Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/c03eae-39ae-4002-b66e-04ac0a5e8143/1/hzyUX7dZinBhth9iZNw_6QKYBAE.roa
File: hzyUX7dZinBhth9iZNw_6QKYBAE.roa (raw, json)
Hash identifier: i786AKUIGwlf+z8NhBuOZth5vnOOp9oCQGZa0iw4T+A=
Subject key identifier: 87:3C:94:5F:B7:59:8A:70:61:B6:1F:62:64:DC:3F:E9:02:98:04:01
Certificate issuer: /CN=1719d0bc044cdaa2341809d000f0fc4e1dedb345
Certificate serial: 01856C411D68F8411F1CA309ACCA9761171A
Authority key identifier: 17:19:D0:BC:04:4C:DA:A2:34:18:09:D0:00:F0:FC:4E:1D:ED:B3:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FxnQvARM2qI0GAnQAPD8Th3ts0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/c03eae-39ae-4002-b66e-04ac0a5e8143/1/hzyUX7dZinBhth9iZNw_6QKYBAE.roa
Signing time: Sun 01 Jan 2023 07:34:44 +0000
ROA not before: Sun 01 Jan 2023 07:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208562
IP address blocks: 2001:678:ad8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:1d:68:f8:41:1f:1c:a3:09:ac:ca:97:61:17:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1719d0bc044cdaa2341809d000f0fc4e1dedb345
Validity
Not Before: Jan 1 07:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=873c945fb7598a7061b61f6264dc3fe902980401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5b:7a:9d:d5:69:4a:0f:c6:f1:05:75:7d:d0:
bf:57:e0:79:eb:1c:ba:80:17:88:92:bc:98:2d:b9:
0b:1b:db:d7:b5:06:5d:7b:54:da:54:7a:cc:c0:e8:
9e:b9:78:ac:2a:8c:4c:14:d0:c5:31:7d:88:2d:44:
4a:34:e8:17:07:2e:03:f9:7e:28:29:d5:b4:58:04:
dc:26:4d:2e:97:fd:0a:0b:3b:87:b3:c0:22:bd:93:
26:9f:78:30:0c:e6:e4:77:c1:00:55:64:6c:fa:c4:
74:3b:1f:fa:72:1b:40:e7:83:1a:ab:22:e2:35:63:
87:57:a3:6d:83:a8:88:c7:02:9d:16:3d:af:8e:3f:
bf:f7:f3:31:55:b7:2c:33:e1:43:6b:a4:4c:02:ba:
2f:e0:f8:a1:74:2e:c6:0e:b1:0a:62:0f:f1:66:0a:
8a:58:d2:e2:a3:5e:0f:64:e0:d1:3a:69:85:f7:8b:
39:b8:ae:86:68:e8:46:2a:ad:2e:d4:28:04:bc:62:
c7:51:70:a8:d7:bb:80:60:c8:47:fb:52:65:eb:66:
ed:51:21:b8:a3:5a:3c:07:c9:3d:f2:5d:74:c3:e4:
37:b1:ba:33:75:b7:2d:02:29:af:da:85:09:ad:87:
a0:a2:7d:ec:cf:34:95:37:b7:5f:7a:89:5c:24:b7:
26:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3C:94:5F:B7:59:8A:70:61:B6:1F:62:64:DC:3F:E9:02:98:04:01
X509v3 Authority Key Identifier:
keyid:17:19:D0:BC:04:4C:DA:A2:34:18:09:D0:00:F0:FC:4E:1D:ED:B3:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FxnQvARM2qI0GAnQAPD8Th3ts0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c03eae-39ae-4002-b66e-04ac0a5e8143/1/hzyUX7dZinBhth9iZNw_6QKYBAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c03eae-39ae-4002-b66e-04ac0a5e8143/1/FxnQvARM2qI0GAnQAPD8Th3ts0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ad8::/48
Signature Algorithm: sha256WithRSAEncryption
18:e5:cf:67:bc:76:c5:ef:12:1f:a8:17:bb:21:4e:b2:ce:fd:
17:83:62:93:70:7b:18:9e:5a:59:02:0b:89:6d:18:e4:5f:10:
46:19:e0:61:e3:93:35:03:1d:aa:6d:18:7b:db:06:d1:12:5d:
fa:da:15:ee:c9:bb:2f:a0:e2:58:d7:00:2e:55:af:ad:9a:f0:
c9:ee:da:64:fa:73:fc:76:e9:ab:9d:1a:2b:55:d9:75:92:1f:
cb:d9:1f:af:e2:bd:43:4f:c7:a7:ba:20:27:a9:df:cd:fd:19:
40:de:b8:3c:4a:2e:93:dd:9b:4b:c3:5b:5d:75:f0:88:b3:1c:
a9:e1:2c:ec:7a:7c:7c:49:00:ab:71:90:ec:c6:ab:b4:d4:59:
86:cf:d4:d4:3c:2c:db:c6:48:58:73:29:be:91:b4:3e:d9:8c:
39:07:77:69:8f:ff:29:70:a1:99:7b:40:96:fd:29:45:c2:fc:
f6:c0:2d:3a:6a:c3:30:7d:93:5d:ef:29:da:3d:86:e6:68:7e:
64:ff:f5:fe:85:35:fb:ee:52:7b:de:98:04:55:d0:e4:cc:ca:
cb:40:60:f1:b3:75:08:42:78:c4:90:66:00:a9:c9:a5:62:53:
7e:58:4c:aa:2a:90:51:d3:62:ca:25:e1:97:d1:54:ef:11:25:
de:ca:93:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:13 2024 by rpki-client on console-ams.rpki-client.org