Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/ac4c2d-8ab1-4e01-b6b1-29602215add0/1/_p--vJgHdtvw2p57TyTOOr8NNho.roa
File: _p--vJgHdtvw2p57TyTOOr8NNho.roa (raw, json)
Hash identifier: ZM+O/UjFicR/ijg3Aq86mjwRng2Bp8rioMxncOqiNqk=
Subject key identifier: FE:9F:BE:BC:98:07:76:DB:F0:DA:9E:7B:4F:24:CE:3A:BF:0D:36:1A
Certificate issuer: /CN=5bea046b499780aec7d6182d2d56a75eb08968cd
Certificate serial: 0185730387FBBBBE72784CE611CDF1D9853D
Authority key identifier: 5B:EA:04:6B:49:97:80:AE:C7:D6:18:2D:2D:56:A7:5E:B0:89:68:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-oEa0mXgK7H1hgtLVanXrCJaM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/ac4c2d-8ab1-4e01-b6b1-29602215add0/1/_p--vJgHdtvw2p57TyTOOr8NNho.roa
Signing time: Mon 02 Jan 2023 15:04:49 +0000
ROA not before: Mon 02 Jan 2023 15:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206628
IP address blocks: 2001:678:d3c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:87:fb:bb:be:72:78:4c:e6:11:cd:f1:d9:85:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bea046b499780aec7d6182d2d56a75eb08968cd
Validity
Not Before: Jan 2 15:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe9fbebc980776dbf0da9e7b4f24ce3abf0d361a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:76:fc:b2:16:b9:9e:13:68:15:c5:96:e5:21:
5b:31:c2:ec:14:d5:18:49:4e:8a:2b:ec:d2:11:2f:
97:de:df:ce:59:3c:5d:4c:fb:a0:e7:75:2f:18:7b:
f7:ae:2d:c3:5a:bf:bc:ad:82:95:39:0c:61:89:34:
ec:81:25:f0:a3:37:57:c4:76:a9:3e:00:d5:8d:63:
b5:5b:56:79:fd:80:96:71:15:4f:4d:bb:f3:bd:7d:
a1:a9:5a:51:87:51:76:6b:5e:fc:b3:10:18:0a:8e:
fa:06:5a:0c:8d:d9:0c:e3:a2:39:59:03:f0:e8:f9:
b7:bf:75:9d:35:75:4c:17:d3:75:57:3a:ed:de:a5:
02:75:e4:3a:c3:9a:a2:52:ed:68:fc:12:ad:ee:ed:
84:02:1a:85:93:92:7f:3e:44:d5:8d:92:01:fa:bd:
ff:e2:20:d1:c5:b8:9a:1a:6e:21:ab:0d:53:1b:9e:
fa:e6:5e:0e:5d:6c:9b:fd:83:62:2f:72:b4:e9:ff:
e8:6a:e6:45:48:c4:94:33:b9:e9:27:e6:ad:06:9b:
3e:e4:51:1f:c7:91:ad:8d:34:87:91:0c:5b:a3:a1:
4b:25:fa:d7:bc:fb:ae:49:5f:3b:70:41:4c:56:c0:
1e:da:0a:87:7e:2c:aa:06:2d:a8:68:a1:12:ba:43:
d8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9F:BE:BC:98:07:76:DB:F0:DA:9E:7B:4F:24:CE:3A:BF:0D:36:1A
X509v3 Authority Key Identifier:
keyid:5B:EA:04:6B:49:97:80:AE:C7:D6:18:2D:2D:56:A7:5E:B0:89:68:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-oEa0mXgK7H1hgtLVanXrCJaM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/ac4c2d-8ab1-4e01-b6b1-29602215add0/1/_p--vJgHdtvw2p57TyTOOr8NNho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/ac4c2d-8ab1-4e01-b6b1-29602215add0/1/W-oEa0mXgK7H1hgtLVanXrCJaM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d3c::/48
Signature Algorithm: sha256WithRSAEncryption
31:bd:4e:d4:1e:a5:07:c8:fc:b0:1b:aa:25:8f:ae:e8:bf:5d:
cf:d8:5f:1b:e5:66:cb:00:a2:69:18:65:cd:d9:ae:d4:4e:40:
d6:93:05:8f:7a:6d:d9:15:66:93:5a:04:b9:e6:fc:fb:3e:95:
ca:be:8b:aa:ca:ec:a6:d4:ca:26:69:87:ad:f5:78:bf:99:a5:
57:54:5c:bc:37:0a:c5:39:42:58:f7:aa:07:90:b6:92:ae:7a:
5f:01:d4:42:1e:0c:16:dc:73:68:4d:1f:1b:3f:12:e3:93:91:
9c:2b:38:2e:a5:8e:46:96:6a:1c:5d:b5:8b:36:3e:ae:8b:26:
00:9d:76:18:cf:2a:f6:b8:1f:b6:95:64:72:d7:a4:11:7d:ff:
2b:e9:91:25:ba:09:83:79:b9:d3:e9:59:0c:b8:86:08:7b:db:
1b:d1:ea:df:70:f0:ec:bb:12:4a:29:57:e1:e9:bb:7d:bf:d6:
7f:14:5a:35:53:44:1e:cf:ad:76:55:be:85:8c:f1:b1:c5:48:
f8:47:5c:36:55:f8:e5:e3:13:05:bd:42:30:f5:9f:41:4b:06:
bb:e1:b4:8c:c2:98:a7:da:e5:a3:6c:5f:6b:43:9d:12:72:ac:
65:65:07:89:8e:dc:f7:5a:66:3b:9d:3f:b1:08:41:f3:04:b7:
4a:82:32:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:20 2024 by rpki-client on console-ams.rpki-client.org