Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/4a4b66-4845-4007-a6e0-10693881dad8/1/pAjdV_UrAS8F446xDiDJ-fG3SNE.roa
File: pAjdV_UrAS8F446xDiDJ-fG3SNE.roa (raw, json)
Hash identifier: QNBflFsvTMKvvkBBOlyC5yOr5fTuuDYpPq1u8jVLUrM=
Subject key identifier: A4:08:DD:57:F5:2B:01:2F:05:E3:8E:B1:0E:20:C9:F9:F1:B7:48:D1
Certificate issuer: /CN=779ee00dd8baa59f53384dd0277a50e8b9802908
Certificate serial: 01856B9338B1B8DFE4A38F74C5CF53CFCD02
Authority key identifier: 77:9E:E0:0D:D8:BA:A5:9F:53:38:4D:D0:27:7A:50:E8:B9:80:29:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d57gDdi6pZ9TOE3QJ3pQ6LmAKQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/4a4b66-4845-4007-a6e0-10693881dad8/1/pAjdV_UrAS8F446xDiDJ-fG3SNE.roa
Signing time: Sun 01 Jan 2023 04:24:48 +0000
ROA not before: Sun 01 Jan 2023 04:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43065
IP address blocks: 2001:67c:2448::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:38:b1:b8:df:e4:a3:8f:74:c5:cf:53:cf:cd:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779ee00dd8baa59f53384dd0277a50e8b9802908
Validity
Not Before: Jan 1 04:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a408dd57f52b012f05e38eb10e20c9f9f1b748d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1d:65:61:38:79:dd:77:86:41:f2:f8:08:97:
a2:f7:85:42:02:48:46:eb:f5:dd:e6:94:2f:3c:61:
43:e5:83:36:9c:64:c9:99:02:c1:6a:2b:32:d6:71:
18:c3:fa:c4:5d:a8:b7:dd:93:6a:ab:d3:5c:a2:e9:
c2:0a:5b:43:75:77:31:4b:fd:9a:80:67:25:8a:db:
b5:d0:ab:98:94:a4:70:9d:2a:ba:e7:83:3f:68:40:
57:f5:11:47:2b:97:db:cc:ba:e2:f8:3f:3b:ea:cf:
2a:c4:35:0e:4b:bb:44:53:09:ee:11:e5:63:0e:e6:
1c:d0:d3:c2:db:af:37:da:47:74:f7:7a:e5:c2:f3:
b9:11:ee:f9:70:2b:08:a8:99:97:18:44:29:52:4c:
a9:c2:bf:ea:30:a4:df:0b:82:20:95:59:8c:4e:02:
e5:57:9c:6f:7d:7b:54:2b:12:e4:a4:d3:d0:c5:29:
93:02:0b:98:8f:b1:06:d0:7a:46:2f:8b:d9:33:a0:
aa:7e:e8:09:56:e4:0b:04:17:45:db:33:3c:aa:f7:
72:e7:d1:63:75:23:c1:e7:e0:bd:ce:38:90:c6:c3:
dc:51:41:7c:50:aa:34:c4:75:d9:10:e3:64:95:9f:
78:3e:38:db:6e:71:f0:16:22:4a:b7:3d:bb:8d:85:
07:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:08:DD:57:F5:2B:01:2F:05:E3:8E:B1:0E:20:C9:F9:F1:B7:48:D1
X509v3 Authority Key Identifier:
keyid:77:9E:E0:0D:D8:BA:A5:9F:53:38:4D:D0:27:7A:50:E8:B9:80:29:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d57gDdi6pZ9TOE3QJ3pQ6LmAKQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4a4b66-4845-4007-a6e0-10693881dad8/1/pAjdV_UrAS8F446xDiDJ-fG3SNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4a4b66-4845-4007-a6e0-10693881dad8/1/d57gDdi6pZ9TOE3QJ3pQ6LmAKQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2448::/48
Signature Algorithm: sha256WithRSAEncryption
76:97:d4:dc:e0:95:2b:ca:55:a3:53:9f:d0:71:36:b4:2c:4d:
90:f9:52:95:8a:5e:62:05:dd:ea:76:bb:19:8e:39:f5:16:a2:
9f:c5:82:4a:ba:51:2a:5f:7b:9d:a8:97:15:69:95:96:30:a5:
7d:25:f7:bb:df:85:55:b4:17:0c:9c:6f:25:b9:b4:3f:84:e5:
a7:81:84:60:5e:16:76:4a:1b:66:a2:ef:23:5f:eb:fe:1f:b2:
fa:0a:15:74:c0:ad:62:cf:5c:54:0d:d4:09:d3:87:3c:ba:0f:
d9:31:2d:b4:5d:ee:e3:32:57:04:40:03:44:6d:35:0d:f8:27:
e9:be:35:b7:6e:e0:84:1f:ac:66:f7:72:ef:5c:91:dc:f0:00:
18:b9:09:5f:15:46:df:d5:0e:51:64:56:1b:43:97:e3:dd:a2:
a0:de:51:f8:0f:ac:d5:56:5f:ab:06:23:6c:b4:f7:98:57:cc:
98:13:39:2b:4e:67:45:41:16:5e:55:27:b9:48:db:80:c2:78:
4e:e3:7d:f3:2c:8b:44:1d:62:d2:51:e3:83:2f:de:04:dc:64:
cf:3c:61:fd:09:ea:f3:39:e1:7d:67:c0:52:9f:df:03:50:70:
04:5b:4a:7b:61:4d:49:fa:6d:66:43:9a:ff:30:d6:51:f6:de:
cd:f1:7c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:19 2024 by rpki-client on console-ams.rpki-client.org