Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/100919-d951-4a6e-9f0c-7cca3a2e7490/1/ICDRCBwOsqcHTyUw7Beqlo-Ayw4.roa
File: ICDRCBwOsqcHTyUw7Beqlo-Ayw4.roa (raw, json)
Hash identifier: SXTOmVrfH1bAczY3uJHYFrOAMoJzJB7VcaCuZg5Ob/k=
Subject key identifier: 20:20:D1:08:1C:0E:B2:A7:07:4F:25:30:EC:17:AA:96:8F:80:CB:0E
Certificate issuer: /CN=b71f4868bd409292b56959f35a4c14fcc25472ec
Certificate serial: 0192AE6AA279F9E483C9F8EAB5C243619FA7
Authority key identifier: B7:1F:48:68:BD:40:92:92:B5:69:59:F3:5A:4C:14:FC:C2:54:72:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tx9IaL1AkpK1aVnzWkwU_MJUcuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/100919-d951-4a6e-9f0c-7cca3a2e7490/1/ICDRCBwOsqcHTyUw7Beqlo-Ayw4.roa
Signing time: Mon 21 Oct 2024 09:31:16 +0000
ROA not before: Mon 21 Oct 2024 09:31:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205684
IP address blocks: 2001:678:d04::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 01 Nov 2024 13:56:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ae:6a:a2:79:f9:e4:83:c9:f8:ea:b5:c2:43:61:9f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b71f4868bd409292b56959f35a4c14fcc25472ec
Validity
Not Before: Oct 21 09:31:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2020d1081c0eb2a7074f2530ec17aa968f80cb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:56:90:3d:d1:55:9b:80:de:bf:53:b7:f8:e0:
c0:51:cf:15:19:26:dd:31:a6:62:05:8f:cf:d4:dc:
78:1b:4c:7a:e5:b1:37:72:04:d8:42:dc:eb:69:18:
01:ab:fb:c6:75:cc:24:c2:93:ae:9b:2f:91:f7:9a:
87:6f:e8:55:47:57:52:f5:a1:e3:2c:f5:9b:dc:6d:
fe:88:d9:2c:08:05:e1:5f:ad:c3:d5:0b:44:0a:1b:
01:07:06:1a:39:38:1c:68:4b:14:6b:b4:51:fb:d7:
51:25:25:a0:c7:ca:e6:94:7c:68:0a:63:6d:4f:03:
39:e6:16:47:2c:25:70:18:d6:03:64:6b:b6:0e:5f:
f3:d1:f2:51:1c:22:e3:3c:90:b0:81:b6:2d:a3:c1:
2b:3e:e6:59:d7:91:9c:0f:d8:86:10:0f:2b:64:f1:
dd:95:51:0a:29:78:e6:ea:6f:41:33:46:65:59:c4:
6e:b1:6e:f5:ff:58:b8:b7:7a:cc:fc:07:82:5d:37:
20:88:36:34:52:36:06:cd:4a:2d:52:47:f2:3c:5e:
65:3e:40:61:ac:71:e5:7a:67:7b:22:10:42:e7:67:
5f:a6:3b:6c:c3:69:f5:f9:2c:6c:ff:f8:39:ed:fb:
4e:04:4b:82:bb:aa:cc:b4:82:42:3b:29:67:fb:4e:
ff:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:20:D1:08:1C:0E:B2:A7:07:4F:25:30:EC:17:AA:96:8F:80:CB:0E
X509v3 Authority Key Identifier:
keyid:B7:1F:48:68:BD:40:92:92:B5:69:59:F3:5A:4C:14:FC:C2:54:72:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tx9IaL1AkpK1aVnzWkwU_MJUcuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/100919-d951-4a6e-9f0c-7cca3a2e7490/1/ICDRCBwOsqcHTyUw7Beqlo-Ayw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/100919-d951-4a6e-9f0c-7cca3a2e7490/1/tx9IaL1AkpK1aVnzWkwU_MJUcuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d04::/48
Signature Algorithm: sha256WithRSAEncryption
66:21:26:b9:20:40:f9:a7:f7:90:ea:6d:12:f6:d9:4e:6f:27:
99:e6:3e:c0:e3:a8:a8:97:19:9f:23:3b:8a:47:f9:16:49:e2:
fe:66:0e:56:ba:c4:01:48:26:84:0d:8d:de:41:0a:4a:6b:93:
39:e7:ff:f4:c9:27:2e:99:4d:8b:e9:89:d1:f3:45:66:54:42:
34:c8:e8:da:05:f8:66:95:06:4b:35:99:d8:07:54:b6:e0:3a:
44:bf:7c:c7:fc:34:7a:43:e3:29:5c:3a:b5:fd:c1:82:72:fd:
c8:e4:45:61:4f:39:c2:a8:26:95:75:7c:56:9b:5b:3c:5e:6d:
2c:e2:3f:d8:02:f6:63:e8:55:ea:ad:70:a8:b2:13:ac:29:71:
a5:7a:78:aa:d5:cc:a1:3f:9a:ee:3c:9c:e0:aa:66:22:e4:12:
a2:44:44:da:58:b6:22:ab:4f:1f:9f:25:3e:06:9a:f8:e9:fe:
97:82:07:3e:8a:fd:ee:70:7a:89:81:fd:d0:5c:b9:c1:57:c6:
95:1b:35:78:1b:b2:82:f2:14:50:7a:ae:5a:e0:42:6a:d3:46:
1b:fd:15:28:9c:00:5f:96:9e:6e:99:43:7d:ea:6e:af:7f:ee:
5b:7d:19:5a:ef:f7:d2:7a:74:ac:9c:cb:28:51:7c:e5:eb:57:
88:53:9f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 16:06:58 2024 by rpki-client on console-ams.rpki-client.org