Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/870383-df9a-479c-8ee1-36dc2800fded/1/xyxbM4JCLQrpcThOvVARSPzh4wQ.roa
File: xyxbM4JCLQrpcThOvVARSPzh4wQ.roa (raw, json)
Hash identifier: vE0xad/N630cYUwuV6O/R8IYusmjpKK6aeXKC0kZJWs=
Subject key identifier: C7:2C:5B:33:82:42:2D:0A:E9:71:38:4E:BD:50:11:48:FC:E1:E3:04
Certificate issuer: /CN=6b1a157e20adca3b44067ba8d8dcabae698a8bec
Certificate serial: 01856BE5992B6913EB9C99C42C2C3D42334F
Authority key identifier: 6B:1A:15:7E:20:AD:CA:3B:44:06:7B:A8:D8:DC:AB:AE:69:8A:8B:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axoVfiCtyjtEBnuo2NyrrmmKi-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/870383-df9a-479c-8ee1-36dc2800fded/1/xyxbM4JCLQrpcThOvVARSPzh4wQ.roa
Signing time: Sun 01 Jan 2023 05:54:47 +0000
ROA not before: Sun 01 Jan 2023 05:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199429
IP address blocks: 2001:67c:11d0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:99:2b:69:13:eb:9c:99:c4:2c:2c:3d:42:33:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b1a157e20adca3b44067ba8d8dcabae698a8bec
Validity
Not Before: Jan 1 05:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c72c5b3382422d0ae971384ebd501148fce1e304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e2:cd:32:9f:cb:7f:3b:c3:f1:07:b9:35:7e:
50:6c:86:17:c0:6a:95:2f:05:48:22:f5:b5:9d:f5:
dc:28:da:6c:6b:6e:a3:da:70:7e:b4:9b:a0:8d:bd:
41:c6:e4:09:19:35:2e:93:cb:7b:c7:36:ff:69:b2:
67:29:3c:72:6b:2f:83:87:f6:51:f8:a1:73:a2:ef:
91:91:2c:8d:cf:cb:42:9d:c9:ff:82:62:a9:40:06:
3d:ac:78:0d:2a:3a:fa:3f:34:79:c5:da:e6:65:95:
82:fa:7e:52:bc:01:93:ac:fc:ba:56:cd:25:4a:c3:
24:21:39:70:b7:e2:e1:b2:aa:0a:8d:cc:e6:3e:b7:
dd:c4:74:aa:10:71:e3:bb:1d:c3:78:05:18:dc:44:
29:e9:fb:4d:c9:76:d9:cf:67:60:86:bf:51:79:40:
7b:d4:68:48:0b:f7:f9:0d:0e:e1:7f:53:a2:ce:d6:
f5:cf:4f:b3:b0:ce:49:fb:6c:e7:fa:3b:6a:1a:2a:
81:61:89:02:d3:d4:f2:f9:4d:17:8f:61:6e:1f:dd:
93:c6:1f:38:98:80:6a:63:f1:6f:f2:ec:9c:80:f1:
51:32:6d:e6:f5:f8:57:7c:3b:2d:36:9d:13:d0:5d:
c6:68:8d:be:34:ac:8b:bf:66:c5:41:1b:d0:08:78:
49:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2C:5B:33:82:42:2D:0A:E9:71:38:4E:BD:50:11:48:FC:E1:E3:04
X509v3 Authority Key Identifier:
keyid:6B:1A:15:7E:20:AD:CA:3B:44:06:7B:A8:D8:DC:AB:AE:69:8A:8B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axoVfiCtyjtEBnuo2NyrrmmKi-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/870383-df9a-479c-8ee1-36dc2800fded/1/xyxbM4JCLQrpcThOvVARSPzh4wQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/870383-df9a-479c-8ee1-36dc2800fded/1/axoVfiCtyjtEBnuo2NyrrmmKi-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:11d0::/48
Signature Algorithm: sha256WithRSAEncryption
b2:a2:13:76:c2:2b:ad:57:90:16:a6:fd:61:b4:a9:db:c8:75:
95:43:37:ab:3a:68:27:6f:cb:7d:33:ae:83:3a:a5:24:ed:8c:
9e:0a:91:f9:4f:da:06:20:18:44:a1:74:8f:ad:46:32:2b:52:
3f:c2:c2:b5:4c:27:af:ee:53:ac:13:ce:2f:f3:35:8c:c6:b8:
4c:b6:98:c0:8a:15:74:19:ae:33:02:97:87:98:1d:10:00:0f:
7a:33:24:aa:95:94:d6:a7:5f:ed:04:91:21:24:20:7f:36:f1:
55:bb:78:fa:e4:3b:a6:84:6c:f3:08:14:13:7d:52:3a:1a:bc:
24:69:72:a3:2a:6b:aa:5f:26:ad:f9:1d:bc:96:7b:b1:31:34:
1d:ad:80:9b:b1:12:a0:13:58:5a:1d:33:0b:bb:99:87:a0:c6:
f1:35:3e:ed:10:b1:29:56:67:b9:8c:b6:2c:4a:71:d3:0b:90:
5a:8d:96:00:d7:60:3c:a3:2b:1b:45:d5:0a:ce:2c:62:6f:89:
da:ae:fa:93:21:40:a0:1a:dd:a7:24:c7:86:0b:13:29:aa:ba:
ff:c2:f4:8a:ff:e7:34:36:75:7a:90:95:41:24:b0:ac:e6:56:
ae:c2:d3:9d:ca:a0:0d:ee:6e:30:7b:72:d4:53:d2:49:3d:ff:
73:6a:cc:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:39 2024 by rpki-client on console-ams.rpki-client.org