Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/01b5af-b777-4b59-a5b2-5e97f4a512e5/1/SIO0tl0mWlmAzm1X93ZZQWYafQk.roa
File: SIO0tl0mWlmAzm1X93ZZQWYafQk.roa (raw, json)
Hash identifier: Lt/isQqMIUjRgqK2CH4wWpUNVsdUiz13ITyLij4x/Mk=
Subject key identifier: 48:83:B4:B6:5D:26:5A:59:80:CE:6D:57:F7:76:59:41:66:1A:7D:09
Certificate issuer: /CN=d23708099f7a205564b5f8e05d217bd2fae4de88
Certificate serial: 01856F54B933135AD18F8E9B9B3CE62F6719
Authority key identifier: D2:37:08:09:9F:7A:20:55:64:B5:F8:E0:5D:21:7B:D2:FA:E4:DE:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jcICZ96IFVktfjgXSF70vrk3og.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/01b5af-b777-4b59-a5b2-5e97f4a512e5/1/SIO0tl0mWlmAzm1X93ZZQWYafQk.roa
Signing time: Sun 01 Jan 2023 21:55:01 +0000
ROA not before: Sun 01 Jan 2023 21:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44973
IP address blocks: 2001:678:594::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:b9:33:13:5a:d1:8f:8e:9b:9b:3c:e6:2f:67:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23708099f7a205564b5f8e05d217bd2fae4de88
Validity
Not Before: Jan 1 21:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4883b4b65d265a5980ce6d57f7765941661a7d09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:18:9c:bc:4e:75:23:da:20:d2:91:a3:56:0b:
a2:69:f2:17:35:23:a7:6a:1c:61:74:89:d0:a9:ab:
e0:c6:6e:af:f6:70:e1:78:51:8e:2f:f3:09:31:99:
fa:37:7e:ae:31:c0:be:7d:81:6c:f4:23:c2:d9:af:
d9:7c:9e:cc:c4:a1:ef:ff:63:e8:ed:c0:8b:94:f6:
d6:e3:94:8a:cb:07:03:46:59:dd:e6:a0:0e:1b:bc:
8e:b5:ee:b7:16:e0:00:b5:f9:f5:0f:25:b4:5f:1d:
83:c8:4b:06:8c:f1:b0:31:cc:c1:d9:31:31:33:0e:
37:81:8e:44:ae:a9:c6:c4:41:a4:0d:4f:08:a0:fe:
a4:92:4d:5d:ea:96:b6:14:65:70:40:a6:82:4a:ba:
74:4a:36:4b:d1:c1:eb:4a:60:9e:5d:77:bf:b9:be:
0b:58:13:c6:1a:e3:b5:ba:b2:e8:27:51:90:e6:7d:
89:a1:ba:59:1f:9f:fa:51:97:35:be:1d:59:fe:f3:
73:dc:3c:13:12:fe:b8:39:fd:b8:8f:dd:3c:59:3e:
12:60:ec:2c:0c:da:22:cf:c5:94:23:07:3d:3e:87:
6b:75:b2:51:f2:a7:b8:71:4c:e6:17:16:60:f9:03:
e3:c0:2d:c2:1f:e8:f0:c3:1e:15:68:82:db:87:a1:
25:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:83:B4:B6:5D:26:5A:59:80:CE:6D:57:F7:76:59:41:66:1A:7D:09
X509v3 Authority Key Identifier:
keyid:D2:37:08:09:9F:7A:20:55:64:B5:F8:E0:5D:21:7B:D2:FA:E4:DE:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jcICZ96IFVktfjgXSF70vrk3og.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/01b5af-b777-4b59-a5b2-5e97f4a512e5/1/SIO0tl0mWlmAzm1X93ZZQWYafQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/01b5af-b777-4b59-a5b2-5e97f4a512e5/1/0jcICZ96IFVktfjgXSF70vrk3og.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:594::/48
Signature Algorithm: sha256WithRSAEncryption
36:b2:5d:6a:c0:28:86:a5:6f:2d:fd:84:46:f5:49:7b:14:91:
aa:99:bc:8d:23:66:57:c0:98:51:5d:18:4d:25:8c:e7:72:a7:
a2:3c:93:71:ee:51:36:3d:11:5b:f4:77:52:86:31:c8:92:28:
91:53:bf:f0:d0:ba:b6:86:87:86:39:73:ed:48:4e:fb:e7:b8:
59:7f:33:62:01:ad:14:d9:85:b8:ba:3e:1f:aa:89:dd:29:cc:
90:72:fa:90:95:84:d2:6f:44:e3:22:e6:f5:5a:ec:2f:ba:8c:
da:20:6d:c0:cb:4a:65:c2:42:04:08:67:67:60:5a:25:e0:27:
4d:17:9a:21:8a:43:2a:89:78:83:c4:49:46:fe:57:11:af:3a:
92:0f:36:60:71:6f:38:68:b4:1b:41:bc:42:d2:85:21:15:03:
53:f0:d9:45:d3:1a:5a:ec:19:17:b2:09:62:a6:5d:7b:af:66:
25:a9:d4:df:d5:f5:d2:7d:b0:9e:ab:b6:ad:c4:7f:11:f1:e7:
c2:fd:ca:d0:f1:64:d8:18:0f:14:56:04:c2:d4:cd:56:a8:73:
c9:47:0b:44:b4:fe:1f:1d:bc:cd:e8:6d:73:21:cc:59:07:bd:
dd:62:e7:d4:8d:03:8a:12:03:fb:fa:02:c9:80:64:53:55:dc:
0f:d8:af:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:48 2024 by rpki-client on console-ams.rpki-client.org