Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/0EH_Yjf8LpZwaNup1q16lVgWpyM.roa
File: 0EH_Yjf8LpZwaNup1q16lVgWpyM.roa (raw, json)
Hash identifier: GRzdPGQOsEkP9Nu77ynubCldcaWZrBNetJbDXNOfP7Q=
Subject key identifier: D0:41:FF:62:37:FC:2E:96:70:68:DB:A9:D6:AD:7A:95:58:16:A7:23
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 0185737AA5654D6B7375C61B514E2CE0B520
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/0EH_Yjf8LpZwaNup1q16lVgWpyM.roa
Signing time: Mon 02 Jan 2023 17:14:55 +0000
ROA not before: Mon 02 Jan 2023 17:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 2001:67c:16a0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:a5:65:4d:6b:73:75:c6:1b:51:4e:2c:e0:b5:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Jan 2 17:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d041ff6237fc2e967068dba9d6ad7a955816a723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c8:a1:ae:19:69:37:a2:72:2b:1a:60:23:7a:
62:09:f3:3b:a7:fb:61:3f:f4:00:7a:fb:91:17:9f:
47:a7:6e:c9:d2:67:a5:96:f7:f4:ca:bd:64:d7:74:
24:2d:fe:4f:ab:19:ea:67:37:07:86:68:cf:9e:f3:
bc:c8:f0:f2:97:56:7a:6e:52:f4:e5:c4:ce:ad:68:
6e:74:88:4a:61:3a:c8:bd:fa:71:59:ef:de:b0:0f:
1b:5e:92:32:2a:2d:c9:02:ff:58:44:85:a7:f2:5c:
f2:44:72:6b:73:2d:76:35:05:3d:27:39:72:89:9e:
b4:fc:c0:e7:e4:88:44:10:ad:68:aa:cb:31:ea:ec:
b9:e8:bf:b9:a5:b1:ad:0a:f1:e0:af:7f:55:e0:79:
d6:1e:61:51:b7:50:04:3b:08:41:68:c2:3a:d7:b5:
e1:65:52:ef:69:e7:40:4b:dc:04:bd:a6:5a:74:88:
23:c6:b7:bb:7a:50:34:68:59:77:10:b9:a1:4c:7b:
ea:9b:b7:c5:4c:61:dd:a5:6c:82:dc:4c:e7:bf:0a:
47:82:64:5c:90:20:3e:ad:ae:05:b3:47:4b:a4:c6:
33:fc:4f:14:a6:ab:89:dd:70:6e:22:c0:f1:1f:df:
41:11:cc:63:ea:ee:18:0e:24:73:53:e9:19:ef:cb:
e0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:41:FF:62:37:FC:2E:96:70:68:DB:A9:D6:AD:7A:95:58:16:A7:23
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/0EH_Yjf8LpZwaNup1q16lVgWpyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:16a0::/48
Signature Algorithm: sha256WithRSAEncryption
52:07:98:25:8d:ae:2f:a8:ec:ec:df:cc:11:da:8b:b3:72:bc:
91:b1:ac:a0:3c:e9:51:ca:f2:19:4e:80:3e:1e:85:e2:45:b0:
f5:10:ef:62:d8:8f:59:c8:16:c8:13:e6:8d:76:7e:7f:ca:1d:
97:6e:39:ee:d9:f1:c2:8e:36:82:43:c2:ce:e7:20:c8:65:ab:
38:45:b0:d0:f8:ca:16:d7:6b:81:2d:e7:5e:36:56:3b:8c:e0:
0c:66:8a:d7:4b:ce:ed:f1:3b:d2:38:cb:23:23:fc:74:bd:8c:
39:06:45:c6:01:af:ce:09:75:d0:a4:44:f7:a7:4c:8c:9b:d4:
bf:7c:02:33:df:68:74:f2:eb:bb:08:61:0e:65:ba:41:79:4a:
73:88:62:98:7e:e8:6a:02:4e:63:0a:95:c6:cb:9f:f5:a4:e3:
c7:4d:39:55:9e:3a:93:bd:23:40:5a:f1:2c:18:24:d7:4a:fb:
bf:18:98:f1:ed:0e:77:67:79:5a:de:1b:66:0b:45:93:10:4c:
4a:3f:4f:b0:41:7b:3f:9e:5c:21:3c:9c:44:49:4f:f0:9d:2f:
78:39:d8:60:15:70:92:05:d5:45:90:57:96:09:88:87:fc:e0:
14:82:61:1a:f5:b8:df:49:b7:c2:23:c7:b8:c2:15:4d:eb:90:
f3:2d:98:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:05 2024 by rpki-client on console-fra.rpki-client.org