Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/b870e7-7f1e-49ce-b1f9-44ccd1b51f10/1/sb_m69B6KmemeQmDFqytr3grOho.roa
File: sb_m69B6KmemeQmDFqytr3grOho.roa (raw, json)
Hash identifier: FLrl5swGiZJes0x5r/WJX7bR3YnCpJXKAPrEErv36yA=
Subject key identifier: B1:BF:E6:EB:D0:7A:2A:67:A6:79:09:83:16:AC:AD:AF:78:2B:3A:1A
Certificate issuer: /CN=77e8bbf8643abd62ff3f42bec4c0b2db977596d7
Certificate serial: 01857355DE2E4E290DF58366781683595B41
Authority key identifier: 77:E8:BB:F8:64:3A:BD:62:FF:3F:42:BE:C4:C0:B2:DB:97:75:96:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-i7-GQ6vWL_P0K-xMCy25d1ltc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/b870e7-7f1e-49ce-b1f9-44ccd1b51f10/1/sb_m69B6KmemeQmDFqytr3grOho.roa
Signing time: Mon 02 Jan 2023 16:34:45 +0000
ROA not before: Mon 02 Jan 2023 16:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212018
IP address blocks: 2001:67c:74c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:55:de:2e:4e:29:0d:f5:83:66:78:16:83:59:5b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77e8bbf8643abd62ff3f42bec4c0b2db977596d7
Validity
Not Before: Jan 2 16:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1bfe6ebd07a2a67a679098316acadaf782b3a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fd:2f:6d:3f:08:00:e9:99:5d:c4:52:b3:62:
a9:5d:2d:a9:8b:8b:cc:b4:ec:f0:e4:d0:31:42:92:
33:69:7b:39:26:b1:ab:74:ba:cf:fe:8c:43:70:d5:
1e:aa:ae:da:c1:75:9d:bf:fe:14:96:94:70:92:c5:
a5:b2:28:74:df:a4:88:09:52:db:60:66:65:76:01:
eb:86:bc:98:cd:69:9b:2b:b5:9c:bd:6b:bc:ee:47:
89:5a:1f:08:eb:72:72:7c:00:93:c1:b2:a9:37:cb:
b1:ab:d1:d4:5c:59:48:f1:52:58:89:39:8b:fb:1a:
3c:31:7e:b8:6c:04:5f:36:69:ed:67:e5:d6:1f:1b:
cd:76:bf:91:ab:53:a6:c7:80:48:10:13:a7:7f:4f:
90:38:19:dc:2a:d7:6a:c9:6f:ae:32:ed:1b:89:7a:
ea:29:ee:c9:28:59:cb:9a:24:66:49:8d:0d:e5:bd:
8d:77:a3:1e:79:80:13:95:9c:0a:bd:f3:d1:d5:92:
8a:32:bb:8e:df:56:00:51:4b:43:b4:b7:f6:27:78:
32:b4:45:64:8e:92:e0:cc:14:88:11:6d:93:0f:7b:
94:da:1a:ff:4e:97:0b:6d:85:ee:86:b8:7e:f1:94:
06:f0:f3:09:30:c8:d4:78:15:ae:58:06:64:97:bd:
3e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:BF:E6:EB:D0:7A:2A:67:A6:79:09:83:16:AC:AD:AF:78:2B:3A:1A
X509v3 Authority Key Identifier:
keyid:77:E8:BB:F8:64:3A:BD:62:FF:3F:42:BE:C4:C0:B2:DB:97:75:96:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-i7-GQ6vWL_P0K-xMCy25d1ltc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b870e7-7f1e-49ce-b1f9-44ccd1b51f10/1/sb_m69B6KmemeQmDFqytr3grOho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b870e7-7f1e-49ce-b1f9-44ccd1b51f10/1/d-i7-GQ6vWL_P0K-xMCy25d1ltc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:74c::/48
Signature Algorithm: sha256WithRSAEncryption
41:1a:d7:d1:53:a6:3a:42:96:85:6c:ab:dd:c6:ae:ee:6e:e5:
38:24:be:bb:14:af:a6:e0:52:c6:c4:89:f4:c8:da:8f:23:d4:
89:a8:10:66:06:0e:dd:e3:6b:4b:be:f7:0c:12:28:30:44:38:
83:64:4d:96:16:d4:9a:93:48:3f:71:5e:fc:aa:3e:8a:e3:a1:
4d:41:ee:83:9a:41:42:b8:e3:8a:36:90:4c:6b:4c:e7:26:14:
38:93:9d:dd:e1:4a:52:21:97:b0:98:ad:81:ee:55:53:07:63:
fc:1f:ae:00:52:7f:7b:50:b1:7b:f4:66:ca:81:30:f1:6e:e3:
0a:53:10:89:27:02:b9:4f:a6:d0:72:54:6a:e1:1a:fb:6f:e7:
3a:8c:f6:43:1d:f5:fd:39:8f:01:cb:a8:43:6c:17:fd:3e:70:
50:68:5b:d7:00:00:fd:9b:d5:fb:6a:1f:31:12:5b:5e:9e:28:
ca:fa:97:04:45:fe:64:78:f7:a6:74:5e:43:31:7b:a2:23:a0:
44:f7:1b:98:63:f3:cb:cb:ff:86:57:65:8c:74:88:00:d1:95:
12:19:b2:7d:1b:0f:6f:b6:e9:ab:a7:46:bc:73:19:bf:a6:d1:
9d:0f:51:a1:2b:c3:5b:f1:30:5b:c7:1c:88:15:d4:d9:2f:f2:
a0:65:e6:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:14 2024 by rpki-client on console-fra.rpki-client.org