Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/LPw_WM4aCE1OHnww7gbZis4hNX8.roa
File: LPw_WM4aCE1OHnww7gbZis4hNX8.roa (raw, json)
Hash identifier: vNKsVrnQKRBsRdzwl7ynEocXTvcgOZX/TSL0A6ecze0=
Subject key identifier: 2C:FC:3F:58:CE:1A:08:4D:4E:1E:7C:30:EE:06:D9:8A:CE:21:35:7F
Certificate issuer: /CN=7dc896cb3899c5b6488d1c4653faee4b23151f1f
Certificate serial: 0189F426C18D33070B4AE32B266B72D74F88
Authority key identifier: 7D:C8:96:CB:38:99:C5:B6:48:8D:1C:46:53:FA:EE:4B:23:15:1F:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fciWyziZxbZIjRxGU_ruSyMVHx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/LPw_WM4aCE1OHnww7gbZis4hNX8.roa
Signing time: Mon 14 Aug 2023 13:05:27 +0000
ROA not before: Mon 14 Aug 2023 13:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6067
IP address blocks: 2001:4dc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:26:c1:8d:33:07:0b:4a:e3:2b:26:6b:72:d7:4f:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc896cb3899c5b6488d1c4653faee4b23151f1f
Validity
Not Before: Aug 14 13:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cfc3f58ce1a084d4e1e7c30ee06d98ace21357f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e5:5e:ca:6f:8d:65:56:d4:74:1a:70:28:5d:
a7:58:4f:67:4b:a5:12:72:cc:d9:57:07:02:db:67:
0d:4a:91:1a:83:6f:b1:9a:df:8e:bc:cb:b5:a3:9a:
1f:d0:19:0b:47:76:f8:fa:04:25:bd:86:a2:ed:0a:
d5:74:4d:d6:37:15:07:02:c0:0c:ba:8b:90:1c:5d:
49:8f:2b:a2:b2:9d:f4:79:90:a4:4c:c6:79:0b:56:
e5:62:c0:c9:5c:c4:1e:9e:2d:36:84:74:69:2d:05:
93:37:5e:f0:06:d4:8d:61:b2:d5:32:bc:c4:46:ae:
19:93:e9:5d:e2:ab:d7:91:fd:e1:94:ea:da:8b:61:
21:bd:70:8b:50:0a:77:a3:9f:d8:be:87:3d:21:88:
c0:4c:d5:47:f4:f7:cc:00:c0:fa:5e:e3:32:09:a0:
da:16:9e:35:16:b0:12:e8:01:84:3a:2a:f2:7f:2d:
40:13:ee:7f:7e:1f:59:1c:a4:37:76:e8:b8:6d:a8:
bc:b1:a1:ca:ca:1a:3d:81:d3:32:2e:8f:32:10:43:
2f:c6:9d:04:db:df:80:5f:5a:39:31:5d:f1:9b:33:
22:bf:ce:66:ec:39:c1:7a:a3:df:6b:76:b3:9b:66:
bb:0d:74:f7:4b:18:e2:3a:0a:7c:4b:29:2d:5b:d7:
f0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:FC:3F:58:CE:1A:08:4D:4E:1E:7C:30:EE:06:D9:8A:CE:21:35:7F
X509v3 Authority Key Identifier:
keyid:7D:C8:96:CB:38:99:C5:B6:48:8D:1C:46:53:FA:EE:4B:23:15:1F:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fciWyziZxbZIjRxGU_ruSyMVHx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/LPw_WM4aCE1OHnww7gbZis4hNX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/fciWyziZxbZIjRxGU_ruSyMVHx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4dc0::/32
Signature Algorithm: sha256WithRSAEncryption
29:94:1f:59:0b:aa:2a:52:c7:10:89:c5:24:84:41:cf:c2:49:
99:5d:73:cc:a7:23:bb:fd:1e:ea:7d:66:c4:92:37:07:79:9d:
90:d0:32:ee:3e:83:e2:da:54:fe:b6:8b:bc:aa:13:10:e7:47:
9e:28:eb:1f:4d:ef:66:0f:b8:5a:5c:45:cb:ff:58:30:6a:4b:
dc:0e:42:e6:b2:09:ee:df:1c:59:1e:5d:f2:c6:1e:8e:e0:92:
3f:06:38:76:3d:72:86:83:4e:6d:72:7a:3a:55:0c:ac:09:79:
cc:42:e6:ab:d9:d9:81:56:83:4b:6a:b1:33:23:cd:12:87:c6:
39:d7:9f:9f:78:d2:0f:27:4b:fe:1b:ab:38:c8:5d:32:ae:da:
27:1b:cf:c2:b6:1c:42:44:ae:83:99:75:5f:25:7d:4f:68:07:
52:d1:74:8e:ef:8b:3f:67:6a:fb:31:1d:bb:97:55:34:cd:f0:
99:67:0f:1e:ef:77:1b:d7:61:a2:2a:53:c5:a8:4d:89:37:ba:
f0:f5:76:0c:ba:49:24:38:30:3d:05:b7:a2:ba:44:58:97:ad:
82:aa:8b:47:1f:9e:b7:2a:69:88:6c:e4:4b:eb:64:3c:c3:e9:
a7:81:c9:77:c5:c0:1b:78:ce:fc:9f:2f:90:76:da:6c:0a:bb:
de:af:d2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:23 2024 by rpki-client on console-ams.rpki-client.org