Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/bad4a0-3e9b-4764-8a24-f3a26f055f4e/1/7ei5boAzXVxBxsQcYe8uA8JZMNI.roa
File: 7ei5boAzXVxBxsQcYe8uA8JZMNI.roa (raw, json)
Hash identifier: zzkXdyXm0J5aCNLJdFu47x0EiQmeyU/ARex81BJLaAo=
Subject key identifier: ED:E8:B9:6E:80:33:5D:5C:41:C6:C4:1C:61:EF:2E:03:C2:59:30:D2
Certificate issuer: /CN=9803c40f77bc88faf209f31d361ebbab5caeac4a
Certificate serial: 01856B4A33916A92B00338437D50842CFD98
Authority key identifier: 98:03:C4:0F:77:BC:88:FA:F2:09:F3:1D:36:1E:BB:AB:5C:AE:AC:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mAPED3e8iPryCfMdNh67q1yurEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/bad4a0-3e9b-4764-8a24-f3a26f055f4e/1/7ei5boAzXVxBxsQcYe8uA8JZMNI.roa
Signing time: Sun 01 Jan 2023 03:05:03 +0000
ROA not before: Sun 01 Jan 2023 03:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207186
IP address blocks: 2001:67c:984::/48 maxlen: 48
2001:67c:980::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:33:91:6a:92:b0:03:38:43:7d:50:84:2c:fd:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9803c40f77bc88faf209f31d361ebbab5caeac4a
Validity
Not Before: Jan 1 03:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ede8b96e80335d5c41c6c41c61ef2e03c25930d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f3:fe:f5:37:8a:b5:b9:5b:3c:24:82:8a:c1:
76:0a:dc:af:4f:4f:db:e4:5c:6b:cc:8c:05:24:d5:
33:52:2e:a8:7a:96:43:e1:c8:76:49:0d:c2:cf:8c:
4c:6b:11:0a:36:bf:95:2b:a8:45:bf:ed:53:84:5e:
2b:8c:7a:74:78:ae:ac:5a:85:dc:9b:42:a5:04:ed:
b3:37:36:34:c2:b4:cd:94:a6:de:70:96:2b:18:a9:
ba:7f:16:d6:51:8e:b7:89:d9:5d:d0:13:a0:f8:af:
69:58:f8:c4:c1:df:7e:9b:e0:06:a7:9f:12:6e:b7:
ae:b0:1b:7d:ea:db:36:8f:f1:3b:e5:82:fe:17:d0:
50:5a:00:ee:5e:96:ea:3d:60:d6:e5:e6:a2:cf:f7:
5d:37:d0:d0:b7:a3:61:89:aa:25:32:03:17:64:d8:
06:93:96:a6:62:f1:5c:1d:e7:70:32:90:09:d9:02:
be:a9:fa:4a:b2:46:b1:92:f2:ee:3c:5a:3e:eb:94:
4c:01:46:9a:6c:82:84:15:65:55:a5:45:5d:9a:7d:
62:ac:80:0d:01:d8:ba:48:8f:6b:d1:03:e5:b2:8c:
1b:25:e9:a0:c8:3a:75:e1:01:2c:ba:3d:aa:89:5b:
d9:e5:0f:dd:1c:2f:30:27:7e:f4:9f:e5:ca:de:e7:
d0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E8:B9:6E:80:33:5D:5C:41:C6:C4:1C:61:EF:2E:03:C2:59:30:D2
X509v3 Authority Key Identifier:
keyid:98:03:C4:0F:77:BC:88:FA:F2:09:F3:1D:36:1E:BB:AB:5C:AE:AC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mAPED3e8iPryCfMdNh67q1yurEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/bad4a0-3e9b-4764-8a24-f3a26f055f4e/1/7ei5boAzXVxBxsQcYe8uA8JZMNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/bad4a0-3e9b-4764-8a24-f3a26f055f4e/1/mAPED3e8iPryCfMdNh67q1yurEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:980::/48
2001:67c:984::/48
Signature Algorithm: sha256WithRSAEncryption
83:e5:71:3d:6e:89:4f:bf:d9:b5:64:cd:07:75:fc:ba:7f:a4:
a1:54:b8:89:e7:38:56:7b:7f:bd:55:6e:d7:d3:c0:82:d5:10:
b6:04:d7:fd:15:1c:20:64:ba:39:7f:b4:5a:3d:f5:68:d8:bc:
93:72:32:45:60:e9:7f:ff:1b:87:25:cd:2a:32:ee:53:6a:a0:
20:c8:f7:6d:7c:4c:90:d0:ac:b3:f4:4c:d9:a2:8c:9c:a7:31:
22:ee:aa:c2:b0:fe:f6:6c:0e:2e:63:de:fb:b7:c9:9d:df:5b:
b5:11:2e:34:37:d0:ea:16:83:32:af:e3:f7:b5:4b:03:65:e9:
25:eb:a7:c4:65:a1:58:78:48:b2:a6:29:18:35:29:8f:35:5c:
03:16:57:19:75:35:b1:23:c1:83:0c:cc:80:cd:b7:92:e4:20:
22:e8:1e:6c:ae:10:a2:39:9d:35:3a:4e:ec:eb:7c:ab:ac:8d:
b1:7b:94:4e:79:af:72:00:ab:01:0d:a4:55:ee:2e:87:e9:80:
e2:fc:6c:e9:9f:4a:b5:3b:40:3c:24:f1:49:34:50:de:e3:6e:
42:48:58:f6:2e:75:42:ea:e0:61:bf:a7:a4:70:dd:a6:97:eb:
21:22:f3:23:40:b7:eb:0e:26:69:4a:60:f5:18:f5:41:03:33:
2d:3f:dd:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:20 2024 by rpki-client on console-ams.rpki-client.org