Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/1-2N3tpHpG8NFeMSkuMyVB2FlS6o.roa
File: 1-2N3tpHpG8NFeMSkuMyVB2FlS6o.roa (raw, json)
Hash identifier: xkX7xT5tdnw2myI/zCVrSGlQRpwZ4qxxCLEr9YJUlW8=
Subject key identifier: FB:63:77:B6:91:E9:1B:C3:45:78:C4:A4:B8:CC:95:07:61:65:4B:AA
Certificate issuer: /CN=43c77b47363681378face466141d54cc88399cf5
Certificate serial: 018570C2D25880784B2D5DECCB7DCD8A05B8
Authority key identifier: 43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/1-2N3tpHpG8NFeMSkuMyVB2FlS6o.roa
Signing time: Mon 02 Jan 2023 04:34:54 +0000
ROA not before: Mon 02 Jan 2023 04:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200924
IP address blocks: 2001:678:a7c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:d2:58:80:78:4b:2d:5d:ec:cb:7d:cd:8a:05:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c77b47363681378face466141d54cc88399cf5
Validity
Not Before: Jan 2 04:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb6377b691e91bc34578c4a4b8cc950761654baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:21:06:27:a7:7d:cc:37:99:93:7d:df:e2:c2:
cb:95:71:60:1e:3d:00:d9:c2:a2:76:bc:23:d6:b6:
30:17:f5:70:ec:b9:08:47:c9:98:25:55:08:46:81:
9b:19:07:7a:bd:33:47:cd:43:dd:aa:84:16:9a:7c:
e8:a5:59:98:d8:1b:07:91:b4:a8:69:10:dc:36:48:
36:65:16:74:c9:10:09:65:80:a6:10:af:d2:c9:8b:
7b:c0:dc:d2:1a:b9:33:97:38:2c:9d:c0:57:df:e1:
96:33:b1:1e:7c:e5:b1:91:b8:c2:8c:c2:84:2c:d8:
2d:5a:e7:22:d4:39:2c:fc:b5:61:ab:e2:99:2d:e4:
2d:e8:5b:e8:3c:e5:65:96:ee:ce:bb:e9:34:0a:ac:
62:a9:a5:6b:b9:99:15:8b:7e:28:e5:36:5a:59:b0:
61:56:0b:bd:19:ac:1c:56:c5:90:3c:da:3d:99:10:
a8:14:05:e0:78:97:17:51:38:bb:21:d7:25:5a:4e:
90:7a:1f:24:30:2d:95:a8:23:05:7e:a9:9d:ca:31:
9e:c7:db:e9:f6:29:36:95:39:54:31:ce:de:3a:1f:
35:0f:f8:41:29:a3:e6:1b:5c:27:8d:c1:7a:00:76:
99:14:55:e1:bb:10:6e:46:f0:3e:99:08:a9:bd:66:
67:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:63:77:B6:91:E9:1B:C3:45:78:C4:A4:B8:CC:95:07:61:65:4B:AA
X509v3 Authority Key Identifier:
keyid:43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/1-2N3tpHpG8NFeMSkuMyVB2FlS6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a7c::/48
Signature Algorithm: sha256WithRSAEncryption
78:64:d2:ae:23:e4:72:0d:25:ce:ab:a9:c4:0a:e7:2d:8e:4d:
ce:8f:ee:0e:3b:41:06:77:24:fc:05:8c:ae:1a:d5:d8:ba:b2:
65:36:ad:7e:ff:8c:61:a2:fc:cf:b3:1c:58:ad:50:4f:34:23:
e8:35:57:f4:42:3e:55:68:94:fa:32:69:a5:4f:40:97:a9:24:
d1:c3:e4:61:d2:a5:9c:eb:27:6f:0b:da:0c:de:1f:2f:40:52:
cc:44:0d:99:6b:bf:b5:05:85:3b:86:b3:4d:49:f4:eb:6c:7c:
33:b8:22:00:ca:fb:b0:00:8b:fa:7f:0b:63:1e:ff:04:2e:ff:
df:e4:63:71:8e:ef:9d:79:36:32:a4:17:2b:a3:e3:27:e4:e4:
eb:1a:9a:3a:8d:77:d7:e5:53:9b:3d:3e:a0:c7:cd:9e:28:eb:
ca:d8:bd:45:2a:bd:16:c2:6e:14:40:12:7d:1e:d5:aa:5f:29:
31:99:74:17:b8:5e:86:41:33:61:4e:0e:a0:3e:53:c8:0e:a4:
4a:3b:e9:f0:32:da:42:90:3d:09:23:84:69:8a:d3:ce:07:5c:
1b:d7:ba:97:58:35:72:b2:1a:d7:44:e3:fc:10:64:8f:68:b0:
4c:ff:be:79:ab:04:d4:a5:f0:1f:c2:53:b0:57:57:38:78:ea:
18:f4:0a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:28 2024 by rpki-client on console-fra.rpki-client.org