Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bcb3fd-a96e-4c00-aa11-5db63bab9460/1/AXjYf8KT76BNL2o1oYMzv9ifisk.roa
File: AXjYf8KT76BNL2o1oYMzv9ifisk.roa (raw, json)
Hash identifier: T4Qx+LstyiDT3gMK+/Ks17TZsSVL4sZXDzMc3PiiGuU=
Subject key identifier: 01:78:D8:7F:C2:93:EF:A0:4D:2F:6A:35:A1:83:33:BF:D8:9F:8A:C9
Certificate issuer: /CN=64d84b5f19b62048b22a6103d09f84d8153c7556
Certificate serial: 018AEA31DAADCFC5E990B9E542807C902026
Authority key identifier: 64:D8:4B:5F:19:B6:20:48:B2:2A:61:03:D0:9F:84:D8:15:3C:75:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNhLXxm2IEiyKmED0J-E2BU8dVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bcb3fd-a96e-4c00-aa11-5db63bab9460/1/AXjYf8KT76BNL2o1oYMzv9ifisk.roa
Signing time: Sun 01 Oct 2023 07:44:10 +0000
ROA not before: Sun 01 Oct 2023 07:44:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216233
IP address blocks: 2001:67c:d3c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ea:31:da:ad:cf:c5:e9:90:b9:e5:42:80:7c:90:20:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64d84b5f19b62048b22a6103d09f84d8153c7556
Validity
Not Before: Oct 1 07:44:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0178d87fc293efa04d2f6a35a18333bfd89f8ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:24:a8:12:70:9e:84:93:b8:98:25:fb:19:88:
1c:c2:00:97:4d:80:95:28:8e:05:61:c4:a1:7e:a1:
f4:c6:3d:5f:e6:18:58:04:bb:ba:cc:9f:6e:a1:33:
db:a3:11:7e:ad:fd:9c:9c:4c:61:ac:10:03:d8:6e:
9d:de:d0:f9:a7:61:d2:ca:5d:bf:35:56:fd:52:89:
95:b9:e0:8e:80:ae:72:04:1d:ed:88:87:4e:14:8a:
91:eb:31:a3:56:27:d5:80:b6:46:4c:5c:84:63:37:
a7:62:2f:1d:c8:f8:e6:8b:32:e8:c0:dc:70:ea:80:
3e:1a:38:1e:c2:bb:b4:63:9e:7a:20:2b:cd:a8:3d:
a4:82:7b:39:e9:49:c2:cf:c7:15:5b:f5:a1:91:7d:
4b:46:c5:00:91:92:26:47:96:8e:78:4f:ef:a1:70:
ab:c0:a9:4a:9b:f0:6c:20:44:27:80:2c:b2:55:8c:
35:d3:95:26:b9:23:6c:82:33:c8:97:fb:d9:b9:02:
0a:5b:1d:b5:83:66:87:0b:25:b8:bc:2f:bd:d5:ce:
92:a1:48:10:1d:99:ad:4e:ca:56:e2:46:35:b0:d2:
9f:66:51:1e:a2:40:fa:d8:64:79:35:d0:b0:b6:4e:
76:56:eb:53:cc:1b:d9:01:83:2c:01:af:96:95:1d:
e2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:78:D8:7F:C2:93:EF:A0:4D:2F:6A:35:A1:83:33:BF:D8:9F:8A:C9
X509v3 Authority Key Identifier:
keyid:64:D8:4B:5F:19:B6:20:48:B2:2A:61:03:D0:9F:84:D8:15:3C:75:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNhLXxm2IEiyKmED0J-E2BU8dVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bcb3fd-a96e-4c00-aa11-5db63bab9460/1/AXjYf8KT76BNL2o1oYMzv9ifisk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bcb3fd-a96e-4c00-aa11-5db63bab9460/1/ZNhLXxm2IEiyKmED0J-E2BU8dVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:d3c::/48
Signature Algorithm: sha256WithRSAEncryption
44:5f:25:0e:61:3c:7a:76:0e:77:34:d1:ad:c7:ea:40:91:73:
64:e9:3a:4b:4b:5c:6b:20:e3:6c:af:ad:6d:c0:e1:ba:da:38:
bd:be:eb:86:99:e8:e4:5c:86:23:95:1c:7d:d2:56:fb:a9:dc:
87:c8:b7:a0:ae:e6:21:30:34:71:17:91:82:58:ff:08:d8:51:
6b:d1:0d:d4:51:4f:d5:12:23:45:45:41:1d:3a:8d:98:37:9d:
e6:a9:e8:8e:75:26:89:c9:6e:07:ea:44:5a:eb:da:2a:8b:1c:
2f:24:fc:48:18:3f:f4:9f:0d:f0:26:9a:ba:fc:62:8f:db:d5:
db:e0:ee:61:0f:ca:69:4a:04:1a:45:db:bb:8b:0b:79:b1:8c:
ed:95:53:46:86:0c:95:43:8a:1b:11:82:a9:4a:36:51:fc:ac:
7b:a6:f4:f8:d2:12:fd:9d:b0:d4:11:3d:77:36:22:5b:99:fb:
54:70:b3:32:b9:b0:da:9d:67:df:73:92:bc:5b:be:f6:85:55:
8c:22:36:15:7a:64:44:89:45:6d:ed:6d:39:5f:fb:1c:e2:b6:
51:6b:01:58:7c:98:65:ad:3b:02:66:a2:3b:e2:bd:c4:8b:77:
5e:06:e7:04:fa:8c:c4:11:ab:67:5c:a5:e9:e1:de:99:95:29:
a9:dd:e0:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:58 2024 by rpki-client on console-ams.rpki-client.org