3c:13:f3:33:2e:7c:e7:9e:9e:ae:e3:70:2d:ef:64:c3:25:cf:
6d:00:f8:ec:a5:ea:9d:43:31:06:97:94:10:07:68:29:68:5c:
f8:0e:bf:f9:0e:13:77:cf:23:fd:4e:b5:a5:db:c8:e8:7f:90:
c3:c8:cc:7f:2a:a8:88:ca:53:ba:80:d1:39:1b:a6:06:76:70:
4c:5d:40:9d:8e:1d:d7:f7:1f:07:fe:f9:ad:7e:d7:4e:72:3e:
75:26:c8:81:f6:6a:02:6b:67:55:a7:db:b1:e6:d8:0b:ef:16:
23:4a:9d:a5:a1:f0:20:10:1f:27:b6:b1:1d:05:5e:92:80:0d:
45:1e:0b:1d:b8:1c:3e:70:b5:54:98:59:e9:5a:fc:39:35:81:
f7:f6:9e:9c:89:83:bb:32:f6:ad:44:f0:1d:64:ee:dc:77:63:
ad:10:c6:71:f7:54:af:de:30:1a:64:59:ba:2e:76:69:da:2a:
30:60:1b:d0:31:f1:e8:ab:e7:d1:81:f5:8b:3b:8b:31:bb:43:
0c:2b:c9:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:04 2024 by rpki-client on console-fra.rpki-client.org