Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/l-sMfa3yUbem0Q3PHUj977hrtQ4.roa
File: l-sMfa3yUbem0Q3PHUj977hrtQ4.roa (raw, json)
Hash identifier: x0XbiuwrRzm247l/mN4ZuyxVmG+9jUEae+vUO7VI+3k=
Subject key identifier: 97:EB:0C:7D:AD:F2:51:B7:A6:D1:0D:CF:1D:48:FD:EF:B8:6B:B5:0E
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4CC73DA21BF9F1EE8BD61ECA02176
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/l-sMfa3yUbem0Q3PHUj977hrtQ4.roa
Signing time: Sun 01 Jan 2023 19:35:17 +0000
ROA not before: Sun 01 Jan 2023 19:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31216
IP address blocks: 2001:678:8b8::/48 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:cc:73:da:21:bf:9f:1e:e8:bd:61:ec:a0:21:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97eb0c7dadf251b7a6d10dcf1d48fdefb86bb50e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:83:6b:a2:7c:da:f9:64:eb:59:e3:ac:74:6d:
7b:2a:6d:22:71:4b:d4:12:5f:12:83:2c:79:0b:02:
19:72:1a:2a:1c:22:c2:c2:cf:e9:64:52:72:d8:50:
d0:0d:4f:0b:93:52:65:30:0f:16:55:23:01:fc:a8:
64:b3:b2:c5:44:4b:35:09:08:c2:73:28:5c:3d:c4:
5f:69:62:bb:77:f2:8e:60:c5:d0:34:7a:4c:1c:31:
23:c7:0f:85:f4:43:8e:63:4e:d9:de:e2:7f:49:3a:
84:f0:21:ac:9a:b6:10:4d:01:b6:30:19:d3:65:7b:
d7:52:77:39:1a:2c:3f:2f:22:2e:4f:0a:f0:9f:b7:
bf:7e:78:00:f1:db:81:b1:01:fe:bd:75:a4:1e:59:
d7:80:54:63:cc:fd:e1:fd:62:fa:fa:2d:15:62:29:
ef:ac:90:31:69:34:48:7b:73:18:11:5c:f5:3a:fe:
ca:a1:6d:9c:fe:0d:41:0d:c8:c1:39:6b:3a:72:26:
d6:4a:71:56:47:d6:4a:24:f9:cb:a7:50:0a:f7:6d:
96:57:ab:a1:76:d2:d5:dd:7d:68:b7:70:ee:05:51:
bb:ff:40:d8:12:5f:6b:4e:d0:52:db:58:e1:27:dd:
49:b3:b0:a8:75:14:53:36:fa:ca:e3:e7:e5:71:ab:
ab:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:EB:0C:7D:AD:F2:51:B7:A6:D1:0D:CF:1D:48:FD:EF:B8:6B:B5:0E
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/l-sMfa3yUbem0Q3PHUj977hrtQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:8b8::/48
Signature Algorithm: sha256WithRSAEncryption
af:d6:27:98:62:24:d5:8d:2a:25:c6:9a:bc:ed:6e:d8:10:0d:
9b:54:e8:d4:01:34:4e:51:3e:72:90:46:ea:fe:90:2e:8e:5c:
cc:d8:62:5d:ac:21:82:da:55:58:31:66:dd:a9:b4:96:e1:01:
4a:3a:4c:d1:e7:22:83:b3:ea:9e:8f:fb:12:a2:13:62:b2:c6:
d9:e7:6c:71:4b:b4:8b:0a:46:df:46:d3:f5:ec:4b:a0:27:6c:
77:66:86:14:4c:58:5c:b3:0b:68:82:fa:4e:eb:fc:ab:5c:9f:
e2:81:9a:06:ad:0e:75:69:96:5a:bc:a0:dc:9d:d9:9d:17:65:
ff:03:f1:25:2f:6a:6a:2d:9e:be:41:2e:ba:27:3e:82:91:b6:
5e:c4:f2:bf:cd:bb:5b:13:ab:58:1f:7a:9e:3a:b3:c0:ec:18:
9f:c4:62:6d:85:1e:0c:9b:63:d9:dc:6e:90:94:93:b3:68:3b:
77:18:75:04:97:14:dc:d1:49:fe:d2:30:e8:32:1c:b6:6c:89:
df:98:a0:31:5b:ab:93:f5:96:dd:1f:56:ec:de:f7:09:ab:39:
02:65:41:01:60:9a:ef:8c:53:2a:ed:85:9d:e2:df:9c:a8:b6:
e2:40:22:eb:e8:bc:4e:64:dc:ce:91:c2:44:23:f2:c3:f3:d9:
0e:9a:94:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org