Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/Bjjh8ljiKN-xUru1mHcl6trzenQ.roa
File: Bjjh8ljiKN-xUru1mHcl6trzenQ.roa (raw, json)
Hash identifier: 2Ht7E5w5R4DEt5kEv28uLaQxqmcjvRxQx+inVlx+KpQ=
Subject key identifier: 06:38:E1:F2:58:E2:28:DF:B1:52:BB:B5:98:77:25:EA:DA:F3:7A:74
Certificate issuer: /CN=12e64042b6e7288a485db270c551329b802fd8c4
Certificate serial: 01856C25D6430FCAFE9729E72C86A3A42579
Authority key identifier: 12:E6:40:42:B6:E7:28:8A:48:5D:B2:70:C5:51:32:9B:80:2F:D8:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EuZAQrbnKIpIXbJwxVEym4Av2MQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/Bjjh8ljiKN-xUru1mHcl6trzenQ.roa
Signing time: Sun 01 Jan 2023 07:04:56 +0000
ROA not before: Sun 01 Jan 2023 07:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24868
IP address blocks: 2001:678:4d4::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:d6:43:0f:ca:fe:97:29:e7:2c:86:a3:a4:25:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12e64042b6e7288a485db270c551329b802fd8c4
Validity
Not Before: Jan 1 07:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0638e1f258e228dfb152bbb5987725eadaf37a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1b:7a:16:45:66:55:dd:ef:b8:55:99:dd:25:
81:ae:d3:cf:51:f9:79:ca:c3:bd:ce:25:9e:58:ab:
bd:2e:40:b9:f4:d6:94:3f:b1:f2:c6:3b:b8:b7:92:
04:3c:db:c4:e0:f7:43:6b:df:f4:60:52:49:a7:db:
03:8b:1f:5a:d5:07:d9:ac:eb:0c:e3:63:3b:01:02:
37:2c:91:e6:31:72:c6:02:98:2f:5e:d7:21:6b:5f:
22:a4:39:1e:70:00:bb:18:0d:07:c0:47:70:01:5e:
69:de:d6:cf:bd:81:ec:2a:51:95:9f:1c:d3:f4:ff:
be:f9:6a:28:df:d4:1b:af:bc:6f:87:5b:30:8c:55:
7a:f2:19:79:a2:94:91:36:99:cc:bf:5a:c7:fe:31:
79:0d:e6:d6:f8:99:8c:53:28:01:e5:34:d2:64:89:
b6:c1:00:6a:ab:8c:c3:c1:69:4f:e4:99:ea:04:93:
b9:55:db:a4:18:52:44:86:73:36:8a:7d:bd:0c:40:
17:a0:4f:85:73:c4:c2:37:69:c3:e2:84:0e:f1:b9:
d1:43:be:2b:7e:59:6b:83:63:0e:0e:21:13:4e:91:
c3:52:4b:21:09:48:18:a1:ea:46:37:b2:84:70:5d:
82:c5:4a:65:51:b8:ac:c3:54:b3:cc:25:67:29:ab:
36:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:38:E1:F2:58:E2:28:DF:B1:52:BB:B5:98:77:25:EA:DA:F3:7A:74
X509v3 Authority Key Identifier:
keyid:12:E6:40:42:B6:E7:28:8A:48:5D:B2:70:C5:51:32:9B:80:2F:D8:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EuZAQrbnKIpIXbJwxVEym4Av2MQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/Bjjh8ljiKN-xUru1mHcl6trzenQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/EuZAQrbnKIpIXbJwxVEym4Av2MQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:4d4::/48
Signature Algorithm: sha256WithRSAEncryption
1a:44:e9:79:ca:af:38:62:00:e0:20:95:ef:4f:66:08:d8:d0:
70:04:b9:5b:14:33:72:79:06:a5:51:6a:f1:29:fb:ea:54:cd:
68:ec:85:5c:2d:d6:e8:04:8f:38:36:d8:34:57:ea:a2:74:b6:
3f:ba:38:2e:fb:ff:96:df:96:d7:f5:01:d8:87:2b:d2:bd:a3:
a7:c5:65:9d:6e:8a:c9:a1:ce:57:11:aa:18:2b:c1:fe:60:8c:
5a:63:c7:ba:61:19:e9:f2:4b:a0:af:97:95:80:a4:d7:f8:73:
ac:42:15:9d:26:d4:38:1e:50:ca:b0:c7:cd:8b:82:fc:65:9b:
88:51:07:59:f2:1f:cc:00:e0:c9:92:ff:72:d9:14:15:4b:b5:
7e:3c:b6:55:86:30:9e:3f:97:88:a3:e1:a9:7d:a1:f8:6d:26:
3c:ea:b0:7b:56:50:75:60:1d:b5:71:23:87:bc:3c:54:4b:69:
ea:fa:c7:32:5e:07:51:f9:03:d1:33:7b:25:ba:44:6f:ab:b3:
15:75:42:89:62:69:81:e6:f4:53:30:a8:6a:dd:ef:31:39:b1:
8f:e2:96:b6:af:11:d6:ae:c4:14:31:41:3a:1a:eb:1a:ca:d3:
f9:b9:0d:8b:17:c5:2a:ce:68:32:ba:b5:7a:12:a8:52:f6:54:
10:0f:1a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:49 2024 by rpki-client on console-fra.rpki-client.org