Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e521bf-f8fd-4e39-b6ea-c9738ce5baef/1/80MSvfETiOaxaD5y2A-wUj1FPMw.roa
File: 80MSvfETiOaxaD5y2A-wUj1FPMw.roa (raw, json)
Hash identifier: n9oPJZxcMMMHJk+X7MlLxnFUW98N1ai7SsfznG1BZaE=
Subject key identifier: F3:43:12:BD:F1:13:88:E6:B1:68:3E:72:D8:0F:B0:52:3D:45:3C:CC
Certificate issuer: /CN=d70e0c4b475010a5b42adef333c39bdc1adb9611
Certificate serial: 01856D13E2D7AEEC425E46D18A7E92C0B600
Authority key identifier: D7:0E:0C:4B:47:50:10:A5:B4:2A:DE:F3:33:C3:9B:DC:1A:DB:96:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1w4MS0dQEKW0Kt7zM8Ob3BrblhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e521bf-f8fd-4e39-b6ea-c9738ce5baef/1/80MSvfETiOaxaD5y2A-wUj1FPMw.roa
Signing time: Sun 01 Jan 2023 11:24:57 +0000
ROA not before: Sun 01 Jan 2023 11:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59645
IP address blocks: 2001:67c:a44::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:e2:d7:ae:ec:42:5e:46:d1:8a:7e:92:c0:b6:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d70e0c4b475010a5b42adef333c39bdc1adb9611
Validity
Not Before: Jan 1 11:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f34312bdf11388e6b1683e72d80fb0523d453ccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3a:9c:0f:62:58:ad:8c:43:13:a5:55:87:67:
e7:67:54:23:5e:61:ea:78:56:ff:3f:d2:7f:ec:16:
60:dc:87:73:1c:ef:ac:8c:5a:00:01:12:a8:e7:48:
cc:40:a5:52:ee:41:e0:1a:2b:d1:ff:35:e3:e5:de:
c6:29:1d:3a:e5:1e:6e:be:60:b9:33:5a:6d:0a:e6:
7e:4c:0b:52:08:d9:7c:37:87:97:e4:34:d5:bd:b4:
7b:ca:6a:13:35:d4:a6:e6:3f:8e:c0:5f:a6:c4:ab:
81:88:d5:7b:c6:16:70:9c:c5:fc:6e:13:f5:d0:cf:
86:53:6e:7c:d0:99:c9:05:df:46:fd:aa:ee:e0:d0:
aa:54:2f:4a:36:d7:85:46:8a:a5:60:15:4d:d3:91:
b9:76:ec:a0:22:e0:2f:38:4a:b9:61:ef:4a:79:97:
ba:e4:95:30:36:52:7c:36:45:3b:10:a7:74:1d:28:
96:c2:a8:73:27:76:96:9b:82:c4:c3:8c:b5:ee:31:
da:60:64:08:fa:3f:cf:6f:06:87:55:ce:69:16:2f:
9a:3b:1b:be:64:7d:c6:ed:e1:32:8c:0d:1d:e1:25:
f0:0e:64:ce:78:5b:28:70:ba:9a:3a:e3:a9:39:0f:
42:87:1e:b1:54:58:0e:23:24:ae:75:1e:b9:0e:d9:
17:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:43:12:BD:F1:13:88:E6:B1:68:3E:72:D8:0F:B0:52:3D:45:3C:CC
X509v3 Authority Key Identifier:
keyid:D7:0E:0C:4B:47:50:10:A5:B4:2A:DE:F3:33:C3:9B:DC:1A:DB:96:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1w4MS0dQEKW0Kt7zM8Ob3BrblhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e521bf-f8fd-4e39-b6ea-c9738ce5baef/1/80MSvfETiOaxaD5y2A-wUj1FPMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e521bf-f8fd-4e39-b6ea-c9738ce5baef/1/1w4MS0dQEKW0Kt7zM8Ob3BrblhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a44::/48
Signature Algorithm: sha256WithRSAEncryption
0e:67:0d:26:1c:4b:9d:bd:38:ec:37:48:cf:f1:87:17:c6:0d:
8e:0d:9e:e8:65:39:cc:cd:3f:90:44:1d:3a:91:0d:ef:49:9f:
5d:03:93:ff:1d:66:5d:7a:53:3d:7d:30:1b:d3:e8:e1:ff:6f:
f7:36:ca:e9:ae:5e:3b:1f:24:1b:e6:18:86:05:92:53:83:03:
9d:f8:fe:09:63:bb:6e:3f:b2:bc:c4:53:e8:49:7a:10:14:2d:
9e:0b:ba:d2:5c:0d:37:cd:6f:d8:73:fe:1e:cd:f1:b3:4c:6b:
93:03:db:1a:7d:1f:06:10:23:34:9a:45:a5:2e:5f:a3:e3:5e:
22:34:02:dc:5f:1f:86:85:d6:12:41:22:4d:2f:01:0b:34:9c:
db:85:2d:ae:1f:9c:c1:c5:62:95:ee:c8:22:66:5f:8f:6a:19:
4b:d8:91:b2:9f:93:2a:20:f5:e8:2a:cf:14:d7:e4:79:e7:d6:
8e:b2:7c:5b:9c:25:42:75:66:81:44:07:1f:64:ac:c9:be:1e:
ce:c2:29:58:b7:05:ff:3b:bf:d6:90:47:0c:27:6e:e6:9c:f4:
1e:98:79:99:e1:84:7e:60:09:6f:23:fd:42:c1:ee:ce:19:99:
54:9e:7b:f8:88:7b:44:e5:14:e5:01:82:c5:da:33:ac:9b:73:
a7:b9:5a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:23 2024 by rpki-client on console-fra.rpki-client.org