Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/404feb-a8bc-4c54-90ac-0660c16efcce/1/Fpp8qpOUIvrdTk4S9kP0gfZP1-w.roa
File: Fpp8qpOUIvrdTk4S9kP0gfZP1-w.roa (raw, json)
Hash identifier: l1Agrz3PZwBLm7AI2RMjhLjRwSWlF0FWoASYiAJkVLA=
Subject key identifier: 16:9A:7C:AA:93:94:22:FA:DD:4E:4E:12:F6:43:F4:81:F6:4F:D7:EC
Certificate issuer: /CN=efdc48d9ab10f0e42a3dc67fbd0f4cb8e44cab69
Certificate serial: 01856E01F08D10682AC3E63395AA294834D1
Authority key identifier: EF:DC:48:D9:AB:10:F0:E4:2A:3D:C6:7F:BD:0F:4C:B8:E4:4C:AB:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/79xI2asQ8OQqPcZ_vQ9MuORMq2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/404feb-a8bc-4c54-90ac-0660c16efcce/1/Fpp8qpOUIvrdTk4S9kP0gfZP1-w.roa
Signing time: Sun 01 Jan 2023 15:44:58 +0000
ROA not before: Sun 01 Jan 2023 15:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50629
IP address blocks: 2001:67c:708::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:f0:8d:10:68:2a:c3:e6:33:95:aa:29:48:34:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efdc48d9ab10f0e42a3dc67fbd0f4cb8e44cab69
Validity
Not Before: Jan 1 15:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=169a7caa939422fadd4e4e12f643f481f64fd7ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a3:98:00:eb:bc:40:9d:59:5b:11:5e:b7:bb:
34:b4:78:46:6d:94:6c:a0:e0:ab:c4:61:5d:3f:dc:
63:86:5d:d6:74:3e:f7:74:02:14:3d:eb:0d:2d:1c:
a0:83:7e:e7:d8:89:ee:e1:52:3c:dd:b3:2d:1b:24:
85:59:59:e9:c2:88:4e:68:3c:c6:b9:b8:45:54:b8:
7e:b9:f3:9c:24:83:b3:73:f0:f7:7f:d5:aa:c3:3d:
89:63:85:d5:09:e2:c4:53:29:a8:aa:5f:18:23:de:
32:40:9d:5b:1b:f6:c9:a5:5e:77:e6:76:26:9a:54:
a8:c6:d7:af:9f:5d:3e:92:c8:87:6a:e8:b4:22:77:
91:79:c3:7b:a4:03:f8:c4:3d:82:8b:bf:cc:69:f8:
a0:a9:92:96:f2:22:6e:3e:0b:91:5f:c2:76:2a:52:
29:99:fb:76:9b:ae:20:31:06:36:3b:32:e4:24:ed:
c6:7f:2a:b6:4d:2c:22:db:ba:e1:39:fd:16:4e:b6:
0f:0f:40:c9:51:12:3d:96:74:17:16:d8:b0:e7:72:
40:79:0b:45:dc:af:e3:9a:e3:4e:67:6f:a1:4f:3a:
77:47:80:17:43:89:ed:60:fe:cd:3c:5f:c1:4b:87:
d3:6d:c1:30:48:c9:9f:4c:db:7e:c8:7d:57:40:3f:
30:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:9A:7C:AA:93:94:22:FA:DD:4E:4E:12:F6:43:F4:81:F6:4F:D7:EC
X509v3 Authority Key Identifier:
keyid:EF:DC:48:D9:AB:10:F0:E4:2A:3D:C6:7F:BD:0F:4C:B8:E4:4C:AB:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/79xI2asQ8OQqPcZ_vQ9MuORMq2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/404feb-a8bc-4c54-90ac-0660c16efcce/1/Fpp8qpOUIvrdTk4S9kP0gfZP1-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/404feb-a8bc-4c54-90ac-0660c16efcce/1/79xI2asQ8OQqPcZ_vQ9MuORMq2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:708::/48
Signature Algorithm: sha256WithRSAEncryption
24:9d:e6:e5:c9:79:d8:e3:06:39:ae:80:04:3a:cd:28:63:ce:
41:16:c5:ec:73:8c:d8:26:62:a2:9f:97:b2:78:42:d0:6c:28:
2e:2c:bc:95:3e:1f:1f:6e:7a:e9:9b:6c:0c:2e:b4:8f:8e:0e:
f2:d0:c3:71:20:1f:51:ce:0d:ba:22:af:a8:53:a2:17:a8:67:
b6:52:29:0f:d7:2d:85:d8:72:35:1e:93:a4:89:70:aa:73:03:
db:82:2b:0c:43:6c:79:a3:83:34:f6:08:57:09:2a:96:7d:52:
3b:e6:0f:93:dd:69:03:64:6a:be:03:ee:96:84:47:cf:e2:cf:
98:3f:db:21:57:6c:ea:22:6f:df:71:c4:a9:dc:e6:66:3f:f7:
e7:4e:21:af:89:bd:e4:21:1e:32:09:af:db:1c:74:06:1d:0b:
95:a9:3f:cc:4b:c9:2f:4a:0e:25:fa:34:79:35:a2:d0:a3:77:
bb:56:e5:0c:0f:31:6a:0a:7c:81:5b:3c:4a:53:8a:7c:2c:1f:
d7:5b:08:8f:29:86:b8:a8:97:ca:b2:10:e9:87:5a:49:17:e2:
38:5c:ab:72:32:33:16:4d:3b:1a:8e:64:7b:68:40:96:b9:c9:
42:28:dd:e9:a9:3a:13:3d:db:49:d8:53:d8:15:90:a7:d3:a5:
ce:e4:c0:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:11 2024 by rpki-client on console-ams.rpki-client.org