Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/PR7UvfK27StVr5Z74hzZjtJKwfM.roa
File: PR7UvfK27StVr5Z74hzZjtJKwfM.roa (raw, json)
Hash identifier: ap8VJJ6/YxXbxbpYJfDfFREKJb7tXv9jHG1sHGoYNmo=
Subject key identifier: 3D:1E:D4:BD:F2:B6:ED:2B:55:AF:96:7B:E2:1C:D9:8E:D2:4A:C1:F3
Certificate issuer: /CN=d116835d037786620a9e9f7a0e360498bb654127
Certificate serial: 01856F02283FED13D789AAACC5E47CA570D8
Authority key identifier: D1:16:83:5D:03:77:86:62:0A:9E:9F:7A:0E:36:04:98:BB:65:41:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RaDXQN3hmIKnp96DjYEmLtlQSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/PR7UvfK27StVr5Z74hzZjtJKwfM.roa
Signing time: Sun 01 Jan 2023 20:24:50 +0000
ROA not before: Sun 01 Jan 2023 20:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 2001:678:274::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:28:3f:ed:13:d7:89:aa:ac:c5:e4:7c:a5:70:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d116835d037786620a9e9f7a0e360498bb654127
Validity
Not Before: Jan 1 20:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d1ed4bdf2b6ed2b55af967be21cd98ed24ac1f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:73:de:84:1b:a7:c0:07:bc:14:42:ba:9f:0d:
bf:5b:6f:d2:b4:b4:fb:f1:15:ab:64:14:e4:dc:b1:
39:a2:cf:24:21:4b:6e:d8:b2:51:8c:2b:ef:8a:e1:
ab:33:80:b8:28:23:65:fe:32:38:c2:a6:cd:dc:a4:
67:8f:72:1e:ed:0d:1f:66:e7:0e:51:f0:31:2f:41:
35:77:ba:b3:86:89:e6:51:43:62:f0:3e:73:93:5d:
76:ff:9f:d6:bc:77:2c:3c:0b:15:50:83:00:7b:80:
7e:d5:bc:1d:36:9d:c4:04:05:a7:78:f3:b3:96:64:
f4:b0:54:bd:f1:b8:bd:da:69:42:a3:04:a4:85:b2:
d4:7d:5e:16:8f:29:c8:14:e1:69:8c:c8:71:e4:cc:
22:7c:a9:6b:f4:b3:de:3e:09:9d:0d:54:85:fb:1d:
3a:57:26:82:a7:b6:dc:c7:59:5b:b4:cd:34:04:39:
69:36:a8:33:2d:01:2e:ba:1a:2f:1d:67:85:3d:24:
ed:85:76:4e:0e:c7:65:a6:0d:33:12:39:62:5d:c5:
f0:d1:16:f0:5f:a6:ab:db:ff:15:6f:28:d6:98:aa:
05:6c:6c:10:9c:17:60:f4:87:1a:e6:af:ab:1c:cb:
1e:db:36:f3:34:07:3e:51:1a:3f:2f:a8:3f:b5:03:
ef:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:1E:D4:BD:F2:B6:ED:2B:55:AF:96:7B:E2:1C:D9:8E:D2:4A:C1:F3
X509v3 Authority Key Identifier:
keyid:D1:16:83:5D:03:77:86:62:0A:9E:9F:7A:0E:36:04:98:BB:65:41:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RaDXQN3hmIKnp96DjYEmLtlQSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/PR7UvfK27StVr5Z74hzZjtJKwfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f507cb-7371-4ad1-b7e3-16a7d60d5bea/1/0RaDXQN3hmIKnp96DjYEmLtlQSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:274::/48
Signature Algorithm: sha256WithRSAEncryption
a7:b1:c9:3e:53:6d:ef:a6:ed:19:a1:74:36:e3:bb:c2:bd:54:
e4:42:7f:d1:0e:ac:20:f6:d3:bb:f6:63:97:36:ab:31:de:c9:
90:ac:96:63:2c:de:ef:98:b5:a2:77:f2:4a:cb:86:1e:c9:8b:
2d:eb:53:5d:24:d4:d6:26:b8:f3:8b:d5:af:9f:ed:2d:f8:c7:
27:cf:35:db:c7:70:73:7f:81:b9:29:71:b1:66:38:70:26:e5:
4a:f3:14:a2:f4:0f:21:78:b8:15:c5:97:7c:30:e7:ac:99:bf:
8b:fa:84:01:b6:46:c4:93:0e:57:ae:31:5a:c2:26:6d:3e:25:
70:97:72:6f:7c:43:c2:57:6e:f8:23:00:d6:c3:1b:14:d4:28:
2e:da:a4:36:9b:8f:8e:1c:a1:3c:c9:43:57:7d:29:f9:db:9e:
50:65:11:19:4b:ae:53:fe:53:60:28:d4:55:f3:7e:ce:ea:04:
41:f3:15:ef:36:e9:7a:f1:09:2c:9b:de:9c:1c:eb:75:84:3b:
58:87:f1:74:47:cd:fa:8a:85:5b:9b:f0:ee:f4:40:71:cc:2b:
89:26:78:f7:f2:55:36:30:ea:db:b1:51:73:7f:ae:dd:5d:56:
fd:e8:a1:61:e0:46:2f:40:a9:7c:23:9c:d0:ec:38:b5:ac:88:
fd:ac:fb:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:32 2024 by rpki-client on console-ams.rpki-client.org