Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/cc8441-ddb6-4795-9030-59cddba176ef/1/k1Kp7dv7_nBWlvkXabOFBAOJ1r0.roa
File: k1Kp7dv7_nBWlvkXabOFBAOJ1r0.roa (raw, json)
Hash identifier: Pcw5Z8kaXIKpTIoMQqrneN5iKxXHZFcVP/PhEQ50QL8=
Subject key identifier: 93:52:A9:ED:DB:FB:FE:70:56:96:F9:17:69:B3:85:04:03:89:D6:BD
Certificate issuer: /CN=616014101ffbce675139cd4c02ba00634ad86e02
Certificate serial: 018570DE6395DF767AC575FC6CEB18C277C1
Authority key identifier: 61:60:14:10:1F:FB:CE:67:51:39:CD:4C:02:BA:00:63:4A:D8:6E:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWAUEB_7zmdROc1MAroAY0rYbgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/cc8441-ddb6-4795-9030-59cddba176ef/1/k1Kp7dv7_nBWlvkXabOFBAOJ1r0.roa
Signing time: Mon 02 Jan 2023 05:05:00 +0000
ROA not before: Mon 02 Jan 2023 05:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204896
IP address blocks: 2001:67c:17c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:63:95:df:76:7a:c5:75:fc:6c:eb:18:c2:77:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=616014101ffbce675139cd4c02ba00634ad86e02
Validity
Not Before: Jan 2 05:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9352a9eddbfbfe705696f91769b385040389d6bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3e:45:f9:20:85:f2:5d:96:68:00:9a:dc:a5:
69:c6:e5:b9:8a:2b:5f:80:19:61:e6:ab:a1:3d:ae:
52:8f:f3:c9:f2:d7:cc:db:7a:63:30:de:cb:4e:e5:
42:fd:fb:79:8e:e9:5b:81:06:30:40:35:f2:82:1f:
90:25:8f:0d:60:88:58:a0:c0:67:a5:3b:f0:f8:5e:
6a:6e:e5:a3:f6:b2:13:dc:fc:73:aa:85:a5:ae:08:
f4:7f:19:b1:6a:a2:7c:b3:00:c5:95:37:86:9d:11:
87:a6:e5:14:78:4d:c1:d2:1e:e5:80:80:97:c4:cc:
4a:80:82:17:cf:24:61:7c:c8:d7:48:01:26:c0:81:
f7:ee:93:c1:8d:6d:2e:58:81:d5:ad:8f:76:6e:2c:
62:d7:3b:80:31:b0:46:64:ef:b2:fc:98:5c:af:10:
ba:a9:03:bb:40:a6:bd:a8:be:a6:c6:7e:af:42:09:
57:49:9f:e1:59:7b:6c:f7:fe:78:20:7d:0c:3a:70:
1a:c5:ca:2c:3e:6a:5a:a2:12:a7:3b:c7:45:9e:8a:
10:be:99:17:43:54:0f:08:b3:93:ff:ad:2f:8b:9d:
de:45:a6:06:d8:70:a0:a4:bd:37:02:8d:8c:fb:9b:
5c:d1:5a:22:c0:44:29:ec:05:ba:00:84:1b:fb:ec:
bf:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:52:A9:ED:DB:FB:FE:70:56:96:F9:17:69:B3:85:04:03:89:D6:BD
X509v3 Authority Key Identifier:
keyid:61:60:14:10:1F:FB:CE:67:51:39:CD:4C:02:BA:00:63:4A:D8:6E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWAUEB_7zmdROc1MAroAY0rYbgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/cc8441-ddb6-4795-9030-59cddba176ef/1/k1Kp7dv7_nBWlvkXabOFBAOJ1r0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/cc8441-ddb6-4795-9030-59cddba176ef/1/YWAUEB_7zmdROc1MAroAY0rYbgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:17c0::/48
Signature Algorithm: sha256WithRSAEncryption
69:62:48:a4:94:ce:4b:a4:6d:dd:96:67:fc:fb:08:e6:30:3c:
a9:bd:46:b1:74:d7:e6:68:5f:0a:25:c9:d4:b3:5c:1b:f6:40:
97:52:7d:19:94:24:fa:35:99:41:f2:5d:68:4d:07:99:f4:69:
33:47:9f:a3:ca:4a:fa:94:4c:57:73:62:b3:0d:61:10:ae:ac:
e8:c2:07:6a:5f:fd:ba:97:ce:57:fe:27:35:d1:19:3f:43:08:
a0:e0:a1:8a:24:1f:70:d2:3b:0f:4d:c4:9f:fb:78:7e:4a:f6:
3a:e3:3f:4e:17:d8:e0:b0:8e:72:79:45:8f:b9:67:a1:09:cf:
43:51:af:f6:4d:4c:1c:10:91:b6:7c:05:59:06:60:20:f7:72:
ca:3e:91:7d:0c:0c:cd:9a:fd:69:8d:89:11:7e:80:b9:87:87:
42:11:c1:88:8e:90:64:83:2a:d2:29:1a:bf:8c:11:eb:fd:12:
0d:2f:db:2d:aa:77:7b:32:43:57:88:48:2c:e2:26:a4:2d:77:
a8:dd:ef:d2:66:f8:0a:ac:3e:6c:86:d6:0c:1e:b2:1b:02:c6:
4f:dc:5b:44:d6:9e:af:c1:6a:eb:44:9e:f1:50:fd:1e:77:4d:
cf:45:e1:a0:04:e9:3b:e9:23:46:66:0c:60:bd:46:38:75:80:
3e:b5:bd:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:17 2024 by rpki-client on console-ams.rpki-client.org