Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/UnMco9RK55tC8ZX66WpHo9w7L2w.roa
File: UnMco9RK55tC8ZX66WpHo9w7L2w.roa (raw, json)
Hash identifier: HcTB7opmWCCpSUKtKjVRtmAzngY1YiVO/olVW2kthLg=
Subject key identifier: 52:73:1C:A3:D4:4A:E7:9B:42:F1:95:FA:E9:6A:47:A3:DC:3B:2F:6C
Certificate issuer: /CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Certificate serial: 0185714C2D27126FA7C8CE5307D1F097CBD0
Authority key identifier: A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/UnMco9RK55tC8ZX66WpHo9w7L2w.roa
Signing time: Mon 02 Jan 2023 07:04:55 +0000
ROA not before: Mon 02 Jan 2023 07:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211833
IP address blocks: 2a12:f340::/48 maxlen: 48
2a12:f340:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:2d:27:12:6f:a7:c8:ce:53:07:d1:f0:97:cb:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Validity
Not Before: Jan 2 07:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52731ca3d44ae79b42f195fae96a47a3dc3b2f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7d:60:c3:ce:85:e7:be:b6:78:75:b5:05:e8:
43:2f:c8:18:c1:32:6b:df:2e:a1:70:65:5d:b2:61:
fd:ef:53:04:bb:19:86:13:26:8e:5f:1e:7a:94:6d:
a4:bf:a6:93:a2:80:e5:01:f1:7e:b5:fa:92:6f:f3:
52:16:70:44:57:6d:cc:3a:47:57:1e:3a:20:cd:1b:
4a:fb:d7:a7:ed:1f:23:d6:03:a8:c8:84:20:a6:01:
90:d0:4d:98:fa:6a:9c:09:16:05:66:af:7e:78:bc:
80:8a:74:ef:81:71:91:bd:24:05:39:75:95:4b:db:
2d:58:78:50:47:84:66:f9:5b:f2:d4:4e:78:cc:c8:
d9:46:db:cc:b2:56:79:7e:58:40:aa:55:20:d1:ed:
6e:16:8e:a1:f1:0b:1e:69:bc:f1:3d:47:6e:b7:33:
bd:59:d1:f2:50:30:1b:68:38:dc:b9:08:83:53:86:
be:3b:f1:58:dc:0c:68:b9:0e:14:8d:6d:6e:cb:01:
64:ad:8c:c0:ad:25:2a:ec:84:db:5e:bf:39:29:56:
c5:19:82:1a:6d:2b:0b:58:e1:4f:26:93:b2:82:28:
11:d6:22:8f:60:d9:d4:13:c8:5c:94:1e:58:1d:d9:
73:9f:14:4c:32:d9:6a:22:d9:8c:af:aa:17:91:18:
4f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:73:1C:A3:D4:4A:E7:9B:42:F1:95:FA:E9:6A:47:A3:DC:3B:2F:6C
X509v3 Authority Key Identifier:
keyid:A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/UnMco9RK55tC8ZX66WpHo9w7L2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/pDOBaM2dWvBgQBP8QnQSb8WB88s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f340::/47
Signature Algorithm: sha256WithRSAEncryption
3d:de:fb:41:61:5d:67:65:b6:82:77:39:e0:b9:29:ea:a0:a8:
be:53:1f:8a:e4:de:4c:80:85:88:44:a1:29:a9:20:73:ee:4c:
52:cc:3e:2b:b1:d6:e3:9f:ab:74:0e:a7:b3:0d:98:35:57:b0:
8b:65:3e:d8:6f:01:36:d6:47:11:23:1c:fe:2e:ea:5b:8c:e2:
8f:4b:4e:36:76:97:9e:ee:f1:7f:da:6b:02:67:09:bf:2a:b5:
60:1a:34:02:64:e2:6a:b2:ad:ff:05:8f:53:c4:43:c1:f0:7f:
e4:58:8c:07:51:68:3c:58:c3:6f:98:19:3b:a7:c8:18:85:1a:
35:41:37:ee:23:bd:ab:d9:67:b8:15:6a:ae:bb:b0:78:9a:66:
36:73:98:a5:0f:b8:1b:a0:90:8c:c5:df:39:eb:ca:37:c1:6d:
9b:2a:a5:74:3d:7d:95:72:69:e6:22:da:92:f3:59:32:1c:53:
31:37:e9:d5:8e:23:26:4d:78:6c:b2:72:34:09:0b:ba:e6:bb:
c1:0a:73:8e:3e:b0:4a:d1:24:34:1b:89:4c:6b:d2:57:fb:f5:
a4:22:39:e6:c6:31:4a:78:3c:92:26:93:97:7d:aa:7a:b0:41:
5e:ce:13:f2:e0:b9:52:c5:47:eb:1d:1f:b6:4d:5b:3a:1a:ee:
24:21:37:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:54 2024 by rpki-client on console-fra.rpki-client.org