Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/76-PPFTeFPPX-WK1AON6IYoLFd0.roa
File: 76-PPFTeFPPX-WK1AON6IYoLFd0.roa (raw, json)
Hash identifier: 9D4i2+de6DN5sN2ou2/ShrpGHhZXs3WdRoONBU5Zitk=
Subject key identifier: EF:AF:8F:3C:54:DE:14:F3:D7:F9:62:B5:00:E3:7A:21:8A:0B:15:DD
Certificate issuer: /CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Certificate serial: 01856DD40BE07D082435C95460826761DF55
Authority key identifier: B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/76-PPFTeFPPX-WK1AON6IYoLFd0.roa
Signing time: Sun 01 Jan 2023 14:54:51 +0000
ROA not before: Sun 01 Jan 2023 14:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3170
IP address blocks: 2001:67c:3e0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:0b:e0:7d:08:24:35:c9:54:60:82:67:61:df:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Validity
Not Before: Jan 1 14:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efaf8f3c54de14f3d7f962b500e37a218a0b15dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:75:a0:08:d6:73:e4:01:ec:bd:33:c0:38:37:
af:6d:91:6c:f2:bf:50:82:3f:df:73:40:0e:a8:08:
5d:96:23:f2:20:9a:5a:a9:f1:3d:3d:a3:06:9c:76:
ef:ea:1c:93:83:11:05:33:12:3f:0f:02:df:87:da:
a6:bf:db:74:bb:4a:8a:03:d7:3b:3f:e9:c8:f8:e6:
a1:48:68:c1:83:af:5a:9a:dc:a0:65:a7:73:d9:4e:
61:71:12:d8:42:bc:81:2c:54:18:4c:da:f1:05:f1:
ed:7a:b5:11:48:e7:9e:74:f8:4f:bf:3b:57:6e:87:
73:a9:61:84:13:03:ad:7a:30:75:e7:73:2d:55:de:
a9:5c:f4:ca:6b:20:af:dd:20:5b:71:ba:55:c8:12:
48:1b:61:83:3e:15:04:64:f3:c2:d6:f1:7b:68:e8:
85:c5:93:17:7a:60:5b:69:ef:7e:97:82:77:94:74:
8d:b1:e8:59:98:5f:d9:d8:e0:b5:0c:74:65:3b:64:
b8:a1:6a:d8:a2:83:07:61:1b:b6:1f:4f:0f:b5:bd:
82:1f:e9:9f:7b:da:f6:33:54:4e:3d:f0:60:41:96:
b7:6d:8d:31:da:8f:5c:97:26:9d:a3:ea:83:c1:d2:
89:ff:f3:7c:b0:e8:1b:89:e8:31:56:40:3f:e9:b0:
f2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:AF:8F:3C:54:DE:14:F3:D7:F9:62:B5:00:E3:7A:21:8A:0B:15:DD
X509v3 Authority Key Identifier:
keyid:B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/76-PPFTeFPPX-WK1AON6IYoLFd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:3e0::/48
Signature Algorithm: sha256WithRSAEncryption
8b:23:87:ec:ea:61:50:87:db:41:a1:62:d7:db:a4:d3:4a:db:
d9:5d:4b:c1:f9:c0:5a:86:48:9e:b3:fb:99:24:43:18:8f:cc:
91:41:fa:54:e8:6a:3e:11:0f:57:48:a2:be:54:e8:9a:58:5d:
fb:32:91:7f:43:f9:18:72:bc:f3:20:3d:1a:28:d3:9a:2a:ee:
82:fe:72:ad:5b:92:d2:84:95:1a:fe:85:a4:b4:87:3d:21:6b:
53:9b:81:07:a0:6a:a0:63:20:e7:36:9d:a5:f1:06:0f:f7:f3:
27:30:6d:ef:4d:aa:f4:c5:62:bd:5e:f9:d3:cf:98:84:31:b9:
13:bc:20:ba:fb:b0:e0:a2:4f:09:8a:cb:53:97:5c:d4:cc:9c:
2b:d1:40:4e:c0:d8:0f:d4:56:6c:4a:01:f6:40:cd:12:46:9a:
ac:68:03:d4:07:12:5d:c0:0d:41:bf:45:fc:6d:a8:34:4a:42:
a6:f4:34:57:f1:ea:2c:bf:44:a7:aa:39:44:6f:e4:7f:51:ca:
60:d3:34:28:18:b8:f2:43:c3:da:b2:3e:6f:1b:5f:28:2f:2f:
d2:12:22:a6:73:49:99:d2:cf:61:a3:31:75:9a:9e:5f:13:d3:
65:20:e9:71:e8:c7:c4:b1:8a:43:eb:df:43:bf:02:91:2e:e6:
34:54:1f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:45 2024 by rpki-client on console-fra.rpki-client.org