Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/lhXnJeYozuZZ857KnPZgTFQaEoE.roa
File: lhXnJeYozuZZ857KnPZgTFQaEoE.roa (raw, json)
Hash identifier: +tuZm92rkQymx4pJN9kgn3b5ez8ck7QkBQcl4j3Vwko=
Subject key identifier: 96:15:E7:25:E6:28:CE:E6:59:F3:9E:CA:9C:F6:60:4C:54:1A:12:81
Certificate issuer: /CN=9f04c3a86338e170605e665d34d8a5c869948a05
Certificate serial: 018C7C630F0145CE73695BE73489B24174E5
Authority key identifier: 9F:04:C3:A8:63:38:E1:70:60:5E:66:5D:34:D8:A5:C8:69:94:8A:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwTDqGM44XBgXmZdNNilyGmUigU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/lhXnJeYozuZZ857KnPZgTFQaEoE.roa
Signing time: Mon 18 Dec 2023 10:05:15 +0000
ROA not before: Mon 18 Dec 2023 10:05:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199815
IP address blocks: 2001:678:870::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7c:63:0f:01:45:ce:73:69:5b:e7:34:89:b2:41:74:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f04c3a86338e170605e665d34d8a5c869948a05
Validity
Not Before: Dec 18 10:05:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9615e725e628cee659f39eca9cf6604c541a1281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e5:a2:90:e9:37:5a:15:7f:2a:24:d1:c3:b2:
e6:61:de:10:c4:b9:8b:67:ae:de:1f:bb:14:62:c5:
ff:c2:17:24:48:76:d6:5a:83:34:c7:f4:4b:4d:40:
b4:b5:85:5d:76:82:58:63:c4:bb:d2:64:d3:16:a9:
3b:1d:00:ff:34:78:3a:cd:8d:88:0a:34:b8:45:89:
11:50:e8:48:88:2c:19:a2:d5:04:e8:9f:3d:eb:97:
e9:ec:d7:dd:31:4a:d3:b6:56:a8:a8:2d:da:3b:80:
4e:e4:39:05:5a:6b:e4:35:4d:fc:bd:fa:e1:2a:c3:
77:c5:e1:8d:23:5a:aa:08:bc:3f:d6:73:d9:91:9f:
bf:89:31:11:df:d7:26:ee:b1:0b:45:66:2f:f8:7e:
a1:5d:da:43:10:93:a2:a9:2a:02:52:94:ea:f8:5b:
a1:e6:02:1f:b9:f5:de:04:99:53:4b:8a:ba:56:89:
51:65:c7:50:6b:bd:21:47:e7:5e:71:20:b9:2d:f0:
cd:fc:0a:94:9c:3b:65:ff:de:96:92:c6:97:ff:7d:
a3:94:e3:38:5f:5b:3e:7c:b9:64:a6:c2:9a:20:19:
59:9a:a4:50:0e:e1:10:77:2e:4d:a0:72:b5:fe:c8:
05:6a:5a:70:cb:55:07:4b:58:97:9b:dd:d0:e9:f2:
ec:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:15:E7:25:E6:28:CE:E6:59:F3:9E:CA:9C:F6:60:4C:54:1A:12:81
X509v3 Authority Key Identifier:
keyid:9F:04:C3:A8:63:38:E1:70:60:5E:66:5D:34:D8:A5:C8:69:94:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwTDqGM44XBgXmZdNNilyGmUigU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/lhXnJeYozuZZ857KnPZgTFQaEoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/nwTDqGM44XBgXmZdNNilyGmUigU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:870::/48
Signature Algorithm: sha256WithRSAEncryption
87:f9:9d:5f:72:5f:f4:03:a5:1d:0b:2c:d9:c2:94:62:49:d0:
6a:af:20:bb:c6:14:e4:25:57:0f:29:91:0f:f1:5b:b8:7a:dc:
cd:c5:6f:78:ec:a1:55:69:25:79:96:67:f7:dc:d9:15:7e:32:
9f:ec:46:b0:e9:8f:76:c3:38:f1:6b:d9:da:3c:d4:75:11:ec:
73:44:62:00:65:bb:62:5c:57:fc:71:24:e4:37:20:cd:61:ae:
29:b8:c1:11:1a:89:55:d0:31:7f:93:00:a0:06:ba:b8:a3:b5:
8d:6d:eb:08:6c:91:cc:7f:dc:11:6b:f9:5c:11:d3:93:47:13:
85:49:0d:37:29:5a:cf:d0:51:b4:9a:ac:de:88:2d:7c:be:7c:
dd:c4:a2:16:04:da:f6:24:ba:d4:fb:a0:56:5a:25:0c:a0:97:
42:58:c1:a3:64:78:32:9b:08:d0:58:dd:73:cc:09:3c:54:9d:
5a:db:1f:52:19:ba:22:83:09:f7:e3:c2:91:e5:ad:64:f8:35:
90:45:09:34:e4:d7:9a:8a:6b:1c:f8:ce:1c:d9:a4:08:fb:74:
75:14:84:b2:fc:74:79:aa:ca:7b:59:c2:5b:d1:95:15:94:f5:
38:3b:49:5d:f8:ed:93:c1:8f:5b:e5:2e:d1:14:0d:b5:fb:9c:
87:80:e0:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:22 2024 by rpki-client on console-ams.rpki-client.org