Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/S42Dz076hPBEvhRsxYe1lC4VRKU.roa
File: S42Dz076hPBEvhRsxYe1lC4VRKU.roa (raw, json)
Hash identifier: /P/c+wbLHHs+oWBai0dFQCbPvISzpBJBE6pIsnRywcs=
Subject key identifier: 4B:8D:83:CF:4E:FA:84:F0:44:BE:14:6C:C5:87:B5:94:2E:15:44:A5
Certificate issuer: /CN=96448e840d272a3e3159192d1df11f100e506f6a
Certificate serial: 018BB9264E5F364E0B62BD4CDD3472C8546E
Authority key identifier: 96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/S42Dz076hPBEvhRsxYe1lC4VRKU.roa
Signing time: Fri 10 Nov 2023 12:12:57 +0000
ROA not before: Fri 10 Nov 2023 12:12:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216021
IP address blocks: 2001:67c:634::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:26:4e:5f:36:4e:0b:62:bd:4c:dd:34:72:c8:54:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96448e840d272a3e3159192d1df11f100e506f6a
Validity
Not Before: Nov 10 12:12:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b8d83cf4efa84f044be146cc587b5942e1544a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:50:7f:d4:c5:a5:43:69:a3:8a:f0:b7:c3:ba:
85:f0:49:79:cb:ea:ad:f6:6d:d2:65:1e:6c:58:68:
a1:df:c9:c4:c3:05:43:a1:c3:c8:ab:65:97:db:87:
f9:d2:33:5e:2e:f8:8d:5d:4c:cb:dc:61:fd:be:13:
af:fa:42:ed:6c:bd:02:bf:ab:4e:25:b6:0f:cb:97:
78:02:4f:65:17:75:0a:3e:0e:8f:86:f6:3d:d5:87:
28:31:b4:aa:4c:e2:6c:e2:74:a4:b9:98:b5:dc:15:
13:19:4e:d5:f9:fc:2f:c1:be:e6:41:dd:77:b4:76:
13:f1:20:fd:6d:84:4c:27:f2:25:78:b5:b1:f9:0c:
4b:f1:79:36:9a:62:07:c9:37:ea:34:c0:09:ba:44:
d0:43:d1:f0:b9:a3:06:1a:2d:27:47:b3:33:de:4c:
73:d2:41:60:f2:17:58:60:55:17:88:89:b1:54:76:
76:5b:d4:57:b6:e7:d8:95:5c:b7:c6:71:64:ec:86:
a8:4a:fe:b2:42:ea:0d:f2:c9:16:50:b6:31:ad:31:
ae:91:c9:d1:09:de:8b:69:da:1e:39:73:a8:3e:90:
41:8e:cb:74:5e:56:20:da:15:5d:a7:c5:fd:c3:e1:
f9:e8:ed:99:9a:59:49:75:97:72:d8:f1:61:48:fd:
6f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:8D:83:CF:4E:FA:84:F0:44:BE:14:6C:C5:87:B5:94:2E:15:44:A5
X509v3 Authority Key Identifier:
keyid:96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/S42Dz076hPBEvhRsxYe1lC4VRKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:634::/48
Signature Algorithm: sha256WithRSAEncryption
26:40:de:1c:be:31:fc:8c:40:06:20:16:2c:3f:a5:e6:3c:c2:
f2:31:4b:16:ae:a9:cf:bd:6d:e7:d4:c0:d7:77:18:e5:3a:0f:
0c:bd:92:6c:3d:08:15:38:a3:36:ce:c8:a3:15:47:1a:68:ce:
44:39:de:69:4c:cc:ff:24:fc:b6:55:8a:b3:da:20:8f:da:da:
53:2a:ca:d9:7f:0d:c8:15:e3:0b:89:e1:d2:06:b9:41:43:7f:
29:95:34:84:2a:41:63:a8:38:dc:70:45:29:8e:ea:6e:b9:42:
52:1b:38:d7:a1:76:97:d8:67:70:49:34:0e:2b:26:f8:ad:55:
76:3a:87:00:af:1c:3c:4e:8e:60:5e:e6:30:bd:c6:3f:df:f1:
45:57:1f:72:c1:b2:97:c4:1e:7e:fe:62:a0:bc:f0:11:89:c0:
d3:5c:32:ea:53:3c:8b:43:a4:6a:0c:2d:2a:bb:13:bd:09:b5:
d2:e2:e5:a2:ae:50:01:0f:5e:36:0c:87:2e:1a:dc:66:de:35:
11:13:39:f0:6d:a9:5a:d8:eb:ba:02:2a:63:f2:5d:fe:99:49:
d9:89:67:73:01:7d:03:a2:5a:59:db:41:73:65:10:6e:fb:f5:
c0:e9:e9:bc:03:ef:17:29:c3:13:e6:a4:f0:57:58:ea:7b:10:
65:2d:e1:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:41 2024 by rpki-client on console-fra.rpki-client.org