Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b737f6-304b-4c4f-b887-71108258f1b9/1/iwB9n8JSkn4D7z65ELzn86bAXQ8.roa
File: iwB9n8JSkn4D7z65ELzn86bAXQ8.roa (raw, json)
Hash identifier: fMMbempb5Ak0678tRZkb8wFTSSZYFgeNviw5RNIsCm8=
Subject key identifier: 8B:00:7D:9F:C2:52:92:7E:03:EF:3E:B9:10:BC:E7:F3:A6:C0:5D:0F
Certificate issuer: /CN=4d3f54f304e6b851608c293978b16ba51ac0350e
Certificate serial: 0185704BD92E584B9FD9E1DBE904151B47FD
Authority key identifier: 4D:3F:54:F3:04:E6:B8:51:60:8C:29:39:78:B1:6B:A5:1A:C0:35:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TT9U8wTmuFFgjCk5eLFrpRrANQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b737f6-304b-4c4f-b887-71108258f1b9/1/iwB9n8JSkn4D7z65ELzn86bAXQ8.roa
Signing time: Mon 02 Jan 2023 02:24:56 +0000
ROA not before: Mon 02 Jan 2023 02:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2119
IP address blocks: 2001:67c:2f50::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:d9:2e:58:4b:9f:d9:e1:db:e9:04:15:1b:47:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3f54f304e6b851608c293978b16ba51ac0350e
Validity
Not Before: Jan 2 02:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b007d9fc252927e03ef3eb910bce7f3a6c05d0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:55:f5:f0:c8:09:9e:d6:cc:4f:69:eb:56:a3:
ec:78:52:a4:02:90:78:e5:f7:18:02:33:17:9b:be:
44:8f:d8:9b:ef:92:eb:f7:09:f2:44:b4:7b:5e:fe:
3e:d3:1a:97:3f:c7:47:43:6b:1e:dc:9f:e5:d5:93:
c1:06:7d:27:a4:b1:00:2e:84:2b:f2:3d:b0:e4:6e:
2e:7c:11:26:ec:f5:dc:95:eb:a1:b5:40:1d:dd:f7:
52:92:1a:a6:da:60:ca:bd:5c:ff:53:11:0e:78:2b:
e5:b2:8a:8e:1b:3b:4f:41:08:55:13:63:fd:36:e2:
7d:0e:82:f6:04:d1:6a:e6:62:12:cf:01:26:cb:2d:
5a:21:ff:56:f3:94:35:ce:b3:85:bc:67:2f:df:8d:
be:28:ca:c9:60:b5:93:f1:81:29:e5:bb:8e:a4:52:
36:1b:27:58:08:ac:76:70:b4:a2:5c:98:9d:b4:39:
de:ca:ee:f4:4c:81:f2:8b:35:31:1c:f0:77:90:b0:
02:b7:3c:8b:7c:fe:a9:f2:a6:98:df:24:d7:4c:1d:
ae:fd:62:a4:e5:60:21:b3:ef:bd:af:ec:94:c8:35:
9e:2f:a0:38:3d:58:dd:1e:7a:d5:db:c9:19:46:9a:
ae:a8:d2:d8:61:96:d5:8a:9a:ad:29:e9:94:51:d7:
1d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:00:7D:9F:C2:52:92:7E:03:EF:3E:B9:10:BC:E7:F3:A6:C0:5D:0F
X509v3 Authority Key Identifier:
keyid:4D:3F:54:F3:04:E6:B8:51:60:8C:29:39:78:B1:6B:A5:1A:C0:35:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TT9U8wTmuFFgjCk5eLFrpRrANQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b737f6-304b-4c4f-b887-71108258f1b9/1/iwB9n8JSkn4D7z65ELzn86bAXQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b737f6-304b-4c4f-b887-71108258f1b9/1/TT9U8wTmuFFgjCk5eLFrpRrANQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2f50::/48
Signature Algorithm: sha256WithRSAEncryption
15:47:d1:90:68:63:fc:fc:74:2a:3c:75:5d:12:90:46:74:90:
02:5b:9f:f1:4f:d7:7e:d3:fe:6e:d8:84:0d:e7:0a:cf:9e:9a:
1e:ea:5f:f8:c7:eb:8b:93:93:ce:97:53:7d:2e:ed:65:20:70:
26:87:86:9b:d4:62:9d:8f:e6:65:c6:05:44:9a:0b:e0:7c:3b:
6b:56:d0:f4:4d:9f:33:18:bf:fb:ea:29:81:d4:0f:51:a3:10:
0c:7f:3e:b1:92:e7:61:e5:b2:09:2e:20:35:98:62:37:72:ef:
a6:71:0e:65:4a:f4:ed:00:90:87:23:c7:31:b6:81:e4:f0:5d:
ad:f1:19:ba:51:73:f0:df:57:aa:a5:8e:31:0b:ae:68:88:14:
53:f9:e2:96:70:07:5c:97:2c:23:0a:76:a8:8b:60:16:34:0c:
35:3a:64:1b:19:41:5f:32:ce:fb:37:1f:cc:90:53:85:75:31:
c7:a1:c9:21:b0:71:98:a1:da:24:96:71:a5:2a:8a:d8:d9:44:
aa:45:73:7a:1b:9d:03:0f:43:8b:80:38:e9:ea:58:88:4c:7c:
52:68:0f:6e:48:80:07:a4:a4:cf:d5:3c:a8:b6:a9:17:97:0d:
c6:0c:2f:02:75:4b:30:c4:41:bb:9e:90:16:4b:ef:0f:ae:07:
31:3c:42:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:58 2024 by rpki-client on console-fra.rpki-client.org