Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/b678f5-557d-4b5d-aa50-9a4ff0137012/1/BFf1lw4Qt7sgcgfvoEBboqahecs.roa
File: BFf1lw4Qt7sgcgfvoEBboqahecs.roa (raw, json)
Hash identifier: s3PjFnSAfTK7QsvqbbCPNfSqY7BNqTDiINWHYt7Te78=
Subject key identifier: 04:57:F5:97:0E:10:B7:BB:20:72:07:EF:A0:40:5B:A2:A6:A1:79:CB
Certificate issuer: /CN=977bfd99d35116f9c644194c36d9b646f73127c6
Certificate serial: 01856F1DA0385B185DF68848451FF8BDEB08
Authority key identifier: 97:7B:FD:99:D3:51:16:F9:C6:44:19:4C:36:D9:B6:46:F7:31:27:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3v9mdNRFvnGRBlMNtm2RvcxJ8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/b678f5-557d-4b5d-aa50-9a4ff0137012/1/BFf1lw4Qt7sgcgfvoEBboqahecs.roa
Signing time: Sun 01 Jan 2023 20:54:50 +0000
ROA not before: Sun 01 Jan 2023 20:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8820
IP address blocks: 2001:67c:1758::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:a0:38:5b:18:5d:f6:88:48:45:1f:f8:bd:eb:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977bfd99d35116f9c644194c36d9b646f73127c6
Validity
Not Before: Jan 1 20:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0457f5970e10b7bb207207efa0405ba2a6a179cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e0:42:af:4b:6e:7c:9b:ed:13:61:3c:e3:88:
0c:18:46:e5:93:33:9d:05:b8:b7:f6:32:3d:f2:40:
c4:da:36:c7:ba:d3:5e:4f:43:b5:e8:64:62:f4:a8:
a8:c7:17:d8:38:0c:a7:e5:e6:77:61:cb:c4:a6:3b:
77:5f:09:7b:d1:ac:01:da:3b:0c:df:35:21:97:03:
72:a4:d3:6a:8f:b8:96:78:2d:b4:40:c0:23:3b:a8:
c1:5a:79:2f:30:87:78:02:f7:9e:af:d6:c2:b0:29:
c3:7d:c3:19:b5:cb:63:af:59:08:2c:56:f2:f0:df:
25:b1:d8:b0:e6:f8:ea:cb:49:47:a8:90:fa:6c:c0:
8d:1f:f7:e4:2e:31:16:5b:b7:fe:74:0c:af:f6:8a:
e4:bf:87:eb:7f:c0:21:aa:c0:72:21:1b:48:03:87:
78:fb:84:c4:19:a5:74:18:98:29:7e:96:77:1e:99:
35:06:ca:71:37:f6:4d:fa:22:ed:ff:88:0e:65:b9:
43:f9:45:19:78:04:06:0f:28:bf:b7:71:89:dd:90:
5b:2c:f5:d7:a6:35:f3:69:44:50:a6:0c:73:97:70:
da:c4:16:fe:91:40:15:8a:7c:1f:fd:f9:13:42:d1:
47:21:1f:13:68:ba:7f:a7:fb:d0:e7:d9:59:ef:aa:
ff:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:57:F5:97:0E:10:B7:BB:20:72:07:EF:A0:40:5B:A2:A6:A1:79:CB
X509v3 Authority Key Identifier:
keyid:97:7B:FD:99:D3:51:16:F9:C6:44:19:4C:36:D9:B6:46:F7:31:27:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3v9mdNRFvnGRBlMNtm2RvcxJ8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b678f5-557d-4b5d-aa50-9a4ff0137012/1/BFf1lw4Qt7sgcgfvoEBboqahecs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b678f5-557d-4b5d-aa50-9a4ff0137012/1/l3v9mdNRFvnGRBlMNtm2RvcxJ8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1758::/48
Signature Algorithm: sha256WithRSAEncryption
e7:06:19:db:1c:66:99:39:0b:e3:ad:c5:d2:76:a6:a1:b5:1b:
2d:eb:99:45:d0:67:91:56:a0:4d:4d:d6:0d:19:bf:1e:c6:17:
cf:af:79:3b:dc:c3:18:a2:2b:ed:ac:3f:26:19:de:3a:eb:e4:
7e:2d:24:25:ce:67:5e:0f:e0:52:38:d1:6a:fe:37:c1:17:f4:
da:21:f9:22:49:9c:fb:d8:2f:a5:89:fd:ca:2b:0f:b3:2f:97:
ee:ec:5a:c3:0a:df:27:04:eb:9d:5a:c0:6e:c0:b8:53:57:fa:
12:ae:d7:2c:ee:b9:42:43:8e:80:df:a9:8c:61:d8:92:96:08:
8e:9b:d5:3d:df:26:4f:02:5c:d9:09:97:a0:02:fd:13:d5:8f:
ed:33:d5:a6:ec:9d:ba:db:1f:23:78:ab:2e:92:00:38:18:19:
f8:ef:7f:cc:32:bc:8d:e3:fc:b1:b6:4e:92:1c:09:3e:fa:66:
c3:8f:8b:58:20:9e:d6:ea:32:b5:b7:22:96:a7:82:a9:4f:c7:
dc:d5:8a:37:33:d1:62:8e:0b:0c:7a:74:b1:07:95:d7:6b:a7:
05:b3:8c:78:97:cc:3f:71:cc:0d:33:ea:4e:c1:1f:8c:93:09:
ee:c1:21:0b:da:36:64:2e:46:17:b4:a2:f7:6c:f6:f0:69:3f:
14:8a:b3:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:50 2024 by rpki-client on console-ams.rpki-client.org