Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/845aee-daac-4641-9f31-9e7f0f941049/1/B9cI5FceQBdnItnZRp14w9dhuIM.roa
File: B9cI5FceQBdnItnZRp14w9dhuIM.roa (raw, json)
Hash identifier: 1HcP3TOh0gfIWhRSBaivM9ZV1y1juDY7wt7ib+uw9F4=
Subject key identifier: 07:D7:08:E4:57:1E:40:17:67:22:D9:D9:46:9D:78:C3:D7:61:B8:83
Certificate issuer: /CN=3cfaa40f6263e00d1291698576a617a5b5d68a9c
Certificate serial: 018570FB921D822B29C45AF56D574887B042
Authority key identifier: 3C:FA:A4:0F:62:63:E0:0D:12:91:69:85:76:A6:17:A5:B5:D6:8A:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PPqkD2Jj4A0SkWmFdqYXpbXWipw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/845aee-daac-4641-9f31-9e7f0f941049/1/B9cI5FceQBdnItnZRp14w9dhuIM.roa
Signing time: Mon 02 Jan 2023 05:36:53 +0000
ROA not before: Mon 02 Jan 2023 05:36:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212377
IP address blocks: 2001:67c:98c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:92:1d:82:2b:29:c4:5a:f5:6d:57:48:87:b0:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cfaa40f6263e00d1291698576a617a5b5d68a9c
Validity
Not Before: Jan 2 05:36:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07d708e4571e40176722d9d9469d78c3d761b883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:52:4a:7d:80:42:a1:7c:03:64:b5:4d:ae:1a:
c7:7b:f8:55:ed:d3:05:02:7d:02:9d:6d:d5:bf:34:
2a:05:96:61:cb:ce:02:c3:89:2c:71:1a:46:2e:13:
8f:a1:14:2e:fb:73:f5:66:2b:7c:c1:e4:94:5f:ec:
80:65:a8:4d:45:27:8b:cf:e8:20:9a:c1:f6:41:76:
af:9e:0e:8e:44:cc:04:dd:4f:d7:61:1a:53:57:01:
95:27:a4:dd:00:57:b2:07:91:b6:4c:3a:ce:fa:23:
9b:9d:4e:00:e1:cf:b9:52:af:8e:35:44:94:e4:60:
2c:9f:fc:0e:0a:45:6a:72:10:8a:66:88:86:5a:1a:
9a:3d:92:7f:0e:6d:9e:1d:81:a2:1d:83:0c:cc:86:
05:7e:2d:78:2f:ac:08:62:e9:9f:3d:ac:37:ce:d8:
18:85:c9:dd:6a:d3:cd:50:0f:6b:e1:d7:29:f3:29:
e2:17:a7:b1:71:c8:96:9a:eb:6d:0c:56:0f:95:29:
b0:97:4f:01:20:e9:88:e2:1d:42:5f:3b:ba:16:7c:
b2:91:6d:ad:e1:b9:93:07:50:98:d5:d3:6b:e7:a2:
bf:11:ae:98:ee:03:bc:71:58:6e:29:6b:14:14:53:
da:81:d2:f8:c0:bb:0c:44:95:6e:5c:cb:b0:62:8e:
ac:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D7:08:E4:57:1E:40:17:67:22:D9:D9:46:9D:78:C3:D7:61:B8:83
X509v3 Authority Key Identifier:
keyid:3C:FA:A4:0F:62:63:E0:0D:12:91:69:85:76:A6:17:A5:B5:D6:8A:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PPqkD2Jj4A0SkWmFdqYXpbXWipw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/845aee-daac-4641-9f31-9e7f0f941049/1/B9cI5FceQBdnItnZRp14w9dhuIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/845aee-daac-4641-9f31-9e7f0f941049/1/PPqkD2Jj4A0SkWmFdqYXpbXWipw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:98c::/48
Signature Algorithm: sha256WithRSAEncryption
5a:48:15:1f:2a:1e:c3:7f:7b:77:ae:8e:5a:24:ce:b5:2d:49:
97:f8:db:52:36:39:86:18:77:62:2e:c3:38:10:a7:f8:c3:b2:
90:cd:5b:e7:a7:9c:54:1e:48:81:db:21:c5:12:de:5c:87:04:
11:bd:7c:0e:25:e7:79:7e:4d:4d:49:51:52:19:ea:de:92:30:
c2:31:35:72:f7:94:4c:ee:fa:6a:38:52:1c:db:4d:76:24:3d:
f6:6d:e4:7c:86:7e:f6:ad:81:e8:9a:b8:e9:c7:1a:68:f2:63:
f8:75:23:ff:27:e9:63:40:fb:ad:16:60:4f:39:2d:1d:a4:4a:
0b:57:8d:c9:dd:1c:e9:58:49:08:f2:26:cb:e9:0f:42:f1:b6:
1e:3f:4e:6f:e2:2f:7a:12:8e:05:df:a7:93:8c:35:02:97:e1:
db:02:76:e0:1b:b9:0e:9c:de:ad:4d:b4:01:4e:5f:1d:5d:fe:
a4:9d:24:22:2a:bd:01:e6:a7:76:7a:a9:67:04:50:d2:4b:2c:
f7:6d:ef:f0:44:38:72:9e:89:87:ee:9f:78:c3:fe:98:d3:d3:
ec:d3:7c:0a:06:62:e8:c7:0a:d4:1e:82:99:95:c0:ad:45:77:
14:f7:c7:55:bf:67:61:6d:c9:e6:21:12:98:e3:33:16:4b:b5:
cf:8d:b1:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:43 2024 by rpki-client on console-ams.rpki-client.org