Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/EKob2SIacZSvmv8LC2_UCt0dG-o.roa
File: EKob2SIacZSvmv8LC2_UCt0dG-o.roa (raw, json)
Hash identifier: HMIk6FPCFWr8aCDUAZWh84dmlWyk0uABLigD9cyWNdE=
Subject key identifier: 10:AA:1B:D9:22:1A:71:94:AF:9A:FF:0B:0B:6F:D4:0A:DD:1D:1B:EA
Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Certificate serial: 01856ED4AFA57F88EB5304C9F11513129652
Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/EKob2SIacZSvmv8LC2_UCt0dG-o.roa
Signing time: Sun 01 Jan 2023 19:35:10 +0000
ROA not before: Sun 01 Jan 2023 19:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20625
IP address blocks: 2001:67c:1784::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:af:a5:7f:88:eb:53:04:c9:f1:15:13:12:96:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Validity
Not Before: Jan 1 19:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10aa1bd9221a7194af9aff0b0b6fd40add1d1bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d0:82:0e:dc:23:14:dc:ba:b2:04:62:6d:16:
cc:eb:75:17:fc:89:17:27:0b:44:bf:1f:15:97:a3:
78:73:67:8c:82:f1:30:e7:67:a8:70:4a:7e:98:de:
ab:a5:c9:6f:3f:17:b6:dd:e4:46:1e:68:80:61:eb:
1b:0b:36:b6:26:01:d3:1e:34:7e:55:14:b4:c0:32:
d7:0a:4e:9d:2b:b8:72:1a:2e:df:4d:5e:e0:20:2f:
86:17:dd:c4:e2:24:7c:7a:1a:03:52:5f:5c:bf:38:
9c:ed:14:3e:aa:9d:08:50:aa:9a:d7:52:88:c4:a2:
b3:a7:54:8d:b0:2d:9f:7d:c4:25:c9:aa:94:0d:5e:
5c:22:ee:48:a7:d3:ee:c6:d6:e0:ed:3c:90:f9:2e:
0f:84:c5:12:81:b7:d5:e3:57:c1:f5:eb:0d:0c:cd:
a4:c0:49:50:07:7f:05:d5:76:72:68:44:aa:81:56:
79:d3:ea:15:e4:96:14:31:dd:67:5b:65:7d:15:9f:
51:8a:f6:2b:85:29:e9:1c:c0:9c:42:88:14:10:3a:
6e:49:37:1c:b4:1f:4e:be:50:e6:c9:e7:80:b4:6c:
c9:0c:74:25:74:df:23:c2:df:67:81:cf:16:f3:a8:
f0:a1:30:e5:30:36:f3:27:02:b3:5b:e6:66:4c:d4:
64:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:AA:1B:D9:22:1A:71:94:AF:9A:FF:0B:0B:6F:D4:0A:DD:1D:1B:EA
X509v3 Authority Key Identifier:
keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/EKob2SIacZSvmv8LC2_UCt0dG-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1784::/48
Signature Algorithm: sha256WithRSAEncryption
ab:64:88:c5:44:9c:03:5c:ce:dc:72:1b:0d:ab:16:88:7e:11:
ef:92:87:0a:2f:f6:c3:6f:2c:23:02:a9:34:c4:87:3d:bc:9d:
4e:1c:38:06:07:d6:90:2b:f2:87:90:2b:38:4a:ae:9f:4e:fb:
07:d4:ec:95:f4:77:50:e1:f4:93:93:59:61:e8:a6:05:59:31:
8b:74:26:6b:57:86:a9:88:e4:40:1d:1b:65:eb:ef:e2:99:79:
6b:78:01:4d:96:44:e6:48:2e:c0:27:34:3c:e3:cc:e7:5e:58:
3a:f8:d9:8d:82:bf:e2:86:e5:aa:85:f2:cc:ee:f1:0d:94:ea:
00:05:e9:0a:a0:3e:e5:32:4f:94:8e:8a:84:e4:65:3b:0f:c1:
59:e7:e8:75:09:0b:55:04:53:b2:42:68:39:71:2f:21:b2:70:
03:93:f7:da:0b:fa:5e:a4:f4:7e:91:6b:62:29:f5:a5:4c:02:
ca:b7:27:91:f0:0b:1d:f3:5f:a6:52:2d:51:e0:d6:ae:fd:d2:
cd:c2:76:ec:6a:c9:21:b5:b4:a3:7f:0e:2b:f2:b8:2a:18:1c:
c3:56:f7:69:83:63:de:1c:95:8f:3e:a9:1e:7f:3a:5b:84:e0:
d8:31:76:4f:5d:e5:3b:c6:40:28:98:eb:8c:05:da:6e:8f:8e:
23:4f:c3:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:42 2024 by rpki-client on console-ams.rpki-client.org