Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/1ZtjzhYOqGYL351sHKP5iSbk49g.roa
File: 1ZtjzhYOqGYL351sHKP5iSbk49g.roa (raw, json)
Hash identifier: uUN8VNt3XBzEWY2dBPEQXIzXixyUNw1jacCp3Z1HN2A=
Subject key identifier: D5:9B:63:CE:16:0E:A8:66:0B:DF:9D:6C:1C:A3:F9:89:26:E4:E3:D8
Certificate issuer: /CN=92e0c2470eb0a69b4efa585b9cb2c067612b379e
Certificate serial: 01856EA69E3DD7CB3852A703906FF0118C38
Authority key identifier: 92:E0:C2:47:0E:B0:A6:9B:4E:FA:58:5B:9C:B2:C0:67:61:2B:37:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kuDCRw6wpptO-lhbnLLAZ2ErN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/1ZtjzhYOqGYL351sHKP5iSbk49g.roa
Signing time: Sun 01 Jan 2023 18:44:51 +0000
ROA not before: Sun 01 Jan 2023 18:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207411
IP address blocks: 2001:678:c38::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:34:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:9e:3d:d7:cb:38:52:a7:03:90:6f:f0:11:8c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e0c2470eb0a69b4efa585b9cb2c067612b379e
Validity
Not Before: Jan 1 18:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d59b63ce160ea8660bdf9d6c1ca3f98926e4e3d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:4d:70:9e:36:8d:8b:6b:ea:b2:de:31:5b:
e5:6c:db:3f:23:39:03:2d:fb:b0:fb:54:2d:79:d7:
2f:5d:96:3c:0b:f1:ce:d7:f9:90:f6:26:9b:89:9a:
48:f3:89:b9:35:73:23:d5:36:eb:0e:b3:f9:d8:42:
ce:28:85:be:cd:f6:32:7e:b5:fa:21:48:be:2a:d1:
1e:a8:27:5e:8e:46:da:e5:c8:be:90:32:40:7e:2d:
37:b4:77:04:49:3e:ed:f3:39:9d:4f:32:fc:cc:8f:
3f:ad:ea:a6:89:19:11:4d:b7:25:8d:52:2f:14:8b:
24:e3:80:81:4d:17:ef:5f:b6:66:49:44:fb:ea:d7:
72:8b:37:ab:0d:4f:55:5c:ae:c7:64:9e:b6:ee:99:
58:29:a0:79:00:77:9a:91:c4:ef:3d:65:bf:89:3b:
df:b7:b7:43:d0:31:a5:da:9c:f6:49:d9:ab:2f:68:
62:47:6a:ae:cc:9e:87:85:f3:1f:28:47:ca:b2:4e:
88:07:b5:46:ad:ba:1a:b3:af:fc:b2:4c:46:9c:cb:
ba:f1:8c:41:3e:95:17:fd:b6:73:8d:ac:2d:36:27:
50:4d:d3:50:49:f0:08:47:11:91:63:72:00:76:45:
d1:4a:9b:fc:c3:48:c2:e9:d7:c0:eb:c5:de:4a:ad:
2f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9B:63:CE:16:0E:A8:66:0B:DF:9D:6C:1C:A3:F9:89:26:E4:E3:D8
X509v3 Authority Key Identifier:
keyid:92:E0:C2:47:0E:B0:A6:9B:4E:FA:58:5B:9C:B2:C0:67:61:2B:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kuDCRw6wpptO-lhbnLLAZ2ErN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/1ZtjzhYOqGYL351sHKP5iSbk49g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/kuDCRw6wpptO-lhbnLLAZ2ErN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c38::/48
Signature Algorithm: sha256WithRSAEncryption
2a:46:b1:28:50:cd:fc:8e:8f:d7:31:88:3d:4e:24:31:04:48:
5d:cf:c8:d6:89:36:b7:bf:fb:e2:bd:9b:06:84:2b:cc:2d:b1:
11:da:ca:52:bc:af:6e:02:e8:f2:99:f8:19:f9:6d:6e:b5:80:
d4:1b:ae:b1:c4:c5:b4:41:6e:12:36:ef:34:54:7b:9d:a3:8c:
d4:3c:3c:d8:25:18:b4:a9:e8:aa:33:7d:56:19:f5:56:46:89:
57:c8:fb:6f:fb:f1:7e:7d:d5:30:fd:13:6d:8a:69:eb:a7:ee:
b2:29:f9:cb:c2:e9:a7:44:06:8a:0d:5b:88:a7:a3:b3:b6:a5:
a6:68:35:b1:8e:b0:b4:08:9d:64:8b:b9:9c:46:b3:ad:c6:bb:
22:4f:1a:0f:fd:ed:2b:7f:2f:72:f1:6f:aa:b5:29:18:ac:23:
37:fd:48:fb:8a:ad:0e:04:71:96:a7:cc:61:b4:92:06:ec:19:
71:f6:8d:ea:1d:0f:b1:3b:c2:42:45:53:b7:70:60:7b:33:6e:
92:34:88:9e:2d:91:c5:8f:b0:10:03:ce:6b:72:97:9f:62:cb:
bf:d3:4f:5f:f4:26:27:0b:31:c8:e9:ec:b4:c3:d7:35:ba:97:
d8:f6:4a:02:23:c9:d1:d2:4c:6f:91:41:08:80:1f:96:04:af:
e3:74:b9:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org