Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/524e5b-a8ae-45ab-bbd9-4491845dcd47/1/HK8YGGPLzEtBtz-7b-2iL69Mbv4.roa
File: HK8YGGPLzEtBtz-7b-2iL69Mbv4.roa (raw, json)
Hash identifier: YBthFbJAizMeT2BgkrZQDAN5GSlMExNN7t3CRw0uOo0=
Subject key identifier: 1C:AF:18:18:63:CB:CC:4B:41:B7:3F:BB:6F:ED:A2:2F:AF:4C:6E:FE
Certificate issuer: /CN=03485fbdb0b1a04d52e81dcdb95858916a1ddae4
Certificate serial: 018572A804A39F27BF55BE9A00FB4C1DD42D
Authority key identifier: 03:48:5F:BD:B0:B1:A0:4D:52:E8:1D:CD:B9:58:58:91:6A:1D:DA:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A0hfvbCxoE1S6B3NuVhYkWod2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/524e5b-a8ae-45ab-bbd9-4491845dcd47/1/HK8YGGPLzEtBtz-7b-2iL69Mbv4.roa
Signing time: Mon 02 Jan 2023 13:24:51 +0000
ROA not before: Mon 02 Jan 2023 13:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211879
IP address blocks: 2001:67c:1b50::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a8:04:a3:9f:27:bf:55:be:9a:00:fb:4c:1d:d4:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03485fbdb0b1a04d52e81dcdb95858916a1ddae4
Validity
Not Before: Jan 2 13:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1caf181863cbcc4b41b73fbb6feda22faf4c6efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:03:5d:f8:75:78:9d:ef:8c:1a:d1:db:f6:86:
9c:07:97:c9:df:44:4d:b1:77:f4:62:4f:ca:b4:c5:
da:b0:c3:7e:8f:37:5f:16:e4:2e:b9:63:51:2c:52:
15:a3:d0:72:45:64:40:5f:44:49:8a:42:5c:8e:72:
51:d8:34:1d:9e:ee:56:cc:8d:3e:d5:e2:77:22:52:
19:8e:bf:c9:44:8d:21:2d:59:ea:bc:df:87:7b:ce:
6b:95:a8:7a:a3:55:70:41:fa:45:0e:05:de:5d:97:
5c:81:63:f0:01:ec:30:e7:7f:a3:d5:ef:3a:e4:c7:
df:20:7b:a2:4d:75:ac:cd:6f:04:d3:a4:5d:1b:77:
69:ae:34:6e:b1:e4:c3:d5:af:67:31:b7:2e:ae:01:
2e:98:a4:19:ed:ac:cb:06:de:74:ae:87:a3:0f:24:
68:48:e6:4a:57:b1:ef:cb:00:75:39:8b:42:79:5f:
f5:a8:15:73:a7:46:37:ef:be:b7:9b:78:e5:1d:c9:
36:9b:0b:13:70:e0:70:0c:19:0f:b3:d1:d7:b8:67:
dc:63:1d:e2:5b:94:5b:ac:86:32:2f:9b:62:27:16:
7f:76:0c:6d:72:0f:d8:33:bd:20:12:ee:9b:f4:11:
64:77:ca:2a:f3:d3:a8:53:e9:6c:23:a5:14:68:90:
2f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AF:18:18:63:CB:CC:4B:41:B7:3F:BB:6F:ED:A2:2F:AF:4C:6E:FE
X509v3 Authority Key Identifier:
keyid:03:48:5F:BD:B0:B1:A0:4D:52:E8:1D:CD:B9:58:58:91:6A:1D:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0hfvbCxoE1S6B3NuVhYkWod2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/524e5b-a8ae-45ab-bbd9-4491845dcd47/1/HK8YGGPLzEtBtz-7b-2iL69Mbv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/524e5b-a8ae-45ab-bbd9-4491845dcd47/1/A0hfvbCxoE1S6B3NuVhYkWod2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1b50::/48
Signature Algorithm: sha256WithRSAEncryption
6d:a0:d3:eb:97:e9:dd:9a:ed:ab:7f:89:16:46:8a:b7:fc:f3:
28:1a:91:ea:2f:aa:81:d5:b3:e4:44:34:b1:e1:4a:73:a3:d6:
22:b2:f5:92:06:1d:0f:29:5a:88:f9:68:4e:db:f1:fd:40:a3:
65:51:d4:f8:a3:cc:63:c2:f4:e1:bd:46:69:3c:54:06:96:80:
ce:0d:f5:f7:ce:18:85:f5:e2:dd:f5:ac:f8:55:c0:c9:08:59:
09:fc:aa:fc:20:96:db:f5:3f:24:e4:88:23:9c:a6:d1:1a:33:
ac:54:f2:76:46:11:4e:f6:6e:25:6e:b1:e3:21:5d:75:c6:fa:
80:19:38:82:1e:ff:64:e2:95:6b:3b:f3:00:57:76:97:f3:0f:
74:60:77:56:a1:9a:9a:03:49:92:58:61:a5:8e:03:fd:3c:23:
aa:f7:72:ac:a1:ca:55:d2:ad:d6:a6:d2:db:db:7a:77:ea:21:
6e:d3:d7:c4:3e:d3:31:18:0d:b8:23:d8:f2:87:be:e3:f4:c1:
00:34:96:95:81:f2:4d:09:db:f6:6d:ee:28:17:01:93:06:40:
43:a4:8c:b7:8a:ea:49:91:90:c5:f9:f7:41:52:1e:87:43:c5:
94:06:21:47:a1:8f:5f:60:04:ea:c1:09:68:6f:87:a9:8c:f0:
2c:c5:c2:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:42 2024 by rpki-client on console-fra.rpki-client.org