Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f99db4-987e-43b1-a0ca-20f27e870d01/1/8tgXyv1CW-k5jyTzm8YXk0VEAmQ.roa
File: 8tgXyv1CW-k5jyTzm8YXk0VEAmQ.roa (raw, json)
Hash identifier: PZK8TMByBUWjGafzDzYxZ6/m3MjLmWZ+Sp4w7C/IRFo=
Subject key identifier: F2:D8:17:CA:FD:42:5B:E9:39:8F:24:F3:9B:C6:17:93:45:44:02:64
Certificate issuer: /CN=c3743c89df34ec770a65973f1005146bfb32b0f2
Certificate serial: 01856D6F48E76CB7965571378E507773CCB4
Authority key identifier: C3:74:3C:89:DF:34:EC:77:0A:65:97:3F:10:05:14:6B:FB:32:B0:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3Q8id807HcKZZc_EAUUa_sysPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f99db4-987e-43b1-a0ca-20f27e870d01/1/8tgXyv1CW-k5jyTzm8YXk0VEAmQ.roa
Signing time: Sun 01 Jan 2023 13:04:47 +0000
ROA not before: Sun 01 Jan 2023 13:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197942
IP address blocks: 2001:67c:1904::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:48:e7:6c:b7:96:55:71:37:8e:50:77:73:cc:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3743c89df34ec770a65973f1005146bfb32b0f2
Validity
Not Before: Jan 1 13:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2d817cafd425be9398f24f39bc6179345440264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b7:33:1e:82:d3:16:ed:f1:16:06:48:2c:16:
44:37:d1:2c:41:a0:34:25:4f:95:0a:9a:d7:96:c0:
71:40:2a:36:cc:03:80:4b:d7:4c:4f:b9:0a:cf:c0:
07:9c:11:8b:f1:e1:b7:91:ab:61:63:04:36:2f:7c:
4f:e3:6d:d3:b6:b4:56:92:e5:6e:2b:a8:47:dc:93:
73:de:4d:da:18:4f:1e:84:4a:cf:ee:2d:7c:55:3d:
91:8f:9c:76:9b:33:1a:df:02:9c:d5:85:49:9d:7f:
f7:63:98:b6:de:50:2f:da:9c:2a:dc:cd:52:ff:39:
df:28:38:ff:38:96:fe:4e:e7:71:32:11:5e:99:30:
35:4f:4f:3f:fa:45:5a:13:5a:82:a7:41:4d:37:09:
48:7b:b1:20:df:5c:9d:24:c6:17:4e:5e:73:0a:81:
f5:6a:cc:9b:af:60:0f:2d:cf:e4:2f:fa:4f:e2:b8:
c3:31:f0:28:f0:59:85:2a:21:d8:95:5c:ad:87:6c:
2a:76:57:52:09:84:04:95:0e:3d:99:97:c4:1a:2f:
c9:4a:69:9f:8b:fb:34:6d:74:48:b0:5a:fd:1e:db:
2f:c9:c5:f8:87:e5:90:91:3f:d6:04:d7:4f:69:88:
a3:c9:9d:7e:b3:0e:ac:b3:d5:5f:9a:ad:7e:e9:3c:
28:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D8:17:CA:FD:42:5B:E9:39:8F:24:F3:9B:C6:17:93:45:44:02:64
X509v3 Authority Key Identifier:
keyid:C3:74:3C:89:DF:34:EC:77:0A:65:97:3F:10:05:14:6B:FB:32:B0:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3Q8id807HcKZZc_EAUUa_sysPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f99db4-987e-43b1-a0ca-20f27e870d01/1/8tgXyv1CW-k5jyTzm8YXk0VEAmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f99db4-987e-43b1-a0ca-20f27e870d01/1/w3Q8id807HcKZZc_EAUUa_sysPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1904::/48
Signature Algorithm: sha256WithRSAEncryption
1e:7b:cd:29:36:64:b7:a3:a3:f1:ba:05:82:ff:38:ee:84:b7:
02:1c:ab:82:df:0b:24:5e:28:c0:68:9d:64:b7:25:64:87:28:
9c:6f:cf:30:8e:52:70:6a:ac:df:17:3f:ae:f3:69:cf:23:9f:
d3:33:45:56:3e:ca:29:df:83:3a:b1:b8:f6:fb:59:42:03:8b:
d9:89:8f:51:d2:da:f8:47:ff:9e:c5:6c:5b:85:1b:d7:01:fa:
66:e6:28:95:b3:10:84:60:5e:c8:98:1c:f9:a5:a0:00:b3:fd:
6d:85:3a:d5:ae:65:30:86:9f:93:a1:d8:47:1c:7e:d5:22:24:
a0:62:93:de:7b:aa:04:b6:ba:c9:e9:7d:aa:6c:20:95:41:9f:
52:3a:38:03:84:83:c4:7f:e2:95:49:4d:e1:73:8c:fe:37:a9:
1e:92:95:95:d2:a4:26:6a:1b:59:25:00:15:ee:a6:27:ae:0b:
ca:90:dc:4c:d3:b0:39:9c:7e:f8:9c:d3:75:4e:b3:b9:a8:c0:
dc:cd:55:35:15:86:e9:75:50:9b:e1:93:29:e8:dc:da:07:bc:
84:36:16:7f:ae:31:19:d0:9f:d9:d1:d0:50:f2:49:14:a9:fb:
4a:28:24:48:82:8d:12:90:94:ed:3f:a5:eb:bf:19:d3:cb:3e:
4f:3d:53:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:37 2024 by rpki-client on console-fra.rpki-client.org