Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/5b5b3e-b043-4933-a096-503c766b78b3/1/DcYKGS-raeb6IEfUiyC0Kw75Fqw.roa
File: DcYKGS-raeb6IEfUiyC0Kw75Fqw.roa (raw, json)
Hash identifier: RrhSiPWhS5WDrkG2ZFtG0NlBPXNZ1wvMrmGaBtd49Ik=
Subject key identifier: 0D:C6:0A:19:2F:AB:69:E6:FA:20:47:D4:8B:20:B4:2B:0E:F9:16:AC
Certificate issuer: /CN=6615e50f43013c356da097e34d465f2abc494e9d
Certificate serial: 01856D01BE46881F5B03A3FD68590BEC387F
Authority key identifier: 66:15:E5:0F:43:01:3C:35:6D:A0:97:E3:4D:46:5F:2A:BC:49:4E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhXlD0MBPDVtoJfjTUZfKrxJTp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/5b5b3e-b043-4933-a096-503c766b78b3/1/DcYKGS-raeb6IEfUiyC0Kw75Fqw.roa
Signing time: Sun 01 Jan 2023 11:05:08 +0000
ROA not before: Sun 01 Jan 2023 11:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 65535
IP address blocks: 2001:67c:2b5c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:be:46:88:1f:5b:03:a3:fd:68:59:0b:ec:38:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6615e50f43013c356da097e34d465f2abc494e9d
Validity
Not Before: Jan 1 11:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0dc60a192fab69e6fa2047d48b20b42b0ef916ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d8:d8:d1:9d:d0:fd:27:40:47:3e:e8:a3:31:
0a:34:07:17:45:88:07:9a:f0:63:42:cb:62:ae:9a:
7a:36:70:b2:66:af:ed:14:85:d9:8d:a5:f3:63:ee:
60:7f:68:14:c4:19:1b:15:47:9f:ff:fb:80:7c:c0:
e2:7c:0f:e6:8c:e5:f4:7e:f2:f7:8d:51:24:0f:26:
69:15:7e:5a:e1:71:80:23:68:c0:f9:af:a4:36:97:
60:95:bd:95:82:f0:f1:b6:3c:59:14:50:32:6a:25:
72:6e:2a:ff:af:07:c9:eb:4b:99:4a:fa:ed:8f:b1:
c9:5b:41:1d:a0:ad:9d:08:fc:62:89:ec:c0:0d:87:
4e:26:1d:34:9e:a5:78:17:f4:0a:b8:7b:8a:12:ea:
76:6d:28:d7:3d:06:f4:47:9d:a7:9a:7d:92:a1:2e:
1e:4d:8e:d6:a0:11:1f:28:c2:5d:c5:ea:9d:1c:5a:
16:8d:7a:64:9c:8e:e4:9f:f8:15:53:4a:49:36:21:
be:a9:e7:3e:cd:5c:f3:19:52:81:ca:ed:2b:fd:79:
96:ef:d4:05:54:8b:34:d0:2e:ce:c1:85:11:7a:f0:
c8:1d:19:d5:b7:5c:ef:74:9b:0f:f5:f0:0b:08:85:
46:cc:71:3c:11:66:86:e4:5d:a3:71:68:52:33:7e:
86:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:C6:0A:19:2F:AB:69:E6:FA:20:47:D4:8B:20:B4:2B:0E:F9:16:AC
X509v3 Authority Key Identifier:
keyid:66:15:E5:0F:43:01:3C:35:6D:A0:97:E3:4D:46:5F:2A:BC:49:4E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhXlD0MBPDVtoJfjTUZfKrxJTp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5b5b3e-b043-4933-a096-503c766b78b3/1/DcYKGS-raeb6IEfUiyC0Kw75Fqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5b5b3e-b043-4933-a096-503c766b78b3/1/ZhXlD0MBPDVtoJfjTUZfKrxJTp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2b5c::/48
Signature Algorithm: sha256WithRSAEncryption
82:13:0b:69:a9:c6:df:d4:cc:b0:58:a4:f6:2b:6e:d3:d5:0f:
13:f5:ab:ae:f0:80:d9:a5:08:c9:76:3f:77:fb:1a:08:02:7c:
c4:76:7c:62:9a:75:03:f3:b7:8f:d6:2d:ac:c8:b2:bb:64:75:
27:2d:c0:7e:14:bf:4f:b8:56:75:8a:81:6d:38:32:3c:c5:e3:
8a:ca:e6:3d:8c:12:31:19:6a:70:8b:d5:85:b6:31:b1:48:e2:
9f:1a:e8:38:b4:88:67:89:8a:b8:ff:42:48:e6:95:1b:37:0c:
32:17:8f:f9:cf:a3:fb:f4:b2:22:7c:d8:a3:5f:99:db:dc:66:
26:6b:12:74:c1:52:0f:85:28:10:bd:97:d9:5c:19:b7:9c:6b:
6d:5a:95:87:e7:8c:a5:9e:1a:7f:24:77:17:fd:3f:66:67:47:
f3:92:b7:c3:8f:e6:3e:09:89:90:aa:7f:d5:4e:96:85:73:e5:
a9:d4:81:c4:92:cf:77:ad:89:dd:ab:98:b5:06:a0:95:b1:90:
ab:b0:70:b2:19:0f:7e:97:aa:5e:32:c8:05:7d:a8:0a:7c:4f:
17:a9:18:b5:13:86:12:db:bb:cb:fe:07:df:02:db:88:f9:0f:
cc:79:01:20:e1:8c:fd:09:11:4f:41:23:8a:89:cf:a1:e0:f4:
dc:97:86:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:43 2024 by rpki-client on console-fra.rpki-client.org