Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/MtbdcETHHZi6Y686xutemyp8dPQ.roa
File: MtbdcETHHZi6Y686xutemyp8dPQ.roa (raw, json)
Hash identifier: gs+6Rm50Boi6CBpM+YfHP3R/ndPUkIiIsC7nwFdYNVQ=
Subject key identifier: 32:D6:DD:70:44:C7:1D:98:BA:63:AF:3A:C6:EB:5E:9B:2A:7C:74:F4
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01856C8139A466AD38BC00C6E51C2292DF7A
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/MtbdcETHHZi6Y686xutemyp8dPQ.roa
Signing time: Sun 01 Jan 2023 08:44:46 +0000
ROA not before: Sun 01 Jan 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42167
IP address blocks: 2a0b:b840:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:39:a4:66:ad:38:bc:00:c6:e5:1c:22:92:df:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jan 1 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32d6dd7044c71d98ba63af3ac6eb5e9b2a7c74f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1d:2b:2d:ac:62:53:e0:ae:fa:b6:2c:cc:23:
24:63:86:90:b4:ad:29:69:1e:a1:fd:3b:61:8b:2c:
96:3d:f7:14:51:f7:d2:2d:10:b8:26:f1:33:1d:55:
c2:c5:ad:9d:8f:ec:bb:8c:5e:f0:f9:fc:89:66:42:
d9:d7:e2:c8:70:42:25:86:6d:41:33:8b:74:6f:08:
1d:c6:e3:95:a8:1c:89:df:81:cc:d7:56:a8:99:ab:
ce:1e:66:05:bc:ce:f1:c6:10:9a:d5:a9:e3:4f:ed:
58:68:58:d3:4f:5a:df:1b:5b:2f:c7:69:ec:c3:8c:
4c:0f:d2:21:14:db:4f:d0:bf:51:e0:79:68:11:8a:
0f:58:d1:55:83:9e:c3:ad:37:77:6f:38:f0:e6:60:
e8:bf:27:7f:f1:cd:6b:67:81:9b:9e:2e:eb:01:49:
80:1c:dd:1a:df:e2:f8:ca:db:e8:be:41:e4:16:08:
02:48:82:22:10:d4:ad:66:dd:ec:7a:2a:45:e6:76:
e3:be:e9:b2:d0:be:de:04:b0:b8:8e:97:ad:18:17:
d2:ea:f7:98:0b:bf:ce:98:6a:8c:80:5e:04:f0:c4:
5b:92:a0:4f:31:76:00:69:af:43:74:27:bb:e4:01:
b7:3a:d6:7e:e4:78:b2:ac:51:35:36:f4:5b:b7:39:
18:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D6:DD:70:44:C7:1D:98:BA:63:AF:3A:C6:EB:5E:9B:2A:7C:74:F4
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/MtbdcETHHZi6Y686xutemyp8dPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b840:1::/48
Signature Algorithm: sha256WithRSAEncryption
09:67:81:5f:37:a3:26:74:fa:03:da:0b:87:3f:99:3e:2a:78:
12:48:5b:0e:5e:40:ba:dd:ce:ff:5d:ec:64:ef:34:01:48:53:
7a:13:e5:46:a8:b8:bc:5c:0d:8a:c9:28:f7:38:41:6c:da:ab:
b8:72:fa:bc:da:c0:af:d6:69:ea:fb:88:a2:ac:5f:8b:6c:fe:
13:08:5c:b7:85:3c:68:0a:b7:ee:b4:4c:3d:1d:df:86:70:1f:
25:76:55:21:d7:0a:1c:6a:78:f6:be:3d:a5:82:f7:0c:ba:c8:
c5:46:80:67:a2:0f:b8:de:11:76:82:24:4a:68:7d:63:b5:af:
3c:22:d2:55:3c:f6:71:77:da:87:e3:ab:65:b4:95:84:b4:ee:
c4:96:c7:db:8e:39:66:31:c1:d6:f0:d9:ac:79:49:16:9f:eb:
87:de:94:80:e5:e5:2a:96:bc:d3:2d:95:19:5e:b9:99:d0:e3:
64:a7:02:2b:9f:70:73:3c:c0:e2:45:8d:6f:d8:22:34:0d:b9:
45:a1:7d:c6:c3:e3:d9:0a:4d:62:f3:10:c2:0a:19:e6:09:b9:
b8:35:87:62:cb:0c:c3:80:99:be:4f:21:f7:fd:67:34:98:93:
ce:c1:3d:cb:ef:b3:73:ee:e0:b2:b6:5b:66:8f:50:10:f3:59:
5d:72:a8:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:00 2024 by rpki-client on console-fra.rpki-client.org