Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/08buT8bo7V4y8NhGNsGUBiPigdU.roa
File: 08buT8bo7V4y8NhGNsGUBiPigdU.roa (raw, json)
Hash identifier: 01BGKq/qGvJcME1KmSw/bcRqJXfzlf+euT9it19JRLI=
Subject key identifier: D3:C6:EE:4F:C6:E8:ED:5E:32:F0:D8:46:36:C1:94:06:23:E2:81:D5
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 0188B9079B6A8D710F4DA56F9D02BBE4F128
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/08buT8bo7V4y8NhGNsGUBiPigdU.roa
Signing time: Wed 14 Jun 2023 08:31:03 +0000
ROA not before: Wed 14 Jun 2023 08:31:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198149
IP address blocks: 2a13:1c47:caf0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:07:9b:6a:8d:71:0f:4d:a5:6f:9d:02:bb:e4:f1:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Jun 14 08:31:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3c6ee4fc6e8ed5e32f0d84636c1940623e281d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:27:d9:69:56:01:14:41:f8:d7:d9:79:03:67:
db:45:2e:f8:ce:ce:a6:df:66:a7:4a:0d:c5:e1:92:
ef:7b:1b:21:f9:7b:37:a1:0c:72:6b:6c:6b:37:4b:
e9:5b:3b:41:61:30:7e:dc:37:ed:0c:ff:3e:59:f3:
ca:52:bd:cf:d3:f3:cb:16:b2:fc:00:65:81:36:5c:
db:cc:a6:19:9d:e4:e8:8e:52:0f:7e:26:6e:49:ce:
c1:2b:d0:f0:37:55:eb:0c:aa:a4:ea:43:83:14:1e:
4f:8b:a3:4e:d7:79:92:20:d9:ca:5f:1a:d4:be:7d:
5e:05:40:01:55:42:fc:49:b8:e0:4d:f8:30:e2:5e:
92:53:bf:1f:6f:9d:ef:b6:ea:ce:35:ec:73:e2:5c:
59:aa:3e:22:6d:a8:bc:ca:de:8e:90:0d:0e:ab:e5:
8a:c0:b1:ca:c8:e3:32:59:c7:9e:5d:95:af:8d:01:
aa:90:ee:a6:a6:76:3f:7d:7e:13:e4:09:81:0f:97:
aa:03:f8:5c:48:15:32:36:32:c9:2b:e4:46:50:87:
b3:1c:a6:eb:59:96:9f:6f:2c:9c:1e:86:b0:c4:fb:
9f:4a:de:bd:18:94:5b:29:0b:0f:fd:d7:2d:7f:e0:
be:45:4a:37:4b:d0:e5:6a:e1:5f:47:f7:3b:c6:cc:
c5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C6:EE:4F:C6:E8:ED:5E:32:F0:D8:46:36:C1:94:06:23:E2:81:D5
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/08buT8bo7V4y8NhGNsGUBiPigdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1c47:caf0::/44
Signature Algorithm: sha256WithRSAEncryption
41:df:23:f3:14:88:7e:10:e1:22:8d:e8:90:87:8d:9e:9a:36:
f3:20:59:e7:af:ff:da:e4:81:e4:68:51:8f:6f:96:6f:bb:e2:
f2:f2:b7:2e:9b:64:28:d6:51:a4:8f:5c:03:41:81:63:7e:63:
94:dc:2f:be:2f:03:09:84:62:e9:49:75:35:59:95:bf:f0:04:
b4:05:7e:55:d7:13:f1:f7:65:91:3a:17:80:00:04:99:ee:1a:
70:16:fd:c5:92:2c:f5:f7:1e:1f:18:90:27:bc:af:9d:85:9f:
5e:57:ad:d4:42:4e:5b:36:5a:a4:4f:5f:54:28:4b:71:d3:7a:
32:25:f5:b3:15:7b:e8:17:3a:28:dd:3c:9e:6f:04:8e:ff:87:
34:ee:1a:e9:5f:26:97:d1:bf:f5:f4:28:df:a6:d9:42:4c:0a:
57:6b:10:2f:4f:ad:12:31:81:04:4e:24:c7:5b:2c:30:e8:8b:
f7:64:d4:85:4d:e1:8b:b0:8e:79:bd:db:67:75:06:39:50:ad:
f5:bd:7e:75:1b:b4:01:90:e7:16:2d:ce:63:fb:e7:bc:bb:d7:
13:69:66:cd:b9:5b:33:1a:9d:8b:da:18:e7:07:e6:37:45:ce:
65:56:58:17:2f:cb:82:84:d0:c9:ff:65:6e:49:d2:9c:51:2e:
b5:57:54:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org