Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/D2fMJxIFBx_WW_EnfeDMfvbS9AQ.roa
File: D2fMJxIFBx_WW_EnfeDMfvbS9AQ.roa (raw, json)
Hash identifier: 8y3Wfz+OP9LyBPB1r1vQN3N9ICTrVCE8DToUkWQS+sk=
Subject key identifier: 0F:67:CC:27:12:05:07:1F:D6:5B:F1:27:7D:E0:CC:7E:F6:D2:F4:04
Certificate issuer: /CN=92d7f69a04bd9cad523b39f77a2ddab44c291192
Certificate serial: 01856EEFF42148995013203A79E5942811BF
Authority key identifier: 92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/D2fMJxIFBx_WW_EnfeDMfvbS9AQ.roa
Signing time: Sun 01 Jan 2023 20:04:57 +0000
ROA not before: Sun 01 Jan 2023 20:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2119
IP address blocks: 2001:67c:2458::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:f4:21:48:99:50:13:20:3a:79:e5:94:28:11:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7f69a04bd9cad523b39f77a2ddab44c291192
Validity
Not Before: Jan 1 20:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f67cc271205071fd65bf1277de0cc7ef6d2f404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3b:f2:77:63:fa:df:a4:d6:7d:f9:43:cb:dd:
8a:d2:a2:48:79:74:40:4f:c0:ee:6b:6b:3a:a6:3f:
d9:06:58:51:9c:c1:03:cd:8f:7a:5c:86:a4:52:c2:
d1:c4:33:ef:77:e4:e9:c8:f6:e5:78:f9:14:51:75:
ea:b8:24:6f:f9:4a:cc:96:69:5f:ec:24:11:e0:5a:
fe:07:0b:1e:d8:8c:22:24:a6:18:d3:fd:00:c6:ae:
aa:da:d8:20:e4:d4:3e:aa:28:86:b1:43:86:0b:aa:
2d:d4:d8:dd:17:af:ed:5c:52:5b:d4:ab:a8:10:f0:
10:65:48:00:29:90:d2:e8:68:7d:13:8c:5c:03:5a:
29:12:4a:d9:48:f9:68:1e:1d:f6:2c:11:8f:b8:3a:
23:a6:38:9b:e5:c7:31:bd:76:0b:00:c8:d5:f5:f3:
3a:bc:41:3d:64:9b:ca:a2:9d:21:50:4c:11:d0:18:
a4:db:13:02:ca:e9:52:12:28:57:c4:52:46:5b:ad:
a2:78:48:57:98:ae:15:cb:98:87:80:6e:42:0e:39:
75:b5:2e:40:4d:74:f6:fb:2f:35:26:d4:23:9e:08:
0b:25:99:24:f3:ad:3d:9c:53:fe:76:bd:59:c6:37:
cc:20:14:e1:2c:f5:80:5d:c4:ef:4a:93:1b:ae:ae:
06:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:67:CC:27:12:05:07:1F:D6:5B:F1:27:7D:E0:CC:7E:F6:D2:F4:04
X509v3 Authority Key Identifier:
keyid:92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/D2fMJxIFBx_WW_EnfeDMfvbS9AQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2458::/48
Signature Algorithm: sha256WithRSAEncryption
4a:d8:c1:f3:a8:96:30:9e:c8:31:7b:1b:e3:83:83:95:8f:29:
15:a8:a9:f8:e2:f1:14:ad:83:df:2e:8f:ee:e4:11:0b:3e:22:
97:85:5e:cd:4a:90:fa:97:40:57:39:7a:01:ca:28:c7:4a:24:
d4:b1:52:97:b0:e6:63:bb:76:51:e0:a9:34:20:74:80:a0:8c:
53:8d:66:42:8d:73:90:1b:19:41:1a:20:ac:bd:8e:3d:13:a8:
5f:cf:b6:19:94:b9:12:8b:77:39:a9:75:be:3a:e0:6a:bb:d7:
10:a3:90:36:29:cd:0a:fd:58:aa:3d:ac:b3:56:6d:88:c3:94:
1b:be:54:86:bf:31:49:c6:45:c3:5a:ac:e6:35:e7:73:b6:5d:
42:b3:3f:20:a6:8b:11:09:3e:41:64:62:b9:ac:78:8f:fd:cf:
19:25:bf:6d:8a:04:55:f1:72:2d:4e:bc:78:ac:7b:b5:1a:35:
7c:dd:c0:18:5f:ce:92:43:0d:e0:2d:53:a6:c8:9e:f2:91:d3:
cc:1a:9a:86:9b:69:d5:18:c4:b8:10:3f:9c:f3:f8:cb:07:f8:
cf:fc:cc:83:bd:1b:8b:0d:10:28:a5:16:9d:4b:8a:f1:1d:fc:
10:13:35:8c:f0:ae:68:97:4e:ad:6d:36:12:b1:e4:65:25:e9:
dd:b1:ad:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:11 2024 by rpki-client on console-ams.rpki-client.org