Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f8f9c8-0deb-40de-8946-291e4bd70309/1/m3XB-WG4bmWxes-WcZ_NAj0_4cc.roa
File: m3XB-WG4bmWxes-WcZ_NAj0_4cc.roa (raw, json)
Hash identifier: NuHnWOYaMsyBS1+E/dPT/arwS+dXX6jlhax8mfoUFwU=
Subject key identifier: 9B:75:C1:F9:61:B8:6E:65:B1:7A:CF:96:71:9F:CD:02:3D:3F:E1:C7
Certificate issuer: /CN=1a11a6636f8ce2cef5836c443565c5fe3ae2f208
Certificate serial: 01856D2F1FEDD40581B8823BED20F5068432
Authority key identifier: 1A:11:A6:63:6F:8C:E2:CE:F5:83:6C:44:35:65:C5:FE:3A:E2:F2:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GhGmY2-M4s71g2xENWXF_jri8gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f8f9c8-0deb-40de-8946-291e4bd70309/1/m3XB-WG4bmWxes-WcZ_NAj0_4cc.roa
Signing time: Sun 01 Jan 2023 11:54:42 +0000
ROA not before: Sun 01 Jan 2023 11:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206671
IP address blocks: 2001:678:91c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:1f:ed:d4:05:81:b8:82:3b:ed:20:f5:06:84:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a11a6636f8ce2cef5836c443565c5fe3ae2f208
Validity
Not Before: Jan 1 11:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b75c1f961b86e65b17acf96719fcd023d3fe1c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2a:42:83:56:bf:0b:70:e4:b7:37:22:38:06:
e9:1f:e8:a7:34:12:aa:f9:b5:8a:c8:f1:f1:11:3e:
40:33:5e:49:5a:4a:2b:b9:84:6f:3e:b9:3b:16:ba:
4f:bc:7d:22:e4:3d:e0:d6:5f:ea:ec:85:1a:01:2e:
95:09:08:24:88:34:05:5d:cc:0d:a3:a9:74:3d:97:
b3:44:b7:7b:7e:b3:84:b6:03:1c:e3:10:54:a8:13:
45:3f:dd:9b:98:34:9b:f7:b3:c1:93:a2:4c:34:7a:
9f:c6:a6:7a:16:db:47:62:2e:cd:75:12:6b:60:75:
c5:ce:ea:5f:41:a7:1e:7b:81:16:54:f8:49:01:36:
02:25:3c:0e:57:6d:7b:01:98:86:e2:21:31:25:57:
8e:d0:fa:d4:5f:d3:1b:92:f0:27:30:19:7a:42:9f:
5c:c8:d3:7d:7b:1f:1a:73:e8:3c:8c:3f:37:4d:a3:
22:11:9d:eb:d0:86:29:78:0f:5a:dc:5c:93:b6:57:
a0:75:8d:de:1a:4f:f0:4f:75:df:5b:ce:dd:32:e2:
88:3c:3f:a9:ae:ac:fe:92:ed:b3:2b:e2:30:76:9e:
ac:7e:90:39:db:ff:2b:90:e8:37:a1:9d:ca:bc:6f:
b4:72:b0:bc:8d:fa:89:21:95:6e:26:32:c7:a7:ef:
e6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:75:C1:F9:61:B8:6E:65:B1:7A:CF:96:71:9F:CD:02:3D:3F:E1:C7
X509v3 Authority Key Identifier:
keyid:1A:11:A6:63:6F:8C:E2:CE:F5:83:6C:44:35:65:C5:FE:3A:E2:F2:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhGmY2-M4s71g2xENWXF_jri8gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f8f9c8-0deb-40de-8946-291e4bd70309/1/m3XB-WG4bmWxes-WcZ_NAj0_4cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f8f9c8-0deb-40de-8946-291e4bd70309/1/GhGmY2-M4s71g2xENWXF_jri8gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:91c::/48
Signature Algorithm: sha256WithRSAEncryption
2f:bf:5e:16:79:43:58:90:d4:65:c4:3d:85:a4:eb:67:4f:77:
8e:e9:b8:39:20:b2:f9:74:a6:4c:9f:a3:44:9f:f1:6d:84:13:
d2:97:0a:06:d9:9b:38:61:8c:5b:c5:42:6a:b1:20:3e:fc:f5:
77:ed:01:90:ab:a3:4d:eb:59:ff:a8:ff:65:49:0d:d4:23:e6:
10:8d:8d:00:8a:de:33:c9:1e:ef:c9:f0:a4:52:6e:f3:d6:3a:
aa:27:5a:ca:9b:16:be:dc:ae:71:dd:30:d3:05:a4:f9:ac:e5:
28:93:80:58:1b:22:01:b8:a3:a6:c9:02:23:87:48:b9:02:5a:
20:72:6f:d0:57:e5:12:91:db:75:06:51:98:74:4c:cf:a7:5a:
86:bd:e4:c2:0e:6c:78:64:78:ab:f1:eb:ec:42:43:7b:43:79:
56:ec:44:50:26:b6:03:eb:35:a7:c7:ea:21:49:d2:dc:0a:5a:
4c:87:17:63:82:4f:06:94:c8:2b:91:8d:96:a2:68:5c:a2:af:
3a:64:fa:14:aa:1a:8d:45:0f:1a:72:35:e7:8f:f3:dc:7d:45:
9f:68:82:59:92:cd:ed:2a:0c:51:97:43:8f:ac:4a:ef:70:8e:
4b:3d:41:73:a6:f0:bf:d7:a6:ab:77:95:87:02:8b:82:14:b1:
b2:12:68:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:41 2024 by rpki-client on console-ams.rpki-client.org