Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/82b10e-638f-4267-bc24-d494d997d398/1/lRJtSdYl6Dj2MMK_EQFQAIQl4RI.roa
File: lRJtSdYl6Dj2MMK_EQFQAIQl4RI.roa (raw, json)
Hash identifier: +DhLcg1+Xi2lrJeetshYj4mCqssvOQIWEKxj/mpEz+4=
Subject key identifier: 95:12:6D:49:D6:25:E8:38:F6:30:C2:BF:11:01:50:00:84:25:E1:12
Certificate issuer: /CN=1076c16278fc821e1eef932fdea9b3dd63ca6b21
Certificate serial: 019194626883C112D22E88EE1949EF473021
Authority key identifier: 10:76:C1:62:78:FC:82:1E:1E:EF:93:2F:DE:A9:B3:DD:63:CA:6B:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHbBYnj8gh4e75Mv3qmz3WPKayE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/82b10e-638f-4267-bc24-d494d997d398/1/lRJtSdYl6Dj2MMK_EQFQAIQl4RI.roa
Signing time: Tue 27 Aug 2024 15:09:22 +0000
ROA not before: Tue 27 Aug 2024 15:09:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215869
IP address blocks: 2001:67c:23bc::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:94:62:68:83:c1:12:d2:2e:88:ee:19:49:ef:47:30:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1076c16278fc821e1eef932fdea9b3dd63ca6b21
Validity
Not Before: Aug 27 15:09:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95126d49d625e838f630c2bf110150008425e112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ef:d1:9a:83:17:c2:9d:cd:0d:73:a9:4f:1a:
b4:43:9d:66:f8:9f:a6:36:34:f2:5a:6a:47:67:4b:
f0:96:37:29:67:bd:08:8a:66:4c:27:31:c9:15:6d:
74:d9:86:25:97:1b:41:2c:a1:1a:f6:7b:2c:80:8a:
b5:b2:eb:c8:ec:37:e3:9f:3f:4c:7d:f9:d2:76:c3:
a0:d6:a8:7b:60:30:a4:8f:84:af:ac:d4:a4:0a:0a:
9b:1b:a3:1e:77:b8:9b:7b:1a:c9:5c:de:c8:94:d9:
d9:8d:e8:45:31:70:a7:04:cd:22:47:1a:b4:a2:2f:
bd:86:6e:d7:cb:54:66:87:9f:0b:89:ff:04:c0:f4:
b4:a4:2e:ce:d4:8a:2b:16:62:bd:1c:05:a1:3f:57:
cb:6d:c8:68:29:dd:1e:69:cb:f4:02:ef:d2:68:92:
51:6d:73:36:75:46:5a:52:d3:43:b7:47:0a:73:07:
44:ba:98:7c:14:97:3d:7c:17:2c:db:6a:be:e4:34:
d7:d9:3d:40:63:48:a5:6d:da:df:36:d3:e1:79:13:
7f:a2:a1:ee:80:eb:a8:0a:65:9d:7b:36:6c:91:eb:
26:28:16:8e:0a:d7:d3:2f:b7:1d:df:a6:d8:77:78:
7e:d6:1f:fc:7d:63:64:cb:75:fd:4c:00:b8:70:50:
16:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:12:6D:49:D6:25:E8:38:F6:30:C2:BF:11:01:50:00:84:25:E1:12
X509v3 Authority Key Identifier:
keyid:10:76:C1:62:78:FC:82:1E:1E:EF:93:2F:DE:A9:B3:DD:63:CA:6B:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHbBYnj8gh4e75Mv3qmz3WPKayE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/82b10e-638f-4267-bc24-d494d997d398/1/lRJtSdYl6Dj2MMK_EQFQAIQl4RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/82b10e-638f-4267-bc24-d494d997d398/1/EHbBYnj8gh4e75Mv3qmz3WPKayE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:23bc::/48
Signature Algorithm: sha256WithRSAEncryption
83:69:1f:84:2b:8b:6f:b9:f0:a1:9a:e1:6c:84:ed:ba:02:e0:
0e:1d:57:ec:5b:b4:3e:65:ff:c0:00:7e:1b:68:53:91:cf:e4:
f7:e0:18:0b:3f:a4:20:6a:fc:05:99:5e:f3:7e:90:ca:7b:60:
f0:fa:df:8c:fd:b2:b0:db:75:7c:7e:64:de:85:c9:28:42:06:
be:3a:ca:ce:51:18:76:39:76:f8:b2:11:33:eb:14:e9:5e:7c:
22:9c:ee:db:51:bb:52:2d:38:43:19:b7:79:eb:e3:d1:44:1f:
91:42:c6:a5:5e:04:37:82:5f:52:3c:69:07:a2:ba:69:34:1b:
ef:19:4d:f3:0f:b9:f3:d5:a6:fe:67:7b:c4:a9:83:ee:4d:13:
07:9e:78:5a:f9:71:9c:76:1e:e0:a9:a3:d0:7b:e8:cf:8d:62:
32:fa:d3:2d:74:ff:ed:fb:37:1c:b2:da:54:6b:ea:e2:3b:b4:
6f:96:42:68:ed:f9:88:65:ac:f6:3c:10:d4:b7:cf:cc:88:af:
e5:21:54:8a:d5:f4:a6:7e:73:e0:72:49:e1:2c:2d:33:89:c8:
dc:86:8f:68:13:61:21:13:4d:ef:24:3c:5f:fd:91:3c:49:a2:
60:9a:b7:42:5a:63:c2:a3:79:bb:88:aa:be:5e:e9:63:82:d6:
5b:6b:95:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:51 2025 by rpki-client