Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/pRlsCmXQMnXJVV2_513lB49iA5E.roa
File: pRlsCmXQMnXJVV2_513lB49iA5E.roa (raw, json)
Hash identifier: xwUEKYL6MLwvhys/0nR5tCs17YZDNkOhlJb/4/Tf0Fk=
Subject key identifier: A5:19:6C:0A:65:D0:32:75:C9:55:5D:BF:E7:5D:E5:07:8F:62:03:91
Certificate issuer: /CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Certificate serial: 01856C015552B81695423CE13E5CB1A417FF
Authority key identifier: 65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/pRlsCmXQMnXJVV2_513lB49iA5E.roa
Signing time: Sun 01 Jan 2023 06:25:04 +0000
ROA not before: Sun 01 Jan 2023 06:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31317
IP address blocks: 2001:67c:2048::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:55:52:b8:16:95:42:3c:e1:3e:5c:b1:a4:17:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Validity
Not Before: Jan 1 06:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5196c0a65d03275c9555dbfe75de5078f620391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:64:2a:bb:fb:ad:1f:be:54:95:c0:47:ca:e7:
c4:00:07:ef:50:ac:05:0c:8b:96:d7:99:ce:52:be:
98:1d:94:45:b5:05:3a:ad:6c:e8:9b:07:1d:ba:6e:
56:0a:e9:59:19:45:52:46:2e:25:06:bd:3d:a4:45:
af:bc:6b:00:f2:f9:d6:bc:aa:55:78:ac:07:20:69:
e6:93:b0:9a:d2:1e:34:73:ca:1b:d1:42:62:d8:3c:
3d:d4:74:4a:1f:9f:19:b4:73:b6:11:3b:73:23:c4:
1f:a7:8d:fe:9e:f7:81:d3:8e:e2:ab:a1:45:65:24:
74:0d:8d:ae:77:4e:55:b4:0c:70:91:7d:60:d7:8d:
44:65:88:59:4e:74:02:9f:de:f2:5b:59:a6:e4:8e:
e2:76:c9:a3:3c:0d:aa:f0:ab:e0:66:34:e6:d3:ab:
9b:f0:b5:25:dd:48:45:a1:7a:b0:30:8d:04:8d:41:
05:8a:a2:ca:e9:68:dd:d7:5c:62:db:bc:c3:64:bf:
eb:00:c2:33:59:b9:d2:d5:e6:ca:99:54:a6:e1:d1:
c8:38:80:f0:86:cc:10:95:4f:a2:67:5b:c5:f2:cf:
6b:f7:e7:08:fb:7b:dc:bb:d8:2f:d6:3b:b0:7f:ab:
6b:0b:a7:3b:63:77:75:16:37:06:0a:d8:e4:03:d6:
9c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:19:6C:0A:65:D0:32:75:C9:55:5D:BF:E7:5D:E5:07:8F:62:03:91
X509v3 Authority Key Identifier:
keyid:65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/pRlsCmXQMnXJVV2_513lB49iA5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2048::/48
Signature Algorithm: sha256WithRSAEncryption
96:c9:8a:39:bf:0c:16:e2:46:64:07:2c:7c:a1:2c:7f:34:92:
91:2f:29:29:da:25:ab:76:87:6d:60:66:b2:5a:11:ce:0f:97:
3a:a9:4c:ba:d7:b2:0c:af:ea:2d:58:b0:ee:c4:97:df:f9:b7:
b8:9a:32:3b:d9:2b:c7:a7:ea:f7:87:7e:0c:6c:d8:30:f3:90:
77:d4:92:42:02:4c:30:08:8b:2d:4e:e2:3c:46:6e:d0:3b:3f:
4b:d7:05:2e:23:38:46:fc:f8:f7:c2:8b:c5:46:3a:60:fd:0a:
01:0b:44:97:6e:11:3e:9f:26:74:76:2e:d4:ff:61:d4:fe:5e:
63:58:5c:18:58:76:24:77:6c:38:e6:96:37:e4:5c:69:2c:9c:
84:be:bd:89:ab:02:76:11:28:c7:a8:03:aa:82:2b:07:6e:4f:
c6:ea:41:91:7e:6a:78:a4:9a:8d:33:b3:62:93:49:79:e0:81:
92:6e:fc:ee:ef:66:17:4b:2c:3b:45:cc:50:23:23:24:f5:6c:
8d:59:fb:63:97:27:1a:88:c9:ba:26:7e:b3:4f:4b:4f:a0:fd:
c9:a1:0b:a9:80:71:06:78:0d:7b:6a:d6:80:05:f0:2d:94:b1:
54:cc:49:7e:8e:14:f3:b7:e3:fb:91:9e:f7:58:60:8a:0b:85:
3c:a5:5a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:54 2024 by rpki-client on console-ams.rpki-client.org