Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/_eFTWOs0sy8Io4tNeAIR8ntG9ok.roa
File: _eFTWOs0sy8Io4tNeAIR8ntG9ok.roa (raw, json)
Hash identifier: TtatogmjLnzu1mFNxmbCjOCjmWm/aUw6ovtO1xtBIZ8=
Subject key identifier: FD:E1:53:58:EB:34:B3:2F:08:A3:8B:4D:78:02:11:F2:7B:46:F6:89
Certificate issuer: /CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Certificate serial: 018572DF00274446282274E4A908FF99F298
Authority key identifier: 1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/_eFTWOs0sy8Io4tNeAIR8ntG9ok.roa
Signing time: Mon 02 Jan 2023 14:24:55 +0000
ROA not before: Mon 02 Jan 2023 14:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1020
IP address blocks: 2a12:f3c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 26 May 2023 18:03:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:df:00:27:44:46:28:22:74:e4:a9:08:ff:99:f2:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Validity
Not Before: Jan 2 14:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fde15358eb34b32f08a38b4d780211f27b46f689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2c:fa:4d:3a:4a:e4:8d:80:10:97:ea:79:48:
40:bc:7a:36:33:41:f0:cf:78:ee:cc:45:bc:0a:14:
d8:1c:58:9c:e6:39:d3:f0:da:71:b3:b9:f3:24:6a:
b7:90:28:20:f6:65:eb:a8:2d:a3:9b:53:1a:4e:b6:
01:be:46:9a:bc:08:83:65:da:e7:2a:25:a3:18:94:
4b:1c:bf:f7:cc:e7:0d:b6:8a:a6:e4:eb:80:5b:6e:
5f:9c:12:ec:2c:a0:99:05:bf:66:25:50:9b:2e:d2:
87:bb:64:bc:bf:40:81:3f:e0:4d:55:96:b2:9d:7f:
e5:5f:90:ee:45:3e:99:6f:ce:ed:e2:db:d3:96:85:
1e:55:75:d5:09:99:a9:97:c1:52:37:9e:d5:e0:86:
ab:df:55:e4:b5:c1:5b:32:71:59:d9:05:4f:56:e0:
c9:5f:43:4d:38:1a:93:55:0e:a2:8e:40:06:74:3c:
50:17:a1:36:ff:7a:d2:73:41:96:d2:03:a2:4f:e2:
2e:d3:09:19:a2:be:8b:c3:fa:90:35:6c:91:87:eb:
70:23:61:6b:6f:33:84:b6:54:1b:34:ba:bf:1d:c1:
69:13:18:22:15:e4:bc:9e:2c:d9:3f:d4:f3:bb:21:
3d:55:43:4a:60:ee:bb:da:70:e6:da:63:f3:5e:57:
28:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E1:53:58:EB:34:B3:2F:08:A3:8B:4D:78:02:11:F2:7B:46:F6:89
X509v3 Authority Key Identifier:
keyid:1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/_eFTWOs0sy8Io4tNeAIR8ntG9ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/GpFU4cVXiw_virt3n4EX5k6ITRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f3c0::/29
Signature Algorithm: sha256WithRSAEncryption
6f:10:ce:27:72:a6:f0:8c:c3:99:5f:31:dc:d9:63:20:1b:45:
0a:87:27:cf:26:8c:17:b9:e4:56:7f:99:77:f9:0b:b0:48:6a:
2b:ff:f9:63:3f:e5:5f:12:c9:c1:8c:9d:79:4b:92:96:82:a4:
c9:0c:a2:fe:10:59:61:f0:63:d9:b2:ed:48:34:b4:ec:cb:31:
c9:42:63:9b:80:5b:ec:f2:f8:16:77:51:47:d0:4b:a4:fd:96:
8a:5e:00:f7:6e:e9:87:ac:8d:03:4d:b0:99:23:23:23:79:54:
2f:71:48:a6:f7:89:4d:09:7e:7f:7f:b5:30:ff:af:86:23:77:
6e:7d:4f:46:1d:ed:f4:69:6a:9d:19:80:4f:0a:3d:27:7f:f6:
c0:1e:7b:a3:b9:f3:74:d4:b4:34:74:57:e1:ab:4e:56:db:88:
6e:2a:02:c8:69:3f:c9:21:f9:5a:26:d9:63:9f:ad:9c:70:1f:
c9:9e:b8:34:34:a1:8f:50:03:58:34:fe:ce:b2:1e:64:15:cf:
c3:3d:e3:79:4c:8a:2d:e7:95:fb:2e:4f:2f:2a:49:0e:d6:95:
ab:24:2a:7e:2a:fd:b8:55:c0:d4:ed:07:d4:26:df:dd:03:ce:
52:e4:7a:06:94:53:db:58:f9:cf:22:7b:d6:5e:c4:e1:61:7c:
58:4f:27:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:19 2024 by rpki-client on console-fra.rpki-client.org