Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/h7U6BUrxiDRnWfefX1UbuJjGgnA.roa
File: h7U6BUrxiDRnWfefX1UbuJjGgnA.roa (raw, json)
Hash identifier: ElgNgsa1bZtxmflWmuLYwh1vk15ytfU4MgVtDgp6Xr8=
Subject key identifier: 87:B5:3A:05:4A:F1:88:34:67:59:F7:9F:5F:55:1B:B8:98:C6:82:70
Certificate issuer: /CN=022d580f4a069358f8fa57ef065e18f5fe936980
Certificate serial: 01857127865DF163FD916BECFB5DFA9951F6
Authority key identifier: 02:2D:58:0F:4A:06:93:58:F8:FA:57:EF:06:5E:18:F5:FE:93:69:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/h7U6BUrxiDRnWfefX1UbuJjGgnA.roa
Signing time: Mon 02 Jan 2023 06:24:53 +0000
ROA not before: Mon 02 Jan 2023 06:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200372
IP address blocks: 2001:67c:b40::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:86:5d:f1:63:fd:91:6b:ec:fb:5d:fa:99:51:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=022d580f4a069358f8fa57ef065e18f5fe936980
Validity
Not Before: Jan 2 06:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87b53a054af188346759f79f5f551bb898c68270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bc:6b:43:cb:ba:82:92:25:b0:a5:00:c8:37:
e3:45:0c:65:1a:fb:99:3d:0e:73:ad:71:ed:6d:8f:
5f:2e:63:86:1d:3f:c6:f2:d0:bc:9b:a8:dc:d0:15:
8f:05:f6:e8:cb:e2:5d:7f:79:0a:e8:f1:38:50:04:
cb:e9:00:e6:b5:43:f7:f2:f5:a0:60:cd:af:a1:be:
46:3c:2e:9c:6c:55:96:63:46:d7:b6:83:94:3f:cd:
96:ec:13:7a:20:2c:1d:0c:d4:87:9a:1d:ee:7e:93:
51:ab:2d:20:94:cd:b1:51:e3:dc:0d:e8:59:6e:60:
52:69:d5:89:26:b5:af:a1:cc:bc:fe:9b:c4:7d:3c:
7b:45:ee:05:ea:11:79:bf:2a:22:cf:13:4d:95:51:
23:41:78:1b:5b:e3:a0:5b:7d:db:7f:ae:40:2a:cc:
26:bc:73:37:9c:89:07:56:eb:5c:a1:95:57:20:05:
a7:5f:0c:d0:cd:85:e9:76:54:f7:1d:cc:e6:f7:96:
b2:15:f3:da:5b:8f:83:c9:0e:c9:24:5a:12:4d:fb:
54:4a:75:85:a2:ba:65:8d:d5:55:11:6d:d3:bb:88:
dd:16:37:62:9e:fc:8c:09:3d:d5:db:b2:28:22:01:
c1:72:fd:bb:34:17:7f:e5:7d:ed:77:9a:24:a0:48:
22:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B5:3A:05:4A:F1:88:34:67:59:F7:9F:5F:55:1B:B8:98:C6:82:70
X509v3 Authority Key Identifier:
keyid:02:2D:58:0F:4A:06:93:58:F8:FA:57:EF:06:5E:18:F5:FE:93:69:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/h7U6BUrxiDRnWfefX1UbuJjGgnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b40::/48
Signature Algorithm: sha256WithRSAEncryption
2f:19:43:69:a8:28:57:33:92:a1:1f:57:a9:04:c8:25:bf:d6:
d8:6c:cd:66:e4:32:b0:59:cd:b4:d7:72:06:68:6b:93:f8:98:
16:72:97:e7:98:2e:ee:2c:d7:9d:65:62:ee:86:d6:ed:55:24:
bf:3d:67:69:27:eb:b8:10:70:1e:c5:b0:41:e5:92:4b:a7:ef:
36:93:12:be:66:c9:f3:e0:2d:a3:9f:23:4b:38:05:ae:46:03:
d9:61:6c:57:51:28:6b:32:77:7b:a2:fe:e4:d6:25:8d:1c:0e:
92:80:cc:25:06:2e:98:ee:3d:24:f9:c1:74:b5:25:3c:40:5f:
6d:33:25:3a:0d:9b:8f:d7:4d:eb:c4:5a:05:0e:f2:c1:28:70:
29:6b:53:33:46:47:b0:ae:35:4e:e4:97:7a:eb:d6:ce:35:7e:
e3:a8:51:94:f4:15:40:e8:95:e2:47:c9:ac:4c:69:92:69:8b:
01:ba:b5:61:19:d5:2b:fc:f8:11:aa:60:b2:bd:07:2c:5b:f2:
dc:b6:b6:a8:f2:d8:49:bf:56:46:2d:ef:e9:27:72:bd:1b:97:
c6:9d:39:07:d9:cc:79:13:92:62:dd:2d:1f:9f:15:b5:1b:aa:
0c:5e:c9:53:2a:4c:80:07:75:77:cd:86:de:ff:6d:e2:1c:94:
27:43:c3:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:29 2024 by rpki-client on console-fra.rpki-client.org