Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/12fe03-a2d4-4ab4-94ba-8cb6d0e5cce2/1/tU9d8Iwt-5Hi0s0EVB-z_vbEwXQ.roa
File: tU9d8Iwt-5Hi0s0EVB-z_vbEwXQ.roa (raw, json)
Hash identifier: hjtd6xQEscIVxqEQZzhvh8+M50PRekCa90TFx5LJ0tk=
Subject key identifier: B5:4F:5D:F0:8C:2D:FB:91:E2:D2:CD:04:54:1F:B3:FE:F6:C4:C1:74
Certificate issuer: /CN=41fe6d0102998c386f8d856fa5f91d7ad3ab4d77
Certificate serial: 01856E1D266CD478DFF0B522CF9651CB8AC4
Authority key identifier: 41:FE:6D:01:02:99:8C:38:6F:8D:85:6F:A5:F9:1D:7A:D3:AB:4D:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qf5tAQKZjDhvjYVvpfkdetOrTXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/12fe03-a2d4-4ab4-94ba-8cb6d0e5cce2/1/tU9d8Iwt-5Hi0s0EVB-z_vbEwXQ.roa
Signing time: Sun 01 Jan 2023 16:14:42 +0000
ROA not before: Sun 01 Jan 2023 16:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200060
IP address blocks: 161.54.0.0/16 maxlen: 16
2001:67c:2780::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:1d:26:6c:d4:78:df:f0:b5:22:cf:96:51:cb:8a:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41fe6d0102998c386f8d856fa5f91d7ad3ab4d77
Validity
Not Before: Jan 1 16:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b54f5df08c2dfb91e2d2cd04541fb3fef6c4c174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7e:04:30:45:d6:4d:b0:cb:f2:fa:93:ea:f4:
4a:3d:96:80:43:8c:4e:d3:99:99:25:aa:ee:ae:c3:
92:a0:cc:17:90:e4:6e:35:2e:3a:d1:f7:62:a9:4e:
e0:ed:c1:1b:f8:17:63:da:c0:17:18:5e:66:59:65:
cf:ac:01:3a:01:e3:8f:a6:fd:56:72:28:46:d4:f0:
f0:5e:18:da:09:bc:73:b7:12:e7:c1:5e:f3:53:6a:
e6:cb:31:f8:2c:c4:85:f1:08:29:0d:4a:cc:99:d1:
d5:e0:48:b0:36:33:c1:2e:f6:5e:b0:bc:89:d8:6f:
12:b1:fb:b0:9e:fb:fc:e7:8c:1a:30:c8:1c:c4:d2:
eb:bf:ed:81:d7:1b:fa:9f:b5:f2:55:04:7c:d4:32:
5b:38:11:e2:49:76:a1:b4:4e:91:3f:1a:0b:5d:ba:
a0:c5:23:18:75:23:69:d6:30:13:76:fb:a8:a0:37:
eb:3d:81:80:d9:b1:d7:52:89:22:e6:f3:e7:fa:82:
05:a0:8f:37:6e:11:83:92:fa:49:6b:d1:8c:64:2c:
b2:ba:cf:a7:b6:e1:c7:36:68:1d:da:a5:10:45:ee:
17:3f:02:98:6d:69:ea:d8:b4:68:a2:a4:c2:0b:78:
e9:7d:45:23:a7:f7:4a:7b:d0:52:55:a1:64:dc:ee:
2d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4F:5D:F0:8C:2D:FB:91:E2:D2:CD:04:54:1F:B3:FE:F6:C4:C1:74
X509v3 Authority Key Identifier:
keyid:41:FE:6D:01:02:99:8C:38:6F:8D:85:6F:A5:F9:1D:7A:D3:AB:4D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qf5tAQKZjDhvjYVvpfkdetOrTXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/12fe03-a2d4-4ab4-94ba-8cb6d0e5cce2/1/tU9d8Iwt-5Hi0s0EVB-z_vbEwXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/12fe03-a2d4-4ab4-94ba-8cb6d0e5cce2/1/Qf5tAQKZjDhvjYVvpfkdetOrTXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.54.0.0/16
IPv6:
2001:67c:2780::/48
Signature Algorithm: sha256WithRSAEncryption
11:e5:89:9b:e2:75:31:e1:cf:70:ad:9c:c0:b6:e0:10:e7:4a:
8b:06:03:6b:20:cb:2f:ea:bc:93:8b:a6:41:44:22:27:f4:38:
a5:35:92:f0:bb:b9:ba:94:a1:c1:b7:25:49:59:4a:dc:46:6f:
3f:d5:35:4f:24:fe:6e:cf:2d:8b:b1:74:85:9e:a2:c6:24:e4:
60:ed:56:26:ce:14:73:a4:9d:d8:e6:2f:37:11:fc:7f:7f:85:
dd:03:3f:b1:3f:9c:77:de:6e:a2:b5:15:32:e0:27:80:2b:4a:
bb:6b:13:bc:09:f5:7f:42:b4:74:cf:c5:e0:af:78:20:e0:8d:
cf:59:5f:6f:ad:71:47:0c:2e:ad:81:3d:87:79:c6:3f:8a:0d:
0e:01:6c:0b:2f:09:75:76:65:0e:d4:82:a1:2f:13:5e:db:aa:
6e:1d:aa:50:a5:49:72:05:ed:38:f2:08:9d:06:64:ee:cd:a1:
8b:b4:fe:7e:8c:fa:1f:73:47:dc:43:e4:49:77:0c:f5:93:9a:
cc:36:54:05:cb:be:89:63:36:92:4f:e8:1a:e5:15:cd:11:61:
b0:ee:e7:d1:d1:c7:b8:8d:c9:08:71:1c:1e:15:a3:85:79:b9:
0e:27:69:eb:7e:19:c8:63:a2:f7:49:64:ba:b0:89:70:4f:db:
d9:1f:f3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:34 2024 by rpki-client on console-fra.rpki-client.org