Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f2cf11-bf14-4204-af88-f67ecc585bb8/1/C62pPdseR_EHIirc-h0mwEx-1o0.roa
File: C62pPdseR_EHIirc-h0mwEx-1o0.roa (raw, json)
Hash identifier: IgDM5aOzLVXGWyJnPRRP15zZgixyQHUKYXbLfgOclUA=
Subject key identifier: 0B:AD:A9:3D:DB:1E:47:F1:07:22:2A:DC:FA:1D:26:C0:4C:7E:D6:8D
Certificate issuer: /CN=c62d573724cb1c095b9b61b2df05ee3fc1a8716d
Certificate serial: 01924F39C738D5A9E67BD652F75A3234C6C7
Authority key identifier: C6:2D:57:37:24:CB:1C:09:5B:9B:61:B2:DF:05:EE:3F:C1:A8:71:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xi1XNyTLHAlbm2Gy3wXuP8GocW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f2cf11-bf14-4204-af88-f67ecc585bb8/1/C62pPdseR_EHIirc-h0mwEx-1o0.roa
Signing time: Wed 02 Oct 2024 21:53:59 +0000
ROA not before: Wed 02 Oct 2024 21:53:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214123
IP address blocks: 2001:67c:f20::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4f:39:c7:38:d5:a9:e6:7b:d6:52:f7:5a:32:34:c6:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c62d573724cb1c095b9b61b2df05ee3fc1a8716d
Validity
Not Before: Oct 2 21:53:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0bada93ddb1e47f107222adcfa1d26c04c7ed68d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:06:e7:4f:b9:f0:c7:e3:d5:f9:e8:6e:1b:7b:
70:8a:e9:6d:10:a5:b4:1e:be:08:bf:34:e7:5e:04:
51:b0:0c:18:67:5d:39:94:7c:2b:9a:8a:a3:85:df:
34:19:90:0a:4b:dd:5f:1f:94:23:3f:44:87:93:c0:
4f:e2:d8:a6:cf:48:ac:2e:72:1b:de:71:2a:68:cf:
72:d9:7b:51:e3:ce:46:59:2d:23:01:de:3a:24:d6:
dd:90:ad:dc:35:56:2c:87:c8:62:8f:df:7e:a5:1b:
10:d2:c8:5e:f2:60:97:68:19:f4:b8:d4:a0:64:b6:
c3:fa:aa:1b:bc:0e:87:9e:9f:fa:34:71:29:0b:b8:
c7:18:98:6f:fb:4d:4a:f4:27:b9:11:d1:45:9e:2d:
d9:0c:a5:41:89:3f:c9:39:af:6a:c7:39:80:c9:67:
5c:0f:52:31:38:d2:46:2b:2a:aa:69:f5:98:ae:8b:
00:3a:29:3f:08:3b:94:cf:fe:da:15:3e:7d:d3:ed:
be:e6:3b:ff:81:cc:7c:8e:29:02:bd:8d:4b:df:26:
7e:b0:76:30:b9:3c:df:6f:96:8e:f3:da:4a:2e:aa:
fa:cb:4e:cb:a5:a7:65:70:fa:64:f0:be:77:f9:9f:
1a:f2:db:51:93:fd:f8:7e:a5:9d:e1:74:84:8b:86:
3e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:AD:A9:3D:DB:1E:47:F1:07:22:2A:DC:FA:1D:26:C0:4C:7E:D6:8D
X509v3 Authority Key Identifier:
keyid:C6:2D:57:37:24:CB:1C:09:5B:9B:61:B2:DF:05:EE:3F:C1:A8:71:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xi1XNyTLHAlbm2Gy3wXuP8GocW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f2cf11-bf14-4204-af88-f67ecc585bb8/1/C62pPdseR_EHIirc-h0mwEx-1o0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f2cf11-bf14-4204-af88-f67ecc585bb8/1/xi1XNyTLHAlbm2Gy3wXuP8GocW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:f20::/48
Signature Algorithm: sha256WithRSAEncryption
6a:bc:bb:fc:46:4d:9b:cc:5b:e7:9a:98:64:b3:ae:4c:ba:64:
d3:b5:08:97:c6:2c:40:84:f4:59:c3:c2:4b:fc:f7:36:00:4e:
df:dc:cf:f2:4d:07:73:73:e3:86:b0:c7:b6:02:eb:fd:28:e7:
82:73:69:92:b0:a4:95:b8:15:ae:b0:68:7b:68:aa:33:a2:b2:
fd:81:29:d9:9b:e9:34:38:cd:c9:93:dc:b0:32:48:e0:bb:18:
88:a4:ff:cb:f8:34:41:65:20:a6:93:e4:dd:9d:7f:9b:a8:c2:
7c:43:f1:c6:28:b2:53:35:53:c0:eb:c4:53:ea:93:47:44:f5:
02:38:b8:5a:5a:30:f6:47:b8:13:27:df:9c:39:11:20:e4:1d:
df:d6:ed:55:82:36:b8:ba:60:0c:1d:eb:f3:b3:0d:98:6a:bc:
32:a0:2f:8b:44:2d:cf:19:28:d7:40:4f:56:22:48:bd:fc:e6:
f6:1d:7a:07:86:e8:2c:7e:ea:fe:1c:1a:c2:e0:85:ad:7c:18:
fe:63:2a:51:d2:7e:86:9a:5e:00:8c:fb:6a:92:77:e6:6d:3b:
00:28:e3:d0:30:4e:24:1d:ea:60:12:56:98:ed:27:83:8a:90:
01:ff:b1:84:8d:39:e7:7d:d4:24:12:01:a5:f2:0a:82:cd:74:
a3:68:05:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:07 2025 by rpki-client