Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/vdDO4S_WoMmwfJk_x4GakmLvG0c.roa
File: vdDO4S_WoMmwfJk_x4GakmLvG0c.roa (raw, json)
Hash identifier: 6TCXigog1VuP29gnckHlC/VJj2GkjKHiHlY2BnpslEU=
Subject key identifier: BD:D0:CE:E1:2F:D6:A0:C9:B0:7C:99:3F:C7:81:9A:92:62:EF:1B:47
Certificate issuer: /CN=8b93e567af198a94e1fcf05fe0fe7c921095a84a
Certificate serial: 018596717F82C32E6A21E10DEB3A2BABD236
Authority key identifier: 8B:93:E5:67:AF:19:8A:94:E1:FC:F0:5F:E0:FE:7C:92:10:95:A8:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5PlZ68ZipTh_PBf4P58khCVqEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/vdDO4S_WoMmwfJk_x4GakmLvG0c.roa
Signing time: Mon 09 Jan 2023 12:11:38 +0000
ROA not before: Mon 09 Jan 2023 12:11:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58010
IP address blocks: 2001:67c:1bf4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:71:7f:82:c3:2e:6a:21:e1:0d:eb:3a:2b:ab:d2:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b93e567af198a94e1fcf05fe0fe7c921095a84a
Validity
Not Before: Jan 9 12:11:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdd0cee12fd6a0c9b07c993fc7819a9262ef1b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:aa:41:c2:43:fc:10:9d:3e:6a:45:a8:6e:15:
10:c1:ee:61:a7:c8:2b:e1:d7:d6:71:cd:25:30:c0:
ae:d2:82:8e:33:f1:d1:c8:52:e2:81:f8:78:da:78:
c6:41:1b:00:9d:e1:b0:e3:27:6d:23:b9:30:ff:9c:
2e:cc:e1:3e:a8:c2:57:08:df:87:5c:1f:ef:86:99:
cd:79:70:aa:79:d1:35:0f:ac:74:91:6c:b5:7e:8f:
68:7b:4a:40:01:51:22:26:38:07:3b:30:48:1b:77:
7f:35:f3:44:86:4f:2c:cc:d6:bf:5b:bd:16:80:82:
9c:d4:ac:0b:4d:08:c9:22:9d:2e:93:84:bd:fb:9b:
71:a0:76:fe:a4:be:1a:a5:70:31:9b:1d:e9:00:26:
18:9c:81:73:97:64:28:fc:d0:4c:16:a7:05:32:e5:
17:93:70:4d:1f:27:28:23:af:25:c2:94:73:4f:95:
8e:76:c3:0c:86:b1:8f:be:3a:50:5c:57:67:5a:b2:
d2:23:31:3d:42:0d:51:a5:0d:b0:ec:62:67:f3:24:
97:09:46:fd:a5:60:5d:54:78:f6:0b:20:29:d7:f3:
bf:61:89:83:bc:e0:70:64:db:6f:55:1f:55:73:ad:
fd:59:ac:a4:90:91:89:07:44:60:a2:91:2b:e4:11:
84:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D0:CE:E1:2F:D6:A0:C9:B0:7C:99:3F:C7:81:9A:92:62:EF:1B:47
X509v3 Authority Key Identifier:
keyid:8B:93:E5:67:AF:19:8A:94:E1:FC:F0:5F:E0:FE:7C:92:10:95:A8:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5PlZ68ZipTh_PBf4P58khCVqEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/vdDO4S_WoMmwfJk_x4GakmLvG0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/i5PlZ68ZipTh_PBf4P58khCVqEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1bf4::/48
Signature Algorithm: sha256WithRSAEncryption
3f:eb:ed:ae:70:fa:ef:e7:06:b1:af:df:d0:5f:10:83:17:6c:
da:e7:c8:8a:c5:83:8b:70:49:01:95:ad:e8:05:c6:3a:46:4c:
9c:7c:11:2f:a7:ca:9c:0e:2b:44:2b:a8:5f:87:c1:ba:11:f0:
06:61:a6:da:64:ab:1a:bc:41:25:54:22:3c:1f:87:56:47:22:
36:28:70:55:27:06:30:c4:24:59:ad:fa:d7:84:e5:2a:3c:2c:
66:7e:99:eb:03:bb:16:70:96:a3:80:ad:ce:fb:35:91:be:af:
9a:e3:54:d9:9d:4d:6a:8a:47:d8:3b:11:56:95:84:7a:55:84:
5c:f5:1b:f7:bd:ca:e5:80:fc:03:af:4b:2a:27:82:70:63:89:
3f:b2:0c:4e:24:20:65:f7:05:27:fc:30:42:cf:d2:fe:8f:e9:
7b:fc:a3:9a:82:63:85:ca:c9:c3:f3:23:cc:69:8a:d7:e3:72:
4b:e0:eb:9e:8b:c6:f7:0a:77:90:2d:9c:11:de:39:55:49:ef:
4f:e2:aa:a6:83:9b:fa:9d:3b:c9:a4:56:2c:3c:99:57:cc:51:
9d:9b:72:08:6b:18:19:9e:3f:39:e0:fc:c3:7c:c4:62:42:2e:
86:06:09:04:58:11:94:f1:07:ce:d6:cb:f8:7e:b5:75:26:47:
77:4f:8c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:40 2024 by rpki-client on console-fra.rpki-client.org