Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/mFuP3Sz_QV3BQtZc1g2YiuN45Ns.roa
File: mFuP3Sz_QV3BQtZc1g2YiuN45Ns.roa (raw, json)
Hash identifier: 2JljcVyWPJ3CAN1RILPaJwgmUYbMb+jVd0+r4gaPpLY=
Subject key identifier: 98:5B:8F:DD:2C:FF:41:5D:C1:42:D6:5C:D6:0D:98:8A:E3:78:E4:DB
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 0185723A2FEAB21253329FEDDA0DE022D706
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/mFuP3Sz_QV3BQtZc1g2YiuN45Ns.roa
Signing time: Mon 02 Jan 2023 11:24:54 +0000
ROA not before: Mon 02 Jan 2023 11:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2043
IP address blocks: 2001:67c:1d4::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:2f:ea:b2:12:53:32:9f:ed:da:0d:e0:22:d7:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 2 11:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=985b8fdd2cff415dc142d65cd60d988ae378e4db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:38:8f:56:a9:fd:83:09:57:20:97:0b:81:b5:
df:2c:af:9f:33:e3:c9:f5:ea:35:fa:87:73:81:17:
61:48:67:49:93:ee:af:23:d5:5f:50:ce:af:ff:5e:
3e:4a:08:d1:b2:60:5a:63:40:78:af:b1:19:1c:5d:
bb:2a:f4:5e:85:a8:af:0d:50:1e:4a:71:a4:5b:fc:
63:b3:33:a0:7b:49:f6:43:7b:9f:95:01:8a:6f:70:
e9:b6:a9:00:60:7d:80:96:66:db:20:1c:b9:bf:01:
f8:89:13:31:c0:ce:19:9d:ee:73:d5:c0:b4:88:5c:
d7:a8:a8:57:1d:2f:c7:52:3f:a0:0d:9b:f4:c7:2f:
87:87:a2:47:93:1e:b5:8f:5b:4f:5d:55:71:b3:cc:
71:19:23:99:01:97:e9:02:92:c5:e3:9a:8d:12:ee:
b3:45:83:39:af:e5:e0:f9:3e:be:5a:d4:8d:2a:db:
ec:ea:0c:a6:b5:95:e7:eb:72:1f:75:5b:68:a6:60:
ed:dd:2d:26:96:6e:8e:84:72:ac:5a:18:5d:03:0d:
6a:ad:b4:2b:ef:25:73:95:18:ce:d0:11:c5:ee:2d:
4f:b9:42:c0:d2:01:83:38:69:b3:c5:8b:39:7e:d4:
0c:2e:5d:25:b0:ae:73:95:55:30:6a:21:6e:3d:c5:
58:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5B:8F:DD:2C:FF:41:5D:C1:42:D6:5C:D6:0D:98:8A:E3:78:E4:DB
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/mFuP3Sz_QV3BQtZc1g2YiuN45Ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1d4::/48
Signature Algorithm: sha256WithRSAEncryption
87:29:29:8c:98:02:41:d4:64:0d:82:c5:fb:27:c6:a4:aa:f2:
df:d8:7b:57:c8:e6:71:ee:28:e5:d7:fc:c0:f9:78:c2:c3:1e:
b6:0b:eb:f9:80:91:33:38:75:af:bf:b2:63:eb:13:ef:24:ac:
48:6b:77:e1:5d:68:b6:51:2e:3d:4d:62:ee:53:56:f4:12:72:
23:ce:30:c8:e6:14:a3:c1:ca:d2:d4:b0:d2:e6:35:4f:c3:7e:
4d:ec:06:b8:bb:a2:55:33:10:23:68:86:c2:c8:66:0b:9b:f6:
96:13:56:f6:ed:2a:c0:01:44:fd:68:23:f3:56:2b:84:6d:c8:
af:90:cc:ba:d5:93:e0:67:83:3e:57:c2:36:10:5a:05:ed:05:
81:5b:1c:79:8a:6b:32:32:08:4d:f0:a8:fa:51:c9:55:ff:c8:
32:57:65:20:79:36:d9:95:8a:23:f9:67:cd:b5:a7:e2:a6:17:
bd:27:10:09:de:10:bb:6f:b8:22:b3:e4:be:19:07:05:e4:9d:
55:7b:13:3e:19:08:2e:06:9c:bd:88:a8:08:6c:f4:df:c6:64:
a2:e2:3b:0f:c7:61:a8:32:8b:75:42:96:26:18:94:34:10:27:
19:06:84:4d:33:dc:09:f0:c2:7c:6e:bf:ef:ce:4f:fc:c4:3b:
f9:d2:a8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:02 2024 by rpki-client on console-fra.rpki-client.org