Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/mPwcqe3eKFlJtMefj6VeyXosfd0.roa
File: mPwcqe3eKFlJtMefj6VeyXosfd0.roa (raw, json)
Hash identifier: ZIV2FX72gGuI/SuQXOF0DTde+luxBiWOgx6CBc66JPM=
Subject key identifier: 98:FC:1C:A9:ED:DE:28:59:49:B4:C7:9F:8F:A5:5E:C9:7A:2C:7D:DD
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 018A64729EA19E049F4FA95FD7E4871ACBBA
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/mPwcqe3eKFlJtMefj6VeyXosfd0.roa
Signing time: Tue 05 Sep 2023 08:25:47 +0000
ROA not before: Tue 05 Sep 2023 08:25:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197860
IP address blocks: 2a0f:7803:fed0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:72:9e:a1:9e:04:9f:4f:a9:5f:d7:e4:87:1a:cb:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Sep 5 08:25:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98fc1ca9edde285949b4c79f8fa55ec97a2c7ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:40:25:26:6d:d3:87:de:4a:34:c1:64:22:4e:
4f:42:78:d0:11:64:73:1d:da:36:40:07:09:45:84:
72:92:92:4e:f6:bf:2e:ba:6a:cf:f6:cd:50:37:40:
be:a0:65:df:10:f2:06:0b:a0:dc:77:59:98:90:66:
a6:83:7d:d8:bf:51:0c:41:5d:29:f0:8b:de:1c:11:
d0:9a:e0:3d:e9:0b:b0:f4:91:45:2d:6c:cd:21:90:
5e:f6:33:06:b5:01:cd:b5:23:06:82:35:30:56:3a:
65:96:3c:48:a2:51:62:4b:a8:27:20:33:76:ba:3f:
8f:d3:f2:34:97:9b:66:71:c8:ba:47:d8:e0:f5:3a:
fa:41:cc:ed:fa:83:a5:6c:53:fa:04:e3:a7:b9:ec:
14:45:0e:b3:dd:0f:ea:cc:e2:5b:cb:df:77:8b:6a:
b0:74:81:7e:f9:67:37:37:67:36:d6:2e:8a:57:41:
22:dc:52:3e:bb:e6:a1:4d:f2:0d:89:47:42:79:9d:
76:52:d1:a7:f7:2e:32:09:ba:7d:06:9b:0e:71:44:
b4:4b:5a:5c:a8:86:5f:3e:45:90:26:2d:78:92:1a:
ed:8f:96:35:a4:e2:51:b5:7e:09:af:eb:76:fd:b8:
25:87:9f:53:5c:c5:ad:10:84:5f:1c:49:63:0d:15:
ef:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:FC:1C:A9:ED:DE:28:59:49:B4:C7:9F:8F:A5:5E:C9:7A:2C:7D:DD
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/mPwcqe3eKFlJtMefj6VeyXosfd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7803:fed0::/44
Signature Algorithm: sha256WithRSAEncryption
58:b8:6e:94:b0:f6:2d:5a:3a:8e:3e:9a:17:73:3c:cc:c1:83:
e4:60:5d:69:0c:df:44:f9:e3:f1:9b:19:f7:fc:7c:4c:f2:71:
e5:e8:95:a9:bd:4b:28:7e:73:bd:6b:82:78:7e:96:23:11:00:
c1:2b:bf:c0:ad:df:ce:68:69:0f:66:58:b7:c6:43:6d:67:a5:
89:0a:1c:3a:2b:53:d8:2a:68:63:e9:93:1b:28:68:0d:48:3e:
bb:03:e5:ad:44:6c:d9:55:af:b7:a7:29:40:e5:c4:10:be:da:
f1:21:ae:2f:fe:92:66:3d:78:33:6b:d9:94:be:14:5a:99:c7:
c7:f3:eb:28:de:14:95:53:e0:37:dc:20:b9:8f:3d:7a:90:68:
93:31:95:8e:51:e7:f5:5d:84:1c:f7:01:4e:13:40:c6:0c:ad:
5e:d4:bb:da:b7:4a:8c:0d:2f:c6:ad:ff:91:c9:5c:58:f6:60:
81:c8:5c:66:35:20:12:0c:f5:67:c7:4d:b3:94:a6:8d:09:00:
b0:02:9e:56:33:15:77:8e:9b:f8:83:c5:d0:f0:c9:d7:22:73:
2e:4b:74:98:f1:ec:9d:ac:2d:40:cf:b8:9a:95:29:de:7c:66:
ef:c1:1c:1c:e3:9a:07:a3:fe:eb:0a:42:64:7d:d6:38:9e:ab:
65:e7:92:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:32 2024 by rpki-client on console-ams.rpki-client.org