Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/Cb1Fr5yjEOqHcHXjXxFKN3VHmHc.roa
File: Cb1Fr5yjEOqHcHXjXxFKN3VHmHc.roa (raw, json)
Hash identifier: 4lv5uzabG6f2PkZhc7ecfnXQDK+tJC1CFxc+/gpPKHw=
Subject key identifier: 09:BD:45:AF:9C:A3:10:EA:87:70:75:E3:5F:11:4A:37:75:47:98:77
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 01856BAED1586D24E14AF8EBE5B8DA31F04A
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/Cb1Fr5yjEOqHcHXjXxFKN3VHmHc.roa
Signing time: Sun 01 Jan 2023 04:54:57 +0000
ROA not before: Sun 01 Jan 2023 04:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49316
IP address blocks: 2a12:8fc6:100::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:d1:58:6d:24:e1:4a:f8:eb:e5:b8:da:31:f0:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Jan 1 04:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09bd45af9ca310ea877075e35f114a3775479877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cb:ad:a6:36:5c:b7:60:08:8f:f5:88:ef:ab:
16:26:da:e2:46:6d:0f:e4:ed:fe:b1:b7:eb:e1:8e:
a8:1c:3f:ce:55:fd:64:e8:1f:57:c3:73:b4:32:e5:
9a:14:fc:85:8f:41:99:e3:6c:ec:dc:b4:44:5f:d7:
9f:c5:60:ff:3e:27:d7:bc:f5:7a:55:08:ed:02:0a:
cf:04:8b:da:60:1c:9d:5b:20:d5:94:a1:74:fb:77:
fc:59:82:22:a5:d0:b8:dc:3f:da:6c:ca:a4:32:ea:
58:43:05:07:a3:38:85:a6:f9:41:6d:2a:02:8f:37:
fd:f7:46:49:50:a3:41:d5:f5:00:4c:0f:18:55:c2:
c4:7d:60:e7:61:43:40:24:91:c9:e0:ea:e5:9e:f7:
7e:04:ad:e1:79:84:6f:44:74:4c:7c:55:cc:33:13:
44:67:2c:02:a7:61:61:11:f5:63:5b:a5:39:09:4e:
4f:5b:98:a2:67:b1:a4:fb:21:ca:e3:86:65:bb:12:
69:32:a3:21:0b:08:a2:e6:4d:73:d8:fb:1e:79:80:
47:b0:48:50:bd:48:95:a5:cf:d8:f4:ab:37:97:d1:
f6:4f:db:4a:57:b6:ad:9d:d9:58:58:8c:ab:49:e0:
2e:44:7a:bf:2a:71:68:9f:d9:04:91:0c:42:8b:46:
36:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BD:45:AF:9C:A3:10:EA:87:70:75:E3:5F:11:4A:37:75:47:98:77
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/Cb1Fr5yjEOqHcHXjXxFKN3VHmHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8fc6:100::/48
Signature Algorithm: sha256WithRSAEncryption
ad:b5:f7:46:6e:b1:f0:50:6a:21:a6:d1:7b:bc:9e:41:3d:50:
6b:30:c0:bd:63:f8:a2:a0:c3:d4:bb:5b:13:31:18:3e:33:cf:
0d:b3:d4:59:74:1b:41:9b:5f:fc:e0:0d:53:de:e0:e6:23:ba:
97:ce:f0:28:ad:a1:eb:ce:45:aa:a8:2e:c4:5d:6e:f1:6b:33:
79:d4:37:48:9c:bd:cb:8b:52:78:1c:40:a5:34:ad:7b:77:26:
07:35:92:33:6c:83:68:99:0f:71:e4:3d:34:13:bb:a7:6b:96:
7a:83:e8:7b:be:f0:3c:c0:d4:10:ce:91:aa:26:fa:c6:b6:e5:
17:86:f9:78:80:c6:b6:db:3f:43:85:3f:d5:49:05:07:6e:5b:
fc:8e:ff:b4:32:0a:a3:08:21:be:21:71:9a:2a:5d:a6:b5:42:
89:25:c4:57:57:57:5c:c8:d6:eb:da:1e:8e:3f:dd:50:f0:9f:
ef:51:cf:d1:21:57:10:d4:f6:bd:fd:41:0c:9f:98:7b:37:ba:
c9:6a:e0:26:c2:72:9f:26:c7:af:fc:e6:de:53:e3:92:d2:94:
44:a9:ad:08:95:37:82:4b:bc:34:04:91:dc:04:bd:25:ae:f4:
5f:59:a9:96:46:54:5a:d1:52:ed:b3:c4:03:4c:44:b7:1c:de:
d6:bd:1c:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:04 2024 by rpki-client on console-ams.rpki-client.org