Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/9gjdN9FDXjml0NiX67mgIprpPqg.roa
File: 9gjdN9FDXjml0NiX67mgIprpPqg.roa (raw, json)
Hash identifier: eSFIMy52oJnc0WGkGk6YwzBkgM1CIn0YXGjBdVmmS38=
Subject key identifier: F6:08:DD:37:D1:43:5E:39:A5:D0:D8:97:EB:B9:A0:22:9A:E9:3E:A8
Certificate issuer: /CN=f76be99e8be2c5400d010542bf2058bdbb88502d
Certificate serial: 0185720C641A5318E9B3287C4021F2DAA8F1
Authority key identifier: F7:6B:E9:9E:8B:E2:C5:40:0D:01:05:42:BF:20:58:BD:BB:88:50:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92vpnovixUANAQVCvyBYvbuIUC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/9gjdN9FDXjml0NiX67mgIprpPqg.roa
Signing time: Mon 02 Jan 2023 10:34:52 +0000
ROA not before: Mon 02 Jan 2023 10:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212925
IP address blocks: 2001:67c:8fc::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:64:1a:53:18:e9:b3:28:7c:40:21:f2:da:a8:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f76be99e8be2c5400d010542bf2058bdbb88502d
Validity
Not Before: Jan 2 10:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f608dd37d1435e39a5d0d897ebb9a0229ae93ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:2a:5e:08:6c:65:7f:61:b3:d9:03:1c:ec:b2:
24:36:4c:86:70:d2:84:b1:6d:0e:01:69:fe:6e:21:
fd:c2:d0:73:79:8a:c6:c1:72:6c:d1:5d:17:a6:59:
d7:21:24:1c:01:5a:fd:5e:a0:1f:4f:22:e5:ee:68:
f5:6b:77:e1:59:a7:d4:8c:42:84:c2:88:47:a7:b3:
50:52:a7:c6:4c:2a:af:d4:8d:d8:ba:34:7b:b7:ff:
ed:a8:db:0c:e0:a5:de:5a:f5:1f:b6:4c:42:b6:f5:
9e:af:9c:69:90:dd:5e:11:f9:a0:ac:e5:45:2a:e4:
82:c9:87:93:22:e4:55:b8:ee:a3:6f:16:90:21:2b:
9d:d7:d6:63:7e:48:68:ac:22:99:54:90:4e:26:aa:
9a:a9:35:b4:95:00:99:b1:a9:c6:d5:dd:4d:6e:c5:
92:02:dc:5a:f9:25:24:6c:5f:57:c7:17:bc:0c:83:
eb:a7:5e:c6:4e:cb:f9:b5:6f:87:d0:42:34:6c:e9:
d7:25:f9:2e:d0:a8:0c:49:38:d7:79:12:9c:0a:f0:
bd:23:63:b6:09:b1:c0:7a:d8:69:01:ef:9c:e0:81:
71:30:98:7c:bd:9f:77:9d:22:30:45:7f:ac:56:e9:
bf:66:a3:bd:06:08:cd:39:b2:7f:68:88:6b:98:7b:
1f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:08:DD:37:D1:43:5E:39:A5:D0:D8:97:EB:B9:A0:22:9A:E9:3E:A8
X509v3 Authority Key Identifier:
keyid:F7:6B:E9:9E:8B:E2:C5:40:0D:01:05:42:BF:20:58:BD:BB:88:50:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92vpnovixUANAQVCvyBYvbuIUC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/9gjdN9FDXjml0NiX67mgIprpPqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1b645c-50e2-408b-be68-4eb383ff13b9/1/92vpnovixUANAQVCvyBYvbuIUC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:8fc::/48
Signature Algorithm: sha256WithRSAEncryption
58:49:34:90:fa:31:69:47:47:c8:6b:f9:71:28:5c:43:c0:14:
39:0f:f1:77:76:b5:12:b7:85:81:25:dd:58:a5:8e:e8:f8:47:
05:a3:09:f1:c9:c0:3d:26:8b:3e:9f:26:8b:14:cf:1a:1a:cb:
7d:80:4a:2f:bb:90:3c:fa:b7:56:d9:2b:35:97:44:25:e1:5a:
c9:76:4b:fa:b1:d8:93:2f:f3:3f:a6:73:4f:ff:33:b3:a3:61:
e3:09:29:a3:e5:6c:d2:c2:08:0f:5a:51:68:c6:69:f3:ea:93:
fc:58:d9:82:2a:e5:90:79:18:cd:5f:64:bd:76:03:25:ee:11:
55:f2:03:4d:4e:28:00:92:6f:d1:2b:6d:00:9b:ad:9b:87:36:
85:65:f4:e0:30:18:52:c8:0c:53:1a:bb:d7:5f:7b:94:0e:ec:
3d:f1:20:72:67:55:48:43:b3:42:10:1b:d3:56:cc:43:93:81:
d3:5e:95:20:d8:35:5b:f6:b3:28:fc:81:6c:21:52:a2:55:fb:
b9:73:05:40:f0:c0:b5:13:8d:12:45:71:a1:1e:5a:06:8d:d9:
7e:18:e6:52:3b:2c:af:00:d5:7c:be:9e:99:36:84:29:9d:58:
42:9f:14:5a:bb:da:bd:1f:79:30:36:79:47:53:a9:54:48:30:
17:32:97:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:06 2024 by rpki-client on console-ams.rpki-client.org