Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/7dc712-ff5d-4ff2-a2ae-39dc53e3782f/1/Ja0TZeskGiz7aEhcxatsszOsiDc.roa
File: Ja0TZeskGiz7aEhcxatsszOsiDc.roa (raw, json)
Hash identifier: 50ZF1s8YCCCKIZ6TG3oLLEdmsBQWgklGeNtkXublzw8=
Subject key identifier: 25:AD:13:65:EB:24:1A:2C:FB:68:48:5C:C5:AB:6C:B3:33:AC:88:37
Certificate issuer: /CN=2936f64328c1e66911409ea7c69722f8d26266b5
Certificate serial: 018592149AE408EC5EAF60FA70EB9D5C1DD8
Authority key identifier: 29:36:F6:43:28:C1:E6:69:11:40:9E:A7:C6:97:22:F8:D2:62:66:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTb2QyjB5mkRQJ6nxpci-NJiZrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/7dc712-ff5d-4ff2-a2ae-39dc53e3782f/1/Ja0TZeskGiz7aEhcxatsszOsiDc.roa
Signing time: Sun 08 Jan 2023 15:51:42 +0000
ROA not before: Sun 08 Jan 2023 15:51:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200270
IP address blocks: 2001:67c:b68::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:92:14:9a:e4:08:ec:5e:af:60:fa:70:eb:9d:5c:1d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2936f64328c1e66911409ea7c69722f8d26266b5
Validity
Not Before: Jan 8 15:51:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25ad1365eb241a2cfb68485cc5ab6cb333ac8837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e9:08:8b:b9:b6:47:2e:50:50:70:06:a6:5c:
1b:20:7c:5b:ca:1f:2d:32:97:da:73:23:3b:ff:bc:
ff:cf:2d:e7:a4:47:1e:db:4c:f2:32:51:0d:04:00:
bf:25:3e:9e:b5:a7:32:9c:e6:35:9f:2a:cb:52:6d:
10:db:f8:05:da:53:8c:64:5e:a5:24:a9:72:c3:9c:
ef:7d:ac:a0:57:f7:9a:1a:7f:c4:db:f1:d7:b4:48:
72:27:2d:a4:27:da:9b:40:71:f3:f4:4e:b7:23:32:
10:3b:8d:90:3f:fb:96:46:1a:39:f9:3e:4c:24:72:
d5:93:39:04:eb:ee:2f:bd:87:df:23:27:a8:6d:19:
0d:17:01:6e:a2:ed:30:67:83:fd:a9:26:27:27:9a:
e5:16:66:69:d8:be:4a:e6:e7:0d:e3:84:5d:b9:ee:
95:09:9c:b7:ba:a6:cc:16:a0:d9:17:3a:e4:32:e6:
d8:28:8a:8d:48:6e:b2:ca:00:94:bc:3a:f2:50:26:
1c:f4:5c:15:f1:61:f7:31:b7:f8:3e:f5:0d:c1:63:
52:b8:f7:53:ff:fa:a5:2d:72:53:69:42:7a:b4:53:
ca:57:46:70:d2:b4:7c:3a:f1:c3:88:6c:8e:c2:6a:
39:7e:f0:57:a2:51:ee:fd:71:79:a1:eb:e9:40:74:
7b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:AD:13:65:EB:24:1A:2C:FB:68:48:5C:C5:AB:6C:B3:33:AC:88:37
X509v3 Authority Key Identifier:
keyid:29:36:F6:43:28:C1:E6:69:11:40:9E:A7:C6:97:22:F8:D2:62:66:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTb2QyjB5mkRQJ6nxpci-NJiZrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7dc712-ff5d-4ff2-a2ae-39dc53e3782f/1/Ja0TZeskGiz7aEhcxatsszOsiDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7dc712-ff5d-4ff2-a2ae-39dc53e3782f/1/KTb2QyjB5mkRQJ6nxpci-NJiZrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b68::/48
Signature Algorithm: sha256WithRSAEncryption
5b:96:91:1f:c4:f6:69:0a:a7:d5:11:ed:1b:94:80:4d:c9:08:
ef:27:e1:87:e1:e8:0a:ab:0f:11:33:5d:b4:d0:b6:79:f6:0d:
91:de:c1:52:d0:7c:a1:1c:c5:bc:74:d8:39:f7:e6:e9:0a:77:
58:bc:59:ad:de:e6:6d:a1:9d:d9:dc:79:f6:3d:84:d5:a7:bb:
70:e9:47:1c:84:c2:c2:05:c5:6b:71:ab:0f:03:a5:18:26:04:
e5:d7:c3:3b:e2:3d:10:58:a1:87:9e:d0:89:66:15:fa:7a:a6:
67:be:4e:28:c6:05:ef:38:58:89:2b:8e:34:0c:de:a8:2a:9e:
f0:4b:60:bf:ac:c3:d2:13:6c:8b:53:30:10:87:49:a5:69:8f:
67:27:74:a4:92:22:cb:3e:01:62:86:27:d2:bb:2d:cb:df:4d:
7e:10:38:75:15:6e:b0:25:b4:3e:10:e9:07:cc:b7:c9:c7:5f:
4a:8a:bd:09:51:5f:d9:67:53:f4:c1:27:51:ec:5e:5d:36:03:
cb:bc:4a:5d:9f:89:73:84:42:60:a5:ff:3d:e6:1b:a9:5a:d4:
0d:31:c0:ea:f0:5d:8e:bf:be:4d:74:70:0f:11:75:b0:93:64:
e6:73:43:a1:6f:c5:c3:10:87:3e:6e:7b:82:f6:63:09:d0:98:
63:f8:37:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:44 2024 by rpki-client on console-ams.rpki-client.org