Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/7290d5-1ed5-4ca1-96fd-bfc73dd0bbb6/1/9pfkycKqxSOHPtWeAAQLF-M00a4.roa
File: 9pfkycKqxSOHPtWeAAQLF-M00a4.roa (raw, json)
Hash identifier: zbb6IXr9u6UtTND01SiD8IZ9hQzjdNN4erjy2dL0JSc=
Subject key identifier: F6:97:E4:C9:C2:AA:C5:23:87:3E:D5:9E:00:04:0B:17:E3:34:D1:AE
Certificate issuer: /CN=9b86bd882e476e4698318f370712f71c2bf50dfc
Certificate serial: 01856DE6556D67F2541B81B3F4865E740196
Authority key identifier: 9B:86:BD:88:2E:47:6E:46:98:31:8F:37:07:12:F7:1C:2B:F5:0D:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m4a9iC5HbkaYMY83BxL3HCv1Dfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/7290d5-1ed5-4ca1-96fd-bfc73dd0bbb6/1/9pfkycKqxSOHPtWeAAQLF-M00a4.roa
Signing time: Sun 01 Jan 2023 15:14:49 +0000
ROA not before: Sun 01 Jan 2023 15:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201612
IP address blocks: 2001:67c:10e0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:55:6d:67:f2:54:1b:81:b3:f4:86:5e:74:01:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b86bd882e476e4698318f370712f71c2bf50dfc
Validity
Not Before: Jan 1 15:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f697e4c9c2aac523873ed59e00040b17e334d1ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:14:b7:43:62:e2:38:8a:22:79:3e:95:1e:a9:
3f:16:4f:a7:d7:97:2b:45:ed:6a:94:76:60:ea:05:
86:5e:60:bc:0c:c8:c0:34:a7:18:83:f4:13:b6:84:
29:df:b2:f6:ff:97:94:f1:9c:bb:32:87:30:9f:c2:
5a:05:69:0b:c6:23:91:84:52:fe:3b:ed:04:6b:54:
c4:c7:48:c8:d2:c5:4b:b7:21:90:04:e6:bb:ab:3b:
8b:bf:e5:c0:b4:6e:fd:f2:87:0e:41:b5:07:fe:88:
6e:59:03:e4:8d:0b:d7:ec:ec:41:e5:f3:3d:fe:58:
3c:c9:37:d8:e1:10:38:e1:d6:73:04:65:66:99:fd:
42:5d:57:18:4f:10:1b:84:cb:93:5c:57:2a:ae:be:
ac:99:4f:74:48:66:8a:1d:9d:e2:99:97:a3:f7:4b:
8a:59:11:9e:65:8b:fd:6d:43:a4:a2:97:55:42:13:
ee:25:ab:ca:0c:c1:7d:ad:b0:24:2a:d1:31:41:b7:
c9:2c:7a:5b:6a:5e:b8:61:06:ae:5f:45:6c:cf:76:
ae:e1:d9:2d:66:67:a4:ac:1e:d6:11:ea:f7:10:9d:
ad:e7:64:c4:af:93:1c:fb:c3:01:c8:d0:44:bf:1f:
f6:82:33:93:f1:da:2c:f3:da:e4:48:35:f1:8f:df:
75:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:97:E4:C9:C2:AA:C5:23:87:3E:D5:9E:00:04:0B:17:E3:34:D1:AE
X509v3 Authority Key Identifier:
keyid:9B:86:BD:88:2E:47:6E:46:98:31:8F:37:07:12:F7:1C:2B:F5:0D:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m4a9iC5HbkaYMY83BxL3HCv1Dfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7290d5-1ed5-4ca1-96fd-bfc73dd0bbb6/1/9pfkycKqxSOHPtWeAAQLF-M00a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7290d5-1ed5-4ca1-96fd-bfc73dd0bbb6/1/m4a9iC5HbkaYMY83BxL3HCv1Dfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:10e0::/48
Signature Algorithm: sha256WithRSAEncryption
8d:8b:95:a0:33:88:29:69:4e:60:5a:8d:d9:97:be:4b:ef:f8:
28:e4:05:56:a5:df:db:38:ca:0d:fc:f7:b0:ea:6a:85:15:8d:
4a:0e:34:0e:03:05:e4:ac:d4:5e:ec:c0:7f:d0:c5:2d:21:9b:
cf:95:8c:b5:43:8e:3b:97:28:cc:65:aa:c4:b4:1a:2b:de:db:
90:85:4f:36:dc:83:3f:23:a7:3d:69:c1:e9:b4:65:f2:67:df:
49:9c:aa:cc:61:19:e3:57:6d:ce:e4:86:ff:76:36:f4:d3:d3:
7b:b0:63:c4:53:98:63:4c:60:98:bf:36:d7:03:ae:76:46:64:
1f:ec:80:a0:85:02:71:0e:ad:40:bb:96:15:18:75:fb:72:85:
86:85:c9:d0:e0:8e:ca:ce:54:58:6a:aa:7f:ce:05:db:46:ba:
86:6d:e8:41:ef:f7:7c:e7:32:99:e4:9d:b4:f9:ea:6f:2a:cd:
c2:d5:33:f3:07:74:50:01:ae:60:9f:47:05:07:41:ac:71:12:
ed:0e:1b:c2:b4:8e:c2:25:5e:d6:72:4f:4d:3f:2a:d4:97:7c:
eb:76:26:e8:22:80:7f:43:f9:d5:3c:30:e8:b0:51:2d:e1:d5:
65:cc:c6:f5:4a:66:99:bd:58:d1:3c:28:82:ed:45:f6:ab:f5:
a4:22:04:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:45 2024 by rpki-client on console-ams.rpki-client.org