Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f5fc76-5016-4968-829b-473045a93a05/1/7j7803C3ospMqEAkThWUGJkXikY.roa
File: 7j7803C3ospMqEAkThWUGJkXikY.roa (raw, json)
Hash identifier: M0+sSPPzopDiLma0W0Bi7zp5ZvdhHErehHpQNbawORo=
Subject key identifier: EE:3E:FC:D3:70:B7:A2:CA:4C:A8:40:24:4E:15:94:18:99:17:8A:46
Certificate issuer: /CN=bcf5463680d14b64586b1d5b465663bcb577e693
Certificate serial: 01856E6FCD4FC31B4E8E7E9222814A35A021
Authority key identifier: BC:F5:46:36:80:D1:4B:64:58:6B:1D:5B:46:56:63:BC:B5:77:E6:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vPVGNoDRS2RYax1bRlZjvLV35pM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f5fc76-5016-4968-829b-473045a93a05/1/7j7803C3ospMqEAkThWUGJkXikY.roa
Signing time: Sun 01 Jan 2023 17:44:58 +0000
ROA not before: Sun 01 Jan 2023 17:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198463
IP address blocks: 2001:67c:2d04::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:cd:4f:c3:1b:4e:8e:7e:92:22:81:4a:35:a0:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcf5463680d14b64586b1d5b465663bcb577e693
Validity
Not Before: Jan 1 17:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee3efcd370b7a2ca4ca840244e15941899178a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:85:c0:8a:31:1a:4c:37:e6:b1:de:ea:84:e5:
ac:a2:6c:c3:52:27:ed:ff:95:91:bc:9c:e6:75:e6:
45:59:a5:00:0d:b8:80:bc:9e:38:46:d1:38:26:0d:
17:c7:1d:af:87:60:fc:d0:a0:9a:e3:bf:43:59:d0:
38:3f:e3:17:e5:f1:cb:76:c6:e3:ff:25:10:1c:ac:
aa:1e:cd:31:42:3d:ea:c4:a6:3e:b3:c7:5c:31:c3:
12:19:ce:75:c3:83:53:7b:9d:9b:b0:01:28:c8:75:
28:6e:61:97:b8:0d:f9:e4:b6:d8:1e:b5:bf:a3:74:
6e:70:af:12:64:83:85:20:fc:44:2f:d1:6a:ae:8c:
b4:b2:d4:05:e2:b1:fb:c2:40:4a:41:4f:44:a9:c0:
68:ec:fc:80:29:51:44:96:94:b6:d7:a9:72:7e:f7:
ef:e3:5e:59:c0:82:af:f3:c5:76:af:ee:3d:13:86:
dd:16:23:d4:74:c7:86:38:bc:57:d4:d4:c5:5b:0e:
31:6e:34:f5:c8:65:63:28:49:a5:00:c3:ba:6c:f8:
91:99:b7:0f:a6:35:30:81:4d:b9:86:44:f4:f6:b8:
09:38:40:77:b1:cf:ac:b3:19:88:11:a0:b9:cf:af:
af:05:db:f0:05:9e:83:4d:99:66:86:a3:9e:bc:de:
12:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:3E:FC:D3:70:B7:A2:CA:4C:A8:40:24:4E:15:94:18:99:17:8A:46
X509v3 Authority Key Identifier:
keyid:BC:F5:46:36:80:D1:4B:64:58:6B:1D:5B:46:56:63:BC:B5:77:E6:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPVGNoDRS2RYax1bRlZjvLV35pM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f5fc76-5016-4968-829b-473045a93a05/1/7j7803C3ospMqEAkThWUGJkXikY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f5fc76-5016-4968-829b-473045a93a05/1/vPVGNoDRS2RYax1bRlZjvLV35pM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d04::/48
Signature Algorithm: sha256WithRSAEncryption
5a:06:de:4b:c6:e8:d9:d0:44:80:14:e3:1a:92:4c:c1:8c:8c:
6b:da:0a:bd:3b:c9:9c:e5:b7:37:fc:3e:ad:51:3b:4f:bd:6e:
b2:35:00:d0:a7:13:c6:a8:56:50:6c:6f:4e:b5:be:b4:82:1d:
16:41:5d:02:1b:bc:8b:bd:58:f4:5c:04:95:d3:41:06:ee:ab:
3b:bc:2f:62:00:d5:81:89:d6:65:90:6a:f7:a7:53:e0:a1:aa:
e4:04:e8:2c:e2:05:a5:03:82:8d:21:0c:d2:ad:b4:84:d2:99:
1b:b7:08:22:89:59:49:b1:77:15:41:74:51:8e:ac:0c:00:8d:
9f:2f:de:23:f3:0c:98:41:42:09:c8:f9:6a:e9:91:70:15:41:
ee:a4:2e:6f:7a:39:d7:64:dc:c2:41:eb:7a:a9:04:23:d1:6c:
72:b5:43:1a:69:ce:11:be:e1:af:21:56:bd:04:00:9e:6f:9f:
cb:57:b8:d6:49:60:ab:41:dd:14:a7:1e:77:ad:ba:26:c4:65:
4f:90:da:92:44:48:30:ab:69:26:0d:51:85:9f:b9:46:2b:f0:
3d:cf:21:bf:7f:d6:98:77:95:95:35:2c:d3:28:ae:63:7e:0d:
a3:76:7d:32:eb:6d:7e:9e:f5:89:43:27:d7:aa:02:d8:95:1d:
db:c2:c8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:35 2024 by rpki-client on console-ams.rpki-client.org