Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/9uzWX4pg1mTnpLmUNPkq73eABp8.roa
File: 9uzWX4pg1mTnpLmUNPkq73eABp8.roa (raw, json)
Hash identifier: om69CL0povybxVVThvlvapCi9ggoj46+UyN2f2GRhVM=
Subject key identifier: F6:EC:D6:5F:8A:60:D6:64:E7:A4:B9:94:34:F9:2A:EF:77:80:06:9F
Certificate issuer: /CN=7657211f8a66561b5770ff19b471aef511e83778
Certificate serial: 018F527120998328B7C992DC47CCEF757DCC
Authority key identifier: 76:57:21:1F:8A:66:56:1B:57:70:FF:19:B4:71:AE:F5:11:E8:37:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/9uzWX4pg1mTnpLmUNPkq73eABp8.roa
Signing time: Tue 07 May 2024 09:44:56 +0000
ROA not before: Tue 07 May 2024 09:44:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 2001:67c:e8c::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 08 Sep 2024 04:59:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:52:71:20:99:83:28:b7:c9:92:dc:47:cc:ef:75:7d:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7657211f8a66561b5770ff19b471aef511e83778
Validity
Not Before: May 7 09:44:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6ecd65f8a60d664e7a4b99434f92aef7780069f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:59:ce:c3:75:76:a2:43:6e:e8:dc:45:58:42:
4f:94:42:9c:d1:91:72:53:51:f8:88:bb:ca:9c:eb:
af:44:d3:86:56:86:fe:c5:56:5e:ac:15:bb:f4:5b:
65:61:f2:74:78:78:c2:18:b7:d1:fe:7c:9d:bc:2e:
c7:eb:06:88:ab:62:ac:c6:cc:e3:70:49:1b:5b:43:
af:e4:47:a9:40:13:f9:bd:fa:ae:93:91:bd:21:75:
7d:6f:fd:55:1d:38:13:7e:ff:04:2d:6c:a2:c0:29:
e1:5b:1b:6f:34:a6:0f:b7:4c:18:5b:67:6c:ff:25:
1b:b9:87:25:e2:01:5e:b7:2d:ea:b1:3a:1f:f3:82:
27:c7:65:6f:24:fc:1e:54:56:42:db:d3:02:d3:0d:
e2:d8:e6:61:77:87:43:d9:37:06:22:a9:30:d7:73:
bc:6e:ea:f4:4b:9c:06:91:b2:19:df:07:24:24:d0:
51:0c:a7:86:81:73:fa:7f:aa:c7:55:d4:20:aa:1c:
9d:5e:76:32:b1:f5:3b:32:61:70:1a:c1:95:6f:b2:
30:ab:14:74:48:90:71:03:06:70:bd:fc:4b:c4:93:
11:55:4f:a3:43:be:f1:a2:79:f0:9a:50:e7:f1:bf:
f4:66:09:72:33:ad:2e:bb:84:d7:57:48:cb:12:41:
52:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:EC:D6:5F:8A:60:D6:64:E7:A4:B9:94:34:F9:2A:EF:77:80:06:9F
X509v3 Authority Key Identifier:
keyid:76:57:21:1F:8A:66:56:1B:57:70:FF:19:B4:71:AE:F5:11:E8:37:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/9uzWX4pg1mTnpLmUNPkq73eABp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:e8c::/48
Signature Algorithm: sha256WithRSAEncryption
69:bf:c5:5d:cd:37:a3:71:09:9d:57:6f:3d:d5:9d:97:e9:a5:
34:e1:3c:e2:66:c0:13:63:f9:c2:bb:e8:a7:53:11:d7:9a:14:
0e:ed:7b:6e:bc:a6:75:c7:17:c7:9f:a6:f0:5f:25:66:77:e3:
cc:09:68:dd:16:7f:d5:c5:e8:a9:02:24:c2:72:6d:88:54:d0:
55:37:ee:a8:17:7a:c2:4c:eb:eb:30:52:5e:eb:7a:cf:44:eb:
71:e5:74:6a:12:0d:53:d8:4e:f5:d8:fe:19:43:a5:8b:3d:d0:
7d:87:1c:8f:69:4d:50:d4:5e:d3:30:a1:88:35:b1:05:6d:e4:
17:22:09:e1:2d:10:fb:c5:18:cb:43:b7:64:77:fd:36:1b:f4:
f9:8a:f4:82:32:6f:3a:b2:15:ee:0f:43:e1:82:ef:29:84:c7:
28:af:41:0a:24:fb:1c:55:21:ae:f2:8e:51:f0:2d:64:72:17:
22:80:cb:df:4b:ea:14:34:b5:ff:81:35:50:f7:e4:0b:18:e5:
76:3c:a0:70:d6:19:4b:14:69:dc:21:41:aa:bc:70:6c:8f:56:
07:da:07:6a:a2:f9:f3:61:9b:f6:93:24:d5:6f:d4:9e:3d:5c:
f5:97:d9:d4:43:23:90:fd:af:1f:5f:36:80:09:5a:0a:12:b0:
9b:2f:9d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 8 07:48:39 2024 by rpki-client on console-ams.rpki-client.org