Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/bbb1c6-9f91-4346-b616-c2dc7a058e30/1/Nx-VL1yHZNBDptVTfCZfUaH81l8.roa
File: Nx-VL1yHZNBDptVTfCZfUaH81l8.roa (raw, json)
Hash identifier: Fy27WH5J3+YJDFFsq87lXjXbjxlM7xlEERTr3bYq7x4=
Subject key identifier: 37:1F:95:2F:5C:87:64:D0:43:A6:D5:53:7C:26:5F:51:A1:FC:D6:5F
Certificate issuer: /CN=061bb0916c853801f22ce723bc2cc418869db7d0
Certificate serial: 018570428ADC7726699AD399358B093E6F08
Authority key identifier: 06:1B:B0:91:6C:85:38:01:F2:2C:E7:23:BC:2C:C4:18:86:9D:B7:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BhuwkWyFOAHyLOcjvCzEGIadt9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/bbb1c6-9f91-4346-b616-c2dc7a058e30/1/Nx-VL1yHZNBDptVTfCZfUaH81l8.roa
Signing time: Mon 02 Jan 2023 02:14:47 +0000
ROA not before: Mon 02 Jan 2023 02:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25098
IP address blocks: 2001:678:b04::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:8a:dc:77:26:69:9a:d3:99:35:8b:09:3e:6f:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061bb0916c853801f22ce723bc2cc418869db7d0
Validity
Not Before: Jan 2 02:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=371f952f5c8764d043a6d5537c265f51a1fcd65f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:71:d4:d8:70:d7:e0:9c:93:2b:bf:16:2f:cb:
d7:cb:a2:3a:6b:94:8d:fc:85:a7:b1:59:82:9d:f3:
5b:12:7b:91:73:6f:1d:45:59:9a:35:a6:66:22:63:
c1:43:9c:82:93:d8:58:af:3d:93:82:bb:9b:43:c0:
94:ee:d1:67:07:a4:20:4d:ae:c1:0d:fa:60:1d:62:
dc:d7:3e:fb:12:f0:e5:7e:f7:09:6a:76:14:69:52:
1c:85:e3:b8:c9:97:2a:0b:74:5e:a6:99:6b:9c:ac:
9a:7c:2e:8e:0b:89:24:67:cf:9e:c2:d2:01:90:cf:
44:ab:f0:b6:5d:92:5f:7c:35:07:e1:ac:5f:58:7e:
3f:92:b7:ab:b5:2a:48:04:15:e0:c9:89:70:f0:45:
20:98:3a:a4:a6:ef:ba:a2:57:d9:f4:9b:25:4c:7f:
3b:14:05:3c:76:f9:5f:c1:1a:c5:14:1a:6e:88:74:
d6:43:13:8f:ee:9e:ec:9f:f6:57:0a:08:1c:85:8c:
2f:eb:dd:da:82:3a:32:da:4f:8c:5b:e8:f0:0c:43:
b3:74:31:e0:bd:26:f5:fe:cb:17:ca:9f:d8:f5:75:
53:69:5f:a5:4d:20:01:6e:8e:53:66:04:91:15:b0:
5b:6c:36:8b:68:f4:59:32:07:54:fa:21:83:c1:f3:
31:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:1F:95:2F:5C:87:64:D0:43:A6:D5:53:7C:26:5F:51:A1:FC:D6:5F
X509v3 Authority Key Identifier:
keyid:06:1B:B0:91:6C:85:38:01:F2:2C:E7:23:BC:2C:C4:18:86:9D:B7:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BhuwkWyFOAHyLOcjvCzEGIadt9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/bbb1c6-9f91-4346-b616-c2dc7a058e30/1/Nx-VL1yHZNBDptVTfCZfUaH81l8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/bbb1c6-9f91-4346-b616-c2dc7a058e30/1/BhuwkWyFOAHyLOcjvCzEGIadt9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:b04::/48
Signature Algorithm: sha256WithRSAEncryption
bf:1a:4f:00:3d:7f:af:c2:d4:0e:03:d3:81:6e:04:b8:ef:0d:
e4:fc:db:f9:40:ae:22:00:80:f9:25:a0:ee:e3:31:d9:07:f9:
f8:17:76:34:60:51:fe:3c:3f:dc:07:3b:12:87:0a:38:3b:03:
8f:1c:7d:9d:a7:e7:6e:6a:36:bc:58:21:8c:d9:3f:36:39:e6:
95:e1:20:60:b6:e2:24:98:36:40:07:a6:c7:65:2c:a0:f1:9b:
52:18:28:c2:35:5b:94:88:60:70:1c:c2:ba:1b:e9:88:9a:d6:
bb:ad:12:da:68:26:f2:9e:54:c7:33:e8:f7:f5:d2:dd:e7:f3:
b9:e8:1b:3b:df:af:1f:c2:2d:85:a7:9a:1c:e6:d0:30:78:ba:
61:e2:8d:f3:34:2e:84:a0:68:b3:06:b9:73:ae:40:3b:25:52:
aa:8b:56:a1:d7:3e:3a:01:07:f4:9b:8c:62:de:a4:05:74:5f:
15:44:e6:22:83:70:3c:e2:d5:4e:db:e5:3f:8c:4c:ce:c9:7f:
23:a0:df:93:eb:36:07:33:09:29:d3:b1:bb:db:42:fc:df:88:
57:67:ef:15:3a:fa:d7:d1:2b:c2:5d:3f:05:67:48:ea:6b:8b:
38:8a:21:5a:64:9c:09:f9:f8:cf:6b:66:22:e8:65:6c:53:fb:
bd:1d:ad:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:04 2024 by rpki-client on console-ams.rpki-client.org