Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0dbf3d-98d2-4ec4-8b80-076dd6bd124a/1/u_th5NCViG5njkvhOyVjRkvh3G0.roa
File: u_th5NCViG5njkvhOyVjRkvh3G0.roa (raw, json)
Hash identifier: IPn93JUPKTWnhRar2ubvJNdnYK8NZ1xaKSvBsRmf3VQ=
Subject key identifier: BB:FB:61:E4:D0:95:88:6E:67:8E:4B:E1:3B:25:63:46:4B:E1:DC:6D
Certificate issuer: /CN=e4fb640946d8cfaefe5648948702ad6034a0e8b9
Certificate serial: 01856F42C8427DA38ECBD5F588FD72CF8F56
Authority key identifier: E4:FB:64:09:46:D8:CF:AE:FE:56:48:94:87:02:AD:60:34:A0:E8:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PtkCUbYz67-VkiUhwKtYDSg6Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0dbf3d-98d2-4ec4-8b80-076dd6bd124a/1/u_th5NCViG5njkvhOyVjRkvh3G0.roa
Signing time: Sun 01 Jan 2023 21:35:25 +0000
ROA not before: Sun 01 Jan 2023 21:35:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213003
IP address blocks: 2001:678:d7c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:c8:42:7d:a3:8e:cb:d5:f5:88:fd:72:cf:8f:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4fb640946d8cfaefe5648948702ad6034a0e8b9
Validity
Not Before: Jan 1 21:35:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbfb61e4d095886e678e4be13b2563464be1dc6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:36:e5:7a:0f:a6:2b:31:09:46:64:2d:5f:07:
ce:93:35:f9:d1:4f:62:c6:ba:74:05:c5:b5:c6:b6:
71:49:18:2c:24:6d:e1:61:fe:fa:33:d6:7f:da:4c:
23:53:31:6d:28:00:38:4e:9b:57:20:78:03:97:e4:
92:82:53:24:ac:b1:b0:7d:0f:3f:8e:af:4a:b1:83:
c6:43:e8:9c:65:4c:ff:03:ad:66:74:9d:5a:43:30:
64:3d:05:a6:c3:6c:9a:0f:26:99:cb:3e:00:47:ad:
73:58:19:4a:c7:ee:85:04:7c:78:53:e7:da:f4:51:
51:41:bb:ac:b3:21:a5:d7:32:34:d8:a1:db:16:83:
59:cc:07:00:c7:7d:7b:6a:55:a3:27:de:11:13:e0:
e3:46:54:39:ce:07:78:c9:7d:7d:20:d5:24:27:03:
d7:19:81:bb:a8:66:21:19:84:ec:c4:18:bf:28:04:
42:7e:e1:d6:0f:36:8d:d6:d0:99:a8:b1:59:2d:e5:
22:12:95:71:72:a4:2c:5f:f5:ea:9d:30:52:2f:29:
65:af:8a:14:89:60:27:c4:32:52:54:ea:34:2e:d5:
e9:56:7c:6d:eb:78:0e:8b:87:3f:b4:44:ff:2b:1a:
38:0e:86:8e:b8:f5:d1:da:6c:cc:a5:58:3f:b3:aa:
2d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:FB:61:E4:D0:95:88:6E:67:8E:4B:E1:3B:25:63:46:4B:E1:DC:6D
X509v3 Authority Key Identifier:
keyid:E4:FB:64:09:46:D8:CF:AE:FE:56:48:94:87:02:AD:60:34:A0:E8:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PtkCUbYz67-VkiUhwKtYDSg6Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0dbf3d-98d2-4ec4-8b80-076dd6bd124a/1/u_th5NCViG5njkvhOyVjRkvh3G0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0dbf3d-98d2-4ec4-8b80-076dd6bd124a/1/5PtkCUbYz67-VkiUhwKtYDSg6Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d7c::/48
Signature Algorithm: sha256WithRSAEncryption
a0:1d:52:b5:60:44:10:fc:9f:f6:92:57:f8:8d:c4:8f:54:9c:
53:6a:78:61:a4:a2:8a:73:55:82:e1:9b:41:92:7e:e9:f0:5e:
1d:f3:55:bf:75:65:25:e6:55:90:1a:78:ec:38:c5:1a:ad:6c:
b9:81:f3:96:36:bb:a1:4c:e1:4b:4d:02:e1:bf:78:fa:8b:eb:
24:57:91:a3:20:b3:b9:32:67:4d:63:a7:a3:da:13:60:cb:3d:
1d:36:92:32:6c:62:da:59:54:81:d0:b8:01:cc:58:70:b7:cd:
28:38:04:5b:8f:80:cd:0c:8e:96:7f:d7:26:7b:5f:8f:1b:1a:
4e:65:51:4e:7a:64:d2:35:a8:5e:3d:2c:e3:42:9e:94:a6:d4:
6a:41:ee:26:ba:be:2a:1d:b2:2a:25:08:25:62:75:23:31:4b:
a6:94:8d:ef:35:c4:33:02:13:5e:59:06:34:b7:72:aa:10:db:
e4:23:94:c0:37:65:ed:14:f4:9f:3b:f2:86:fd:6e:2a:06:9e:
d5:74:36:58:f7:34:29:46:4b:bf:c8:82:62:52:ac:6e:82:51:
aa:72:28:ca:63:e4:82:2e:61:7c:73:12:62:e1:56:49:b1:12:
74:90:41:b0:53:77:21:41:77:c2:28:1b:7a:42:ff:29:c3:72:
ae:d6:a4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:25 2024 by rpki-client on console-ams.rpki-client.org