Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/mWfNeAIrhP1rYmTIzCOiPbF0mWo.roa
File: mWfNeAIrhP1rYmTIzCOiPbF0mWo.roa (raw, json)
Hash identifier: 9gj1LNGirUvvL8fBUSDs3NVN96EnWq2aps8MRrypRvg=
Subject key identifier: 99:67:CD:78:02:2B:84:FD:6B:62:64:C8:CC:23:A2:3D:B1:74:99:6A
Certificate issuer: /CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Certificate serial: 0185B1BE791F96A9435DAC34A5A64EFA2FE6
Authority key identifier: CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/mWfNeAIrhP1rYmTIzCOiPbF0mWo.roa
Signing time: Sat 14 Jan 2023 19:25:28 +0000
ROA not before: Sat 14 Jan 2023 19:25:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200259
IP address blocks: 2001:67c:2ebc::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b1:be:79:1f:96:a9:43:5d:ac:34:a5:a6:4e:fa:2f:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Validity
Not Before: Jan 14 19:25:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9967cd78022b84fd6b6264c8cc23a23db174996a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:83:2c:45:9b:8f:76:dd:17:1b:b9:a1:2b:34:
c2:70:2a:75:09:47:a1:3c:7f:fa:50:fb:1b:52:66:
9f:fc:70:1f:fc:39:c5:02:02:38:5e:8b:53:29:3c:
13:46:8e:59:a7:a4:dd:b4:fe:98:13:5c:53:6d:ec:
a7:09:b0:2f:d9:f3:05:86:d8:50:77:69:30:78:fa:
23:3c:b5:e3:7c:56:1c:36:c6:ff:4e:35:e9:af:3e:
a5:85:3e:2e:98:78:3a:f5:a2:f1:8d:00:49:92:e4:
ec:4a:67:04:b0:2b:7f:62:e2:2b:0a:9c:ae:bc:c8:
72:fe:78:fb:47:68:07:25:ff:ee:04:8c:3e:c1:ca:
8a:cc:7f:d1:bb:11:73:3e:e8:d9:1d:b6:30:dd:62:
80:93:61:74:7f:2a:9c:4d:8e:42:01:44:01:24:01:
95:94:72:3b:4e:5a:f1:d6:86:b8:45:b6:d4:99:b6:
2e:3f:22:98:60:2e:cc:02:09:98:ca:cf:db:13:28:
33:a2:58:24:b0:df:74:61:37:bd:7c:14:8a:39:a4:
a6:db:83:90:1d:c5:96:bc:0c:33:2e:57:9f:b3:2a:
4f:1d:2a:d5:cc:ee:e8:83:9e:03:d3:d1:e2:0e:b2:
38:41:91:e8:0f:db:da:55:6f:1b:41:4b:fd:00:fc:
ab:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:67:CD:78:02:2B:84:FD:6B:62:64:C8:CC:23:A2:3D:B1:74:99:6A
X509v3 Authority Key Identifier:
keyid:CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/mWfNeAIrhP1rYmTIzCOiPbF0mWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ebc::/48
Signature Algorithm: sha256WithRSAEncryption
17:d6:df:a9:0b:98:13:e7:f6:96:68:97:70:35:07:57:b9:35:
78:d4:f9:07:b6:b9:cf:a6:7a:56:d7:2e:36:c1:d3:c0:60:ad:
2d:d7:26:fb:2c:03:0d:a7:de:6c:52:4f:a1:cd:50:14:28:f4:
77:4c:78:86:26:4c:42:34:91:22:fd:87:28:10:ca:fc:64:f2:
c3:d6:fb:e8:1e:95:ad:31:32:4a:f1:af:9f:36:41:58:c8:4f:
f9:98:8c:fa:4c:48:a5:b4:f4:57:ad:a7:75:2a:25:92:a5:76:
51:08:f3:a8:97:fc:92:cc:01:71:6d:ab:66:26:19:57:49:6c:
f4:4e:48:67:4d:69:0f:78:19:1f:b0:f6:84:c7:e7:81:19:90:
17:9a:be:54:ff:35:79:3d:09:98:a0:8a:0f:37:06:2b:53:6a:
c7:4b:08:9e:7a:1a:59:66:a6:0c:64:fd:7f:5b:d5:d5:27:20:
60:f6:9f:30:15:42:11:9d:16:e5:d1:0b:97:89:6e:e0:5e:c3:
8d:65:92:fd:fd:f0:35:95:42:2a:ec:bc:81:a5:7a:09:f2:19:
c5:f6:7d:80:23:6a:ff:c0:73:9b:39:b4:33:c2:90:be:3f:61:
0e:ac:0d:77:ef:54:ad:67:18:47:89:12:83:8a:c9:cd:72:a3:
be:30:a0:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:59 2024 by rpki-client on console-ams.rpki-client.org