Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/TGgrrm8hPEMjopEPD8BH1229Omo.roa
File: TGgrrm8hPEMjopEPD8BH1229Omo.roa (raw, json)
Hash identifier: VHcIiXZW8txxaCwwGXtZA5ZruulLVqkWVsS7vGSPBS8=
Subject key identifier: 4C:68:2B:AE:6F:21:3C:43:23:A2:91:0F:0F:C0:47:D7:6D:BD:3A:6A
Certificate issuer: /CN=2682c816f72686ff7aede53538618cc2e8861039
Certificate serial: 018C62E7C77084157855D8E9B64C764E7DC8
Authority key identifier: 26:82:C8:16:F7:26:86:FF:7A:ED:E5:35:38:61:8C:C2:E8:86:10:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JoLIFvcmhv967eU1OGGMwuiGEDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/TGgrrm8hPEMjopEPD8BH1229Omo.roa
Signing time: Wed 13 Dec 2023 11:20:06 +0000
ROA not before: Wed 13 Dec 2023 11:20:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 2001:67c:2850::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:e7:c7:70:84:15:78:55:d8:e9:b6:4c:76:4e:7d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2682c816f72686ff7aede53538618cc2e8861039
Validity
Not Before: Dec 13 11:20:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c682bae6f213c4323a2910f0fc047d76dbd3a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:17:b3:46:37:cf:b1:69:b4:2e:1b:d9:65:35:
7f:d1:ea:ca:40:ad:47:23:f4:fa:d2:b2:1d:20:5c:
87:ae:0c:b9:92:a6:79:0c:5a:01:c3:b3:e4:a0:57:
23:5b:fe:3c:5f:ae:f6:65:b1:75:3b:68:16:77:53:
c0:64:e1:23:f0:4a:93:b9:aa:b5:56:c7:d9:95:3e:
65:15:28:b2:bd:17:b3:16:c8:a9:3e:fb:bb:94:4b:
21:95:82:f2:ce:96:91:b5:a8:26:45:db:2a:2b:4c:
ff:c8:94:b2:23:e1:a7:ba:41:74:aa:68:10:30:01:
e0:58:1f:d2:1a:1c:55:09:87:72:37:09:e5:2d:74:
7b:64:65:86:58:b8:74:1e:f9:9f:0b:28:d3:21:96:
29:6f:ec:ea:82:c9:a5:96:14:ce:ee:16:7d:71:03:
02:d2:33:2a:b1:63:c4:0b:29:d6:e6:47:e2:05:97:
a3:58:1d:f6:4c:c6:a0:7f:18:4b:a5:69:64:8a:ee:
d2:e1:d5:8e:99:b7:5a:7d:d0:2c:a1:00:66:39:5c:
0a:03:ad:98:08:a4:68:c3:f0:40:41:44:6c:0f:4f:
87:7a:c3:27:79:f5:ce:6b:fd:6c:53:25:fb:37:74:
ff:14:e8:fc:8c:62:b1:99:9d:22:e0:36:09:0c:b3:
a5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:68:2B:AE:6F:21:3C:43:23:A2:91:0F:0F:C0:47:D7:6D:BD:3A:6A
X509v3 Authority Key Identifier:
keyid:26:82:C8:16:F7:26:86:FF:7A:ED:E5:35:38:61:8C:C2:E8:86:10:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JoLIFvcmhv967eU1OGGMwuiGEDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/TGgrrm8hPEMjopEPD8BH1229Omo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a00090-6663-46a1-a5fb-661e8fe3c1e9/1/JoLIFvcmhv967eU1OGGMwuiGEDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2850::/48
Signature Algorithm: sha256WithRSAEncryption
0c:8e:5b:d3:51:ae:51:00:7c:29:da:b8:32:20:42:ec:cb:58:
53:6e:51:7c:e0:d3:cf:79:72:3a:9c:d1:e4:4e:f4:b3:85:31:
85:a9:79:10:d1:e4:c3:4c:4e:e1:a8:03:cd:ab:71:d8:3f:b8:
a7:4d:0b:b4:1a:bb:71:45:6c:01:e3:5c:a6:cc:2a:0a:9e:64:
42:b4:7b:a8:d5:c4:de:94:00:cd:76:05:52:54:f5:05:ce:3c:
96:96:31:c0:8b:3e:4e:d1:d6:0e:35:63:05:15:b9:93:82:93:
99:45:3e:f1:81:cb:0a:ab:72:6f:c7:de:71:97:c8:9c:13:29:
02:4e:76:ae:7b:9a:2a:cd:4b:a7:95:6f:48:36:a4:63:07:23:
27:64:45:61:77:89:e9:75:92:60:a3:7a:5f:b2:17:0b:dc:77:
15:9a:fa:82:bb:96:aa:13:ba:50:35:4c:e9:fd:7b:cc:27:d2:
f4:04:36:4a:05:d3:7b:df:bb:40:4c:da:9b:0d:06:6d:a8:95:
0d:3d:36:e4:80:35:8c:b7:63:62:07:78:3a:e8:6b:42:5b:91:
78:2a:d9:19:6d:5d:06:0f:43:d9:a2:63:ee:8d:43:70:9d:fb:
ea:17:1a:c5:54:ff:4a:d8:b6:f9:69:46:86:3d:13:65:7b:37:
dc:38:a8:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:46 2024 by rpki-client on console-fra.rpki-client.org