Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/914977-f887-4a00-9f0a-79edfd2a20f6/1/oEXPUyn3Fz7RXd7wuPMul0dl4AM.roa
File: oEXPUyn3Fz7RXd7wuPMul0dl4AM.roa (raw, json)
Hash identifier: lqh4KmbQ4TWy0gfGDJnPRS71tbq7ju/wqyBPMK120S8=
Subject key identifier: A0:45:CF:53:29:F7:17:3E:D1:5D:DE:F0:B8:F3:2E:97:47:65:E0:03
Certificate issuer: /CN=8c98a66678ee932176a4a9ddd4153cfd4c4b0746
Certificate serial: 0187393ED0630E60A9975E4FAEABEEAD7E01
Authority key identifier: 8C:98:A6:66:78:EE:93:21:76:A4:A9:DD:D4:15:3C:FD:4C:4B:07:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jJimZnjukyF2pKnd1BU8_UxLB0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/914977-f887-4a00-9f0a-79edfd2a20f6/1/oEXPUyn3Fz7RXd7wuPMul0dl4AM.roa
Signing time: Fri 31 Mar 2023 19:57:10 +0000
ROA not before: Fri 31 Mar 2023 19:57:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48925
IP address blocks: 2001:67c:be8::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:39:3e:d0:63:0e:60:a9:97:5e:4f:ae:ab:ee:ad:7e:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c98a66678ee932176a4a9ddd4153cfd4c4b0746
Validity
Not Before: Mar 31 19:57:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a045cf5329f7173ed15ddef0b8f32e974765e003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0f:a7:f4:d9:17:58:4d:02:b8:0a:9b:c6:0b:
5b:09:b9:2e:0b:ab:63:89:62:f5:b8:e1:ce:5a:9d:
d6:12:3b:90:cb:6f:ca:e4:1e:61:87:15:48:57:0d:
01:89:30:46:bd:d6:11:58:ee:5d:7a:61:d8:71:3e:
fd:d0:39:db:0d:d0:f0:b6:4f:85:71:f9:81:51:5e:
46:16:a7:96:46:be:70:12:19:2e:c3:79:31:50:6d:
39:9a:b8:fd:e3:66:2f:ea:03:a8:04:46:8e:20:a5:
43:4a:92:30:2a:43:f7:30:6e:86:90:49:50:1f:12:
bd:f1:92:f3:30:b0:15:da:68:42:3d:24:06:96:03:
dd:0f:7f:0e:75:01:d9:31:21:02:c1:a6:6c:31:cd:
71:36:28:54:b8:00:5e:a8:30:a8:4b:61:8c:1e:44:
79:f9:05:06:79:bc:ec:1b:5d:b3:a5:79:ba:f0:8a:
9e:ee:e0:84:25:f4:6f:9a:89:29:08:51:72:45:38:
af:1c:22:dc:9f:f1:50:ee:8a:ef:25:17:a9:12:51:
e8:fa:ab:98:2e:1a:d4:e0:d5:87:f4:6e:e9:90:e6:
fb:ea:43:b4:e6:41:36:e2:60:d2:19:bc:02:3b:61:
98:5d:2e:ad:da:c5:f1:4f:b2:a7:cc:6b:c0:f8:37:
6d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:45:CF:53:29:F7:17:3E:D1:5D:DE:F0:B8:F3:2E:97:47:65:E0:03
X509v3 Authority Key Identifier:
keyid:8C:98:A6:66:78:EE:93:21:76:A4:A9:DD:D4:15:3C:FD:4C:4B:07:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jJimZnjukyF2pKnd1BU8_UxLB0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/914977-f887-4a00-9f0a-79edfd2a20f6/1/oEXPUyn3Fz7RXd7wuPMul0dl4AM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/914977-f887-4a00-9f0a-79edfd2a20f6/1/jJimZnjukyF2pKnd1BU8_UxLB0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:be8::/48
Signature Algorithm: sha256WithRSAEncryption
0e:21:e4:58:88:f5:14:52:8f:38:40:93:34:be:62:50:f2:b6:
dd:db:c7:28:28:33:13:f9:ab:70:67:c1:eb:20:ec:d9:a1:50:
e9:b3:4f:15:51:38:1b:ce:56:ad:66:d7:cb:5b:46:bc:77:df:
4d:74:5d:3d:8c:c0:bf:fb:f5:a2:ae:fc:fd:a9:c3:74:9e:63:
8f:3e:c4:2c:ac:9a:cd:69:bc:3c:cf:b1:c9:a4:6f:f2:3b:f4:
e0:1f:a6:d2:a6:7b:e5:4c:06:16:53:7e:cd:4a:46:d0:9a:8b:
4c:f3:0f:80:ad:67:24:3d:2d:37:90:04:23:d4:2c:fa:70:19:
84:b9:06:77:56:08:a5:43:0f:99:3f:cd:72:6d:e2:12:18:9c:
d6:c7:ac:d4:1b:9b:9e:24:47:70:92:7b:b0:bb:61:97:08:b9:
34:e8:67:7b:56:93:2c:ca:38:54:f8:4d:2e:6b:6b:29:b5:60:
b8:95:10:40:47:49:f4:ad:91:cb:68:9b:ed:89:7c:08:c0:08:
fd:ea:d7:17:46:4c:d5:44:9c:a2:4b:8f:6a:11:34:00:ed:d9:
2a:21:2a:44:46:a8:6f:a2:87:6b:fb:be:f5:30:f2:72:82:0a:
03:4f:93:c1:62:e3:bd:ce:5d:02:51:a4:96:b5:f3:c0:4e:29:
1f:f6:2c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org