Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/6914ce-66c2-4238-92b7-a2d636f325e6/1/v65mhLd8Sz5nrVIie6k6nbt91HM.roa
File: v65mhLd8Sz5nrVIie6k6nbt91HM.roa (raw, json)
Hash identifier: s00J03X4BT1PNhIe3wk5StAL5vPNu4XWcMfqO3ohd5w=
Subject key identifier: BF:AE:66:84:B7:7C:4B:3E:67:AD:52:22:7B:A9:3A:9D:BB:7D:D4:73
Certificate issuer: /CN=d0113dd5d0759c03009380140c668ebbd1f9c168
Certificate serial: 018B797A8A815F766028155FB32966481737
Authority key identifier: D0:11:3D:D5:D0:75:9C:03:00:93:80:14:0C:66:8E:BB:D1:F9:C1:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BE91dB1nAMAk4AUDGaOu9H5wWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/6914ce-66c2-4238-92b7-a2d636f325e6/1/v65mhLd8Sz5nrVIie6k6nbt91HM.roa
Signing time: Sun 29 Oct 2023 03:29:15 +0000
ROA not before: Sun 29 Oct 2023 03:29:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13559
IP address blocks: 2a0e:8a84::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:79:7a:8a:81:5f:76:60:28:15:5f:b3:29:66:48:17:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0113dd5d0759c03009380140c668ebbd1f9c168
Validity
Not Before: Oct 29 03:29:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfae6684b77c4b3e67ad52227ba93a9dbb7dd473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:31:69:09:77:0d:8b:78:7c:13:9a:cf:16:87:
bf:fe:c6:b1:48:0b:e9:5d:71:7d:77:59:9b:94:b6:
02:bf:94:8f:68:36:ec:98:2a:2c:08:a1:1e:44:3c:
a3:23:da:b4:24:ef:b6:6b:88:e4:75:52:a6:c9:fb:
c1:35:d0:29:e2:74:63:b1:0d:98:9b:35:c1:a3:93:
8f:1e:cb:74:d7:77:f5:5c:06:62:48:a2:60:85:b1:
ee:47:b3:2f:73:e9:20:a6:69:93:8b:e8:7f:20:b5:
0f:66:48:f2:37:8a:08:4c:fb:d4:9b:d3:d9:cb:02:
0c:02:92:f2:c1:15:14:9c:d7:ce:4a:c4:d8:62:74:
4f:3f:87:53:07:a3:d8:b4:11:ad:ee:57:62:b4:6f:
2e:a4:ed:42:3f:86:0e:32:bb:e6:4b:01:5d:13:57:
f2:af:36:02:0f:03:a3:43:a7:7b:fe:40:b1:01:c7:
06:c4:bc:0b:14:4f:98:67:a5:a8:29:11:b5:8e:6b:
3a:d0:49:23:3a:2c:c0:de:6f:01:fd:fe:1c:70:89:
c7:15:c5:fb:dd:d7:17:bb:9b:49:86:89:be:c5:8e:
b4:67:ef:7d:87:92:d2:70:22:d3:17:ab:b2:68:d2:
c2:82:0f:31:c1:41:82:f1:14:66:47:f1:cd:c5:2b:
79:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AE:66:84:B7:7C:4B:3E:67:AD:52:22:7B:A9:3A:9D:BB:7D:D4:73
X509v3 Authority Key Identifier:
keyid:D0:11:3D:D5:D0:75:9C:03:00:93:80:14:0C:66:8E:BB:D1:F9:C1:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BE91dB1nAMAk4AUDGaOu9H5wWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/6914ce-66c2-4238-92b7-a2d636f325e6/1/v65mhLd8Sz5nrVIie6k6nbt91HM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/6914ce-66c2-4238-92b7-a2d636f325e6/1/0BE91dB1nAMAk4AUDGaOu9H5wWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8a84::/32
Signature Algorithm: sha256WithRSAEncryption
79:be:39:20:76:c2:06:9a:e4:ba:58:2e:6a:54:ea:45:c8:e3:
03:57:0f:b9:c2:52:e4:9b:d6:73:3e:f1:24:d1:96:50:fb:d7:
c0:aa:00:45:41:da:19:0b:5a:47:a9:55:aa:3b:72:2c:17:44:
99:6b:70:0a:a0:da:43:38:d1:2c:f7:84:bd:a2:97:79:48:9a:
ba:cc:fe:7d:77:85:c6:ab:12:11:98:92:db:09:d7:16:db:7f:
0c:26:56:96:0e:87:a0:69:9a:8a:44:41:9e:18:fd:9c:97:d2:
ee:6c:45:76:c3:6a:88:ca:c5:52:15:e2:0f:c8:55:85:09:34:
df:bc:3a:f0:76:25:60:6c:b4:87:03:8b:9f:4f:eb:20:3b:fc:
0b:06:ff:18:34:46:74:c6:70:b2:ea:47:50:76:32:36:de:9d:
30:1b:b7:dc:44:21:66:ac:81:2d:70:19:16:9e:b2:4f:d6:d6:
e8:33:48:9f:17:77:ff:95:35:60:6c:a8:e7:e7:0b:26:42:ac:
ee:af:09:a0:82:64:ac:67:39:bc:fb:c8:30:0b:22:85:ba:15:
87:ef:52:9e:bb:6a:3f:46:fd:e4:03:67:27:11:dc:90:cf:8c:
19:32:45:77:28:43:f5:3a:89:35:8a:86:40:44:87:d9:36:d7:
c2:9c:2a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org