Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/mf9xal8kd9DOrmB9K4otYm43ED4.roa
File: mf9xal8kd9DOrmB9K4otYm43ED4.roa (raw, json)
Hash identifier: 2uTJ0/zOjD9HNyw+tvyE6F1RgzyLiOM/TezcB4QGZj8=
Subject key identifier: 99:FF:71:6A:5F:24:77:D0:CE:AE:60:7D:2B:8A:2D:62:6E:37:10:3E
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 018570CC063A5F67B364827F956DB9125F43
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/mf9xal8kd9DOrmB9K4otYm43ED4.roa
Signing time: Mon 02 Jan 2023 04:44:57 +0000
ROA not before: Mon 02 Jan 2023 04:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211551
IP address blocks: 2001:678:f20::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cc:06:3a:5f:67:b3:64:82:7f:95:6d:b9:12:5f:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Jan 2 04:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99ff716a5f2477d0ceae607d2b8a2d626e37103e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f2:81:08:dc:5f:a3:e7:98:f0:17:c7:35:fd:
7e:d2:25:85:ff:51:dd:ef:91:94:c3:68:ba:a2:6d:
46:9c:0e:4a:66:ed:29:fe:5d:3e:0a:64:da:02:31:
33:c6:2e:b2:7a:03:02:b5:24:31:c0:50:85:3e:e3:
3a:ad:15:6f:e3:e0:82:19:7b:d9:53:d9:cb:a4:1d:
75:b8:91:51:c1:10:3e:87:7e:1f:ba:25:3f:22:61:
c3:d2:b8:74:b9:f7:2e:8d:cc:29:d2:b9:6d:e6:d4:
42:d4:60:14:db:07:81:8d:a4:fb:c4:95:c6:62:7a:
9c:6f:da:ac:84:35:6e:20:28:fb:c4:0b:b9:f6:3f:
2d:7d:24:cb:a6:07:8b:5a:07:76:be:1c:88:02:42:
f2:48:97:21:27:cc:a2:39:dd:29:95:9d:a4:1f:6e:
63:a3:09:ea:39:c3:18:d4:e1:55:b9:49:ed:6b:ea:
3d:44:59:5e:b9:15:1f:60:3e:10:09:fc:34:da:b8:
f2:9c:30:41:29:cd:cd:bd:48:53:15:f3:77:42:fa:
b9:01:63:93:61:32:2b:35:70:cf:2f:7a:ce:38:85:
0f:66:1e:df:83:7f:81:0e:d3:eb:5c:e8:e5:92:c8:
bb:53:f9:71:41:e8:21:47:97:4b:af:01:61:96:30:
8b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:FF:71:6A:5F:24:77:D0:CE:AE:60:7D:2B:8A:2D:62:6E:37:10:3E
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/mf9xal8kd9DOrmB9K4otYm43ED4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f20::/48
Signature Algorithm: sha256WithRSAEncryption
0f:1d:34:7a:80:ad:76:a2:7e:3e:1b:2a:8d:f2:22:bd:a3:83:
76:31:0a:32:7a:2b:3f:10:1e:e1:86:89:3f:e3:df:d8:81:6f:
72:bd:17:87:76:04:47:f4:0b:87:b2:87:40:96:31:f8:25:d2:
69:31:1f:74:3c:03:bc:12:38:a1:fa:3c:78:24:99:e8:f1:a0:
c9:13:fe:05:72:c3:1a:82:f0:f6:e3:c0:df:53:19:e5:10:8b:
01:3e:d7:c1:59:eb:e6:85:09:cc:b5:a3:19:a2:6e:aa:99:e4:
ab:31:dd:c2:88:7f:28:2f:ea:e0:86:80:08:12:d3:b1:ad:99:
77:d4:e8:d0:d6:b9:62:07:67:47:cd:2b:88:ae:91:02:3a:08:
1f:40:8a:95:2d:0a:17:95:9e:99:e1:29:81:24:3b:1a:fc:e8:
7b:d6:99:f6:8c:8b:83:54:79:c2:69:e1:eb:3a:49:b0:97:ce:
08:40:38:79:7f:2b:c4:e9:92:66:58:5a:6c:95:dc:f3:71:c3:
42:7e:b5:ff:df:56:00:aa:1b:35:18:05:42:db:d5:a8:be:d8:
c5:f8:85:0d:88:e2:43:8e:c3:4e:1d:de:e0:f2:0b:22:a7:6a:
63:ab:a4:8b:cf:f2:d4:c9:ce:ad:96:e7:5b:24:b6:4c:87:57:
9a:30:b2:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:14 2024 by rpki-client on console-fra.rpki-client.org