Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/a7c8d0-c92d-45d0-91a3-28c22abf08d0/1/IH55MUsisn-TNX4J_rXUxJJyfrw.roa
File: IH55MUsisn-TNX4J_rXUxJJyfrw.roa (raw, json)
Hash identifier: zloKWSbCO7BRhVwGqLmth3YJoH/0T++Raf9bJgzW3U0=
Subject key identifier: 20:7E:79:31:4B:22:B2:7F:93:35:7E:09:FE:B5:D4:C4:92:72:7E:BC
Certificate issuer: /CN=955246b1b65c95046259c2248c1d306ff135b984
Certificate serial: 01856E141E97C4DEBD25B78A972897399399
Authority key identifier: 95:52:46:B1:B6:5C:95:04:62:59:C2:24:8C:1D:30:6F:F1:35:B9:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lVJGsbZclQRiWcIkjB0wb_E1uYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/a7c8d0-c92d-45d0-91a3-28c22abf08d0/1/IH55MUsisn-TNX4J_rXUxJJyfrw.roa
Signing time: Sun 01 Jan 2023 16:04:50 +0000
ROA not before: Sun 01 Jan 2023 16:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211501
IP address blocks: 2001:67c:10d8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:1e:97:c4:de:bd:25:b7:8a:97:28:97:39:93:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=955246b1b65c95046259c2248c1d306ff135b984
Validity
Not Before: Jan 1 16:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=207e79314b22b27f93357e09feb5d4c492727ebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:80:a8:0a:85:d8:d7:b5:6a:6c:0c:bd:44:2d:
e9:d8:ae:85:58:7c:20:68:f9:86:b8:1a:dd:7a:64:
9d:ff:fa:58:a4:d0:81:19:cf:c4:58:1a:a5:cb:92:
e5:ce:ba:52:3b:12:0f:93:cd:ef:9c:8b:b5:8b:f1:
bb:d4:a1:58:db:74:45:8f:d1:3e:49:dc:82:d2:f9:
77:27:ab:df:b3:05:b0:e5:91:58:0a:47:62:85:6b:
13:1a:7e:06:d8:97:3d:e8:c9:12:fa:77:e7:a7:5f:
9e:fd:7d:a0:69:09:cb:30:4c:02:85:94:ce:df:5d:
57:04:79:db:34:c8:8f:05:b3:71:5f:ce:3a:5a:16:
6f:27:03:94:6b:1d:5b:68:44:4b:b9:ab:d7:13:b8:
c2:af:fa:2a:11:3c:a0:16:11:3b:74:b2:1e:82:d0:
5b:d7:25:42:e7:96:2b:f0:b9:1e:f6:a2:90:56:3d:
54:db:2a:bc:3f:0d:7a:68:11:f6:47:3f:9c:71:c1:
54:99:ab:d4:85:28:77:67:2b:4e:12:19:e0:a9:c4:
30:a3:27:9f:bf:bf:1e:2c:b3:95:14:fe:64:b3:11:
96:f8:e6:14:df:12:4c:f7:c2:19:a6:ee:51:68:77:
6b:95:e7:b4:4d:ba:ca:0a:24:fd:56:81:c7:ae:c0:
ef:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7E:79:31:4B:22:B2:7F:93:35:7E:09:FE:B5:D4:C4:92:72:7E:BC
X509v3 Authority Key Identifier:
keyid:95:52:46:B1:B6:5C:95:04:62:59:C2:24:8C:1D:30:6F:F1:35:B9:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lVJGsbZclQRiWcIkjB0wb_E1uYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a7c8d0-c92d-45d0-91a3-28c22abf08d0/1/IH55MUsisn-TNX4J_rXUxJJyfrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a7c8d0-c92d-45d0-91a3-28c22abf08d0/1/lVJGsbZclQRiWcIkjB0wb_E1uYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:10d8::/48
Signature Algorithm: sha256WithRSAEncryption
74:ca:be:01:ea:63:4e:5b:ec:61:b8:62:b3:7d:c9:30:1e:cb:
57:16:a9:e8:a8:f2:e5:db:8b:d4:ee:01:c4:1e:b1:25:dc:51:
e3:65:83:f1:1e:60:dd:3b:17:ab:97:17:42:f6:cd:09:f0:52:
01:22:41:d0:9f:8f:4d:cd:d8:ac:d2:fb:68:99:83:ed:cc:a7:
cd:cf:05:d8:1d:d6:f6:65:aa:c9:dc:69:9f:55:71:79:53:10:
62:7c:fb:80:22:96:20:be:41:6a:f6:88:42:1c:b1:18:6e:6e:
f6:74:de:6c:0f:cb:c3:0d:21:6e:4e:e6:e8:c3:05:91:3c:dc:
6f:af:b9:59:42:67:75:17:15:07:51:ea:65:92:40:c5:72:d9:
51:d6:ae:24:22:1b:40:52:2a:47:13:75:7c:af:05:df:30:04:
49:64:6c:8b:65:a5:fa:db:8f:68:ad:f0:ac:8d:35:06:91:77:
99:e2:36:87:bb:02:d7:70:fd:42:cd:e5:e5:56:07:a7:2a:6b:
f3:1a:63:92:8b:91:e8:31:42:06:6b:f0:79:4a:a1:c1:93:57:
73:d8:87:32:ff:c9:a8:48:95:4b:0c:92:b4:c7:8b:1d:54:18:
28:54:b3:44:b8:55:77:67:67:7c:dc:f0:75:99:ae:a7:71:72:
ce:a1:29:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:28 2024 by rpki-client on console-ams.rpki-client.org