Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/18uUqBBP2vghqm77np1J_fIXNPw.roa
File: 18uUqBBP2vghqm77np1J_fIXNPw.roa (raw, json)
Hash identifier: gJVksxuARForLi3dYoaALgfcEjFpSsb0/XUf3RK9cPc=
Subject key identifier: D7:CB:94:A8:10:4F:DA:F8:21:AA:6E:FB:9E:9D:49:FD:F2:17:34:FC
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C41740D46649C20FF080418202702CD
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/18uUqBBP2vghqm77np1J_fIXNPw.roa
Signing time: Sun 01 Jan 2023 07:35:06 +0000
ROA not before: Sun 01 Jan 2023 07:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210951
IP address blocks: 2a0c:e640:1020::/44 maxlen: 48
Validation: Failed, certificate revoked on Sun 18 Jun 2023 21:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:74:0d:46:64:9c:20:ff:08:04:18:20:27:02:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7cb94a8104fdaf821aa6efb9e9d49fdf21734fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:27:f6:51:8c:e5:78:e9:9f:0c:2b:45:b0:76:
b6:8d:17:c9:37:07:9f:ea:55:22:70:9c:be:65:34:
92:0d:99:02:ff:08:e7:36:5b:5e:96:52:2d:e2:ec:
0a:d4:c6:95:05:01:b5:aa:47:30:8f:b6:a9:ee:5b:
fe:a3:d6:07:8f:7f:a6:8b:21:6b:71:ad:74:6e:d0:
7f:2c:c8:0e:e3:b1:5c:73:30:09:ff:76:ac:cf:dd:
3b:1e:15:7d:83:8a:c8:27:5e:04:47:b2:5a:fb:87:
65:bb:0c:89:85:15:44:d2:a4:64:21:21:31:48:fb:
96:a3:d0:a4:3b:9b:6f:be:85:a1:97:20:5a:63:6f:
dd:b0:7c:53:2d:d8:78:72:d0:5c:21:fa:19:4f:ee:
79:a2:bd:7f:8a:e2:d3:2d:72:fc:45:f9:48:ab:af:
35:60:5f:a6:6b:41:6b:f6:a5:88:53:07:d8:de:4c:
67:21:ca:27:86:e7:7b:45:79:99:f7:4f:70:e1:fc:
a9:94:2f:e8:29:83:fc:71:10:08:2d:d0:ab:5a:0d:
93:54:a7:9d:f1:65:ed:5c:e6:f9:47:62:6b:ca:65:
d0:70:8a:26:d0:66:23:7b:26:3d:2a:28:d5:46:cd:
82:08:3c:59:b1:ac:6b:e4:35:4c:df:2c:60:12:82:
58:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CB:94:A8:10:4F:DA:F8:21:AA:6E:FB:9E:9D:49:FD:F2:17:34:FC
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/18uUqBBP2vghqm77np1J_fIXNPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e640:1020::/44
Signature Algorithm: sha256WithRSAEncryption
26:54:c5:5b:e4:3c:ae:24:bc:46:cf:96:8a:4e:48:ac:03:d2:
52:5f:5a:80:15:34:09:2e:4e:05:09:70:9a:6e:b4:84:c7:7e:
4c:cf:06:b6:4a:a9:3c:90:bf:2b:c5:30:da:bb:a7:89:c5:0f:
85:1a:fd:a8:c8:ce:63:eb:7e:8b:8b:f9:47:7e:dd:2d:0d:b8:
38:23:5c:d9:9f:56:36:f3:05:e9:61:42:74:d9:42:5b:ff:f9:
99:8f:c6:af:9e:fd:6f:68:b3:75:d0:f8:f4:3e:59:29:36:1d:
09:35:a0:cd:88:22:64:13:77:63:64:63:04:f1:65:bb:28:a5:
14:79:ee:2e:dd:f1:47:b7:8e:4c:96:e1:88:c7:87:4b:86:b9:
91:7d:f3:cd:a2:5b:30:6a:27:48:67:b3:d2:37:e5:61:14:7a:
5a:34:d6:d6:92:1d:b9:2f:20:6e:98:1c:93:b7:55:8d:d6:07:
20:5a:2a:93:6d:81:85:40:26:d7:12:87:6d:fb:e8:ed:d7:fe:
d3:82:5b:7a:c1:2e:02:64:e1:13:e2:8e:cc:87:4a:2f:e4:0a:
a4:db:d2:2d:46:2e:45:35:fa:9a:ce:f8:80:c3:24:b6:8e:85:
40:bf:70:1a:8f:c4:b2:ee:87:76:3b:73:a6:e3:46:b7:15:87:
c3:c9:8b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:48 2024 by rpki-client on console-ams.rpki-client.org