Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c128bc-cddb-4b07-8d01-62f1a350414c/1/3OcwBEf-HjdsSVXL4xoXpZN5Idk.roa
File: 3OcwBEf-HjdsSVXL4xoXpZN5Idk.roa (raw, json)
Hash identifier: VNnAV7XSql/1Hfj2BoOrB0u9qee2pk6XXyYW6QFwSUE=
Subject key identifier: DC:E7:30:04:47:FE:1E:37:6C:49:55:CB:E3:1A:17:A5:93:79:21:D9
Certificate issuer: /CN=705b507a1019f7c465737dc59736c06fdddcefe7
Certificate serial: 018CACCB5E5A4C558CC1920A8995943FBD46
Authority key identifier: 70:5B:50:7A:10:19:F7:C4:65:73:7D:C5:97:36:C0:6F:DD:DC:EF:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFtQehAZ98Rlc33FlzbAb93c7-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c128bc-cddb-4b07-8d01-62f1a350414c/1/3OcwBEf-HjdsSVXL4xoXpZN5Idk.roa
Signing time: Wed 27 Dec 2023 19:40:58 +0000
ROA not before: Wed 27 Dec 2023 19:40:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41720
IP address blocks: 2001:67c:d68::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ac:cb:5e:5a:4c:55:8c:c1:92:0a:89:95:94:3f:bd:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705b507a1019f7c465737dc59736c06fdddcefe7
Validity
Not Before: Dec 27 19:40:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dce7300447fe1e376c4955cbe31a17a5937921d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7f:75:7c:98:fd:0e:58:c1:48:f2:63:42:c0:
45:7e:ef:f2:b0:dc:1b:39:e9:6a:87:f7:37:fd:40:
dd:61:58:00:a5:3b:be:12:cc:bd:b4:86:d7:3f:76:
99:0b:28:f6:7a:1c:0a:d9:37:6e:aa:0e:f4:4b:28:
c3:83:bf:a4:25:4a:62:d1:21:af:b7:0a:fa:66:1c:
a7:10:1c:b6:77:9c:96:7c:69:c9:59:b8:bc:2d:0c:
9e:db:84:fa:63:36:1c:5f:5c:34:48:7c:94:fa:25:
5d:2e:8f:d2:e4:97:9b:2c:1a:c3:a4:2d:de:3d:d9:
b2:2e:93:79:67:d4:aa:44:ec:68:99:91:e5:ae:80:
b6:09:01:9e:e2:c7:d6:77:0f:3b:f4:12:26:4d:a9:
2f:31:18:86:2e:05:f9:5a:80:d3:65:98:c6:b8:68:
c4:74:a0:fd:0d:38:35:5f:61:68:d7:8b:28:6e:17:
6b:22:64:fa:d4:10:d6:f7:d3:2f:7c:28:47:b9:41:
f6:22:af:34:12:92:c4:0b:7b:14:f3:47:09:bb:04:
3c:c8:c9:38:78:79:11:54:e7:cb:41:7e:a7:82:39:
cc:36:c7:66:5d:33:52:e3:87:79:0c:84:10:bf:60:
bc:8f:c6:5c:ed:a8:73:d7:59:62:18:93:22:01:28:
e8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E7:30:04:47:FE:1E:37:6C:49:55:CB:E3:1A:17:A5:93:79:21:D9
X509v3 Authority Key Identifier:
keyid:70:5B:50:7A:10:19:F7:C4:65:73:7D:C5:97:36:C0:6F:DD:DC:EF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFtQehAZ98Rlc33FlzbAb93c7-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c128bc-cddb-4b07-8d01-62f1a350414c/1/3OcwBEf-HjdsSVXL4xoXpZN5Idk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c128bc-cddb-4b07-8d01-62f1a350414c/1/cFtQehAZ98Rlc33FlzbAb93c7-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:d68::/48
Signature Algorithm: sha256WithRSAEncryption
88:8f:b6:60:83:4c:2e:7f:b3:72:18:9b:d6:9c:ac:d4:f1:c2:
16:cd:24:b7:35:ce:49:f2:0c:0f:1d:73:6f:3f:8c:ac:49:8d:
a8:d2:98:23:fc:9d:ad:59:e8:54:f9:a0:6d:fe:9a:b4:74:b5:
e3:82:c2:72:62:7a:d1:53:2f:b9:5b:28:82:d9:d2:cc:28:d9:
96:2f:31:8d:90:d5:fa:d5:3a:37:53:c3:17:a2:82:03:e0:d8:
79:c8:c8:a2:4f:b7:c9:ca:e3:d3:98:5c:3f:8a:f8:13:76:de:
f0:d4:40:40:51:03:0a:82:e8:40:85:24:7b:4e:fd:70:c3:b4:
a5:86:40:4b:dc:98:42:f3:6a:d9:4b:43:15:9e:56:dc:af:eb:
86:97:91:97:20:86:79:37:09:13:3b:7b:0e:a3:4a:b3:c4:7f:
50:92:3a:2a:42:45:3e:88:bc:a8:97:14:5e:bc:b6:d1:78:52:
f5:d8:7f:84:15:5d:c7:aa:41:15:e8:28:74:80:ca:46:c2:c0:
2d:5c:f2:2b:3a:17:3a:d9:fb:f9:c8:fe:7a:0d:1c:9f:cf:d0:
4f:cc:09:78:49:dd:09:7a:0a:9b:91:be:dd:d2:15:0b:b8:4f:
1a:ff:28:aa:72:cb:a4:39:ac:ab:58:a4:ec:0d:51:fa:d5:86:
d1:38:43:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:24 2024 by rpki-client on console-ams.rpki-client.org