Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c2fcfa-7dc1-4200-899e-bc493d5cbb5c/1/phpnEKpM0my87ut6G8wun3skAso.roa
File: phpnEKpM0my87ut6G8wun3skAso.roa (raw, json)
Hash identifier: uRPjg1QXWTuChoAEDjc5/YC8jBuFJ5tcx6+LxahrH/8=
Subject key identifier: A6:1A:67:10:AA:4C:D2:6C:BC:EE:EB:7A:1B:CC:2E:9F:7B:24:02:CA
Certificate issuer: /CN=3708e04fd7bf81b675dcbe7b29aa263c912078b6
Certificate serial: 0185707993BB7AB80236050618183F610BB2
Authority key identifier: 37:08:E0:4F:D7:BF:81:B6:75:DC:BE:7B:29:AA:26:3C:91:20:78:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NwjgT9e_gbZ13L57KaomPJEgeLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c2fcfa-7dc1-4200-899e-bc493d5cbb5c/1/phpnEKpM0my87ut6G8wun3skAso.roa
Signing time: Mon 02 Jan 2023 03:14:53 +0000
ROA not before: Mon 02 Jan 2023 03:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203269
IP address blocks: 2001:67c:428::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:93:bb:7a:b8:02:36:05:06:18:18:3f:61:0b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3708e04fd7bf81b675dcbe7b29aa263c912078b6
Validity
Not Before: Jan 2 03:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a61a6710aa4cd26cbceeeb7a1bcc2e9f7b2402ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e8:02:50:3d:c0:7c:92:8c:3d:29:58:75:92:
13:ae:6a:98:ca:aa:d1:67:32:46:4a:16:d8:66:21:
c4:1a:c9:a3:8b:d1:6f:2e:9d:b4:46:bd:96:7e:83:
5c:69:ac:27:ce:dc:45:d5:fe:44:1a:27:1b:97:c6:
67:e4:15:9d:5b:b0:01:51:98:2e:b9:7c:8b:c9:05:
b9:a9:ff:d4:9e:ca:ce:22:ae:e7:ec:0f:c9:1c:52:
d1:97:65:ea:25:5f:f8:64:cf:6b:17:e3:a8:78:2f:
4a:82:f3:ba:2d:30:3f:1b:99:29:1e:2c:4e:50:9b:
c0:8c:66:a4:09:4d:ae:6d:3e:da:4c:00:ff:2c:9e:
79:cd:b4:7e:62:fd:a3:27:09:e0:7b:fd:20:22:d1:
89:b2:cb:59:2f:7c:0f:db:2b:ea:86:1c:6c:98:46:
47:98:87:b8:02:38:f2:c2:fc:0c:13:74:be:b6:dd:
bc:04:05:90:b7:45:4d:a1:f8:a6:c6:a7:48:6c:98:
53:79:b3:53:22:b7:4a:c8:bd:9d:41:52:da:08:61:
d2:4f:17:9e:d9:fd:35:5b:5f:2c:1d:10:80:5b:69:
74:5c:e8:26:80:6a:3f:ce:a2:fc:e1:76:8b:7c:e7:
5b:2d:28:8e:ce:a8:5c:a8:09:fa:62:32:ea:f5:09:
fb:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1A:67:10:AA:4C:D2:6C:BC:EE:EB:7A:1B:CC:2E:9F:7B:24:02:CA
X509v3 Authority Key Identifier:
keyid:37:08:E0:4F:D7:BF:81:B6:75:DC:BE:7B:29:AA:26:3C:91:20:78:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NwjgT9e_gbZ13L57KaomPJEgeLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c2fcfa-7dc1-4200-899e-bc493d5cbb5c/1/phpnEKpM0my87ut6G8wun3skAso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c2fcfa-7dc1-4200-899e-bc493d5cbb5c/1/NwjgT9e_gbZ13L57KaomPJEgeLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:428::/48
Signature Algorithm: sha256WithRSAEncryption
94:47:bb:25:b3:dd:7b:da:a8:00:79:ab:50:ef:82:40:64:f7:
a0:f8:2f:1d:76:54:98:3d:d3:ee:e7:fd:94:83:9c:c1:b9:45:
7a:ee:61:cd:9f:9a:67:61:00:b8:e2:c4:61:62:4a:c9:d8:0c:
f8:b7:16:1e:aa:f4:7a:ca:18:c1:5d:de:48:c0:01:07:44:37:
92:18:e0:02:8c:02:ba:8f:4b:83:27:e7:e5:fd:45:e3:a1:53:
15:85:0a:f0:53:b0:ac:dd:ec:b3:ba:fc:56:bc:e2:a7:4f:02:
e7:9e:87:44:76:2e:66:51:8e:70:99:85:71:45:eb:b2:4d:25:
30:e0:d7:27:a8:b3:7c:17:d2:74:2e:04:84:6a:38:27:fe:fc:
d8:62:b2:4f:4c:64:f0:1c:c4:46:6f:64:47:ff:01:cc:b9:26:
d8:d6:6d:30:b1:4c:54:87:a3:5a:a2:60:df:ca:37:14:fb:fd:
08:67:f5:05:99:73:eb:70:5b:ab:d1:7e:27:df:1b:44:05:b3:
cc:17:b2:bc:36:7c:8c:45:79:58:6f:21:20:b1:ed:9c:f7:8b:
64:2c:d6:38:10:b7:1d:72:b7:ba:08:6a:95:8b:26:24:9b:51:
60:ad:f8:a5:6c:f6:ea:d5:ce:8b:bb:89:27:2e:14:92:bf:17:
ea:29:c7:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:17 2024 by rpki-client on console-ams.rpki-client.org