Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/8f50aa-5456-4159-8840-b01d8f295c19/1/75aXHI3mFug8HmuIHV8mheGPVvk.roa
File: 75aXHI3mFug8HmuIHV8mheGPVvk.roa (raw, json)
Hash identifier: wYdXzp/ybjXvFU0B2pyM/mOn61KrLPIIsC+6yRSsOwk=
Subject key identifier: EF:96:97:1C:8D:E6:16:E8:3C:1E:6B:88:1D:5F:26:85:E1:8F:56:F9
Certificate issuer: /CN=67aba9afa37d9bce407fe23c7919892d9d9c0939
Certificate serial: 018CC79339F2B3E2BFDA1B28B4F0EBC5E6F3
Authority key identifier: 67:AB:A9:AF:A3:7D:9B:CE:40:7F:E2:3C:79:19:89:2D:9D:9C:09:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z6upr6N9m85Af-I8eRmJLZ2cCTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/8f50aa-5456-4159-8840-b01d8f295c19/1/75aXHI3mFug8HmuIHV8mheGPVvk.roa
Signing time: Tue 02 Jan 2024 00:29:23 +0000
ROA not before: Tue 02 Jan 2024 00:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2001:67c:a0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Apr 2024 07:11:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:39:f2:b3:e2:bf:da:1b:28:b4:f0:eb:c5:e6:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67aba9afa37d9bce407fe23c7919892d9d9c0939
Validity
Not Before: Jan 2 00:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef96971c8de616e83c1e6b881d5f2685e18f56f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3d:2c:9b:82:99:6f:af:39:a8:6f:5d:44:5b:
8f:31:c0:6e:35:cc:1a:c7:08:1f:61:5a:b6:a5:c7:
a9:4e:79:60:ea:2c:cd:67:1b:b4:23:9c:41:cd:80:
1c:e7:bc:21:cc:03:bf:4d:27:0b:3b:49:30:b8:d7:
63:d5:88:ed:c3:a2:1f:7b:a9:b7:a5:0d:0a:db:45:
6d:60:c7:d0:a1:1e:c6:4a:09:95:b8:30:64:ff:27:
62:9f:7a:6a:ae:30:46:84:be:78:67:1c:f9:3b:77:
f9:b5:17:3b:56:6b:91:d7:8b:6e:b2:e2:b1:77:9e:
6c:fa:f1:a2:6b:8c:b4:49:cf:2b:8a:ec:0d:3c:db:
17:3d:de:7b:d3:42:d3:da:4c:d1:b5:3c:2e:7e:e2:
48:80:23:11:71:24:72:c6:6a:47:cd:2a:6e:4f:63:
f6:d1:62:9b:10:65:d2:3c:e6:f1:05:16:d3:a0:d5:
38:25:7b:06:ca:42:7d:9e:c1:98:dd:50:32:d2:e5:
35:ed:e3:91:ad:db:c3:49:13:d1:36:f6:2c:13:2d:
9d:2e:68:d4:f9:d9:9f:c1:41:e7:7c:a7:22:b3:05:
d4:5e:84:15:d3:92:34:53:90:98:d6:0b:3b:d1:f0:
01:d5:15:fd:a7:ab:f4:43:a0:9f:e3:68:f2:16:9c:
0a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:96:97:1C:8D:E6:16:E8:3C:1E:6B:88:1D:5F:26:85:E1:8F:56:F9
X509v3 Authority Key Identifier:
keyid:67:AB:A9:AF:A3:7D:9B:CE:40:7F:E2:3C:79:19:89:2D:9D:9C:09:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z6upr6N9m85Af-I8eRmJLZ2cCTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/8f50aa-5456-4159-8840-b01d8f295c19/1/75aXHI3mFug8HmuIHV8mheGPVvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/8f50aa-5456-4159-8840-b01d8f295c19/1/Z6upr6N9m85Af-I8eRmJLZ2cCTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a0::/48
Signature Algorithm: sha256WithRSAEncryption
36:81:b1:55:6a:be:ad:65:a3:14:08:1a:31:a8:f3:0d:4f:e4:
58:06:b8:2e:03:99:65:55:05:91:0f:b2:09:3b:6c:d7:86:de:
6f:e3:47:eb:16:f4:d9:b9:3e:1d:e8:27:83:a3:24:33:48:28:
e3:e1:f8:f9:69:15:2e:77:ca:3a:cf:dc:a5:f2:13:0d:4b:04:
68:ad:09:b9:15:2a:af:74:3e:9d:df:2c:cc:60:25:01:a0:e8:
ee:5f:1f:d8:40:1a:7f:bc:ff:93:54:7d:02:f3:68:b0:ea:e4:
67:8f:83:f8:37:92:54:cb:c8:9c:a8:af:9b:d7:5c:90:54:d4:
3e:10:3f:69:8f:25:f6:6e:16:2c:a7:25:dd:34:6f:7f:4d:2b:
97:71:57:a2:c2:58:19:0e:76:ec:26:fe:c7:3c:f5:f5:3c:26:
7e:f3:ea:41:ae:55:c1:aa:fb:f5:89:dd:2f:7d:e4:7d:ec:8e:
08:75:5c:60:ca:8b:89:01:75:71:2c:36:7f:b0:bd:88:29:76:
c6:46:db:13:45:15:65:c1:4b:b2:5d:1e:ac:90:25:97:10:f9:
50:f1:dc:60:44:ba:3e:99:93:6f:d4:12:79:b2:af:28:6c:f4:
4e:2d:3c:83:3c:af:c6:2c:5a:97:f1:7a:02:7e:a3:ea:27:a1:
94:cd:2b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:27 2024 by rpki-client on console-ams.rpki-client.org