Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/YfXQC37wLqJ81FnnPhzwzCK2PFw.roa
File: YfXQC37wLqJ81FnnPhzwzCK2PFw.roa (raw, json)
Hash identifier: LYFsPG5MYwfcEMwpJwjeQPQIPmLId5ic9ELrJEKWEdg=
Subject key identifier: 61:F5:D0:0B:7E:F0:2E:A2:7C:D4:59:E7:3E:1C:F0:CC:22:B6:3C:5C
Certificate issuer: /CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Certificate serial: 01907525046FA5BE4CAF052C20AC2CB59156
Authority key identifier: F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/YfXQC37wLqJ81FnnPhzwzCK2PFw.roa
Signing time: Tue 02 Jul 2024 20:31:18 +0000
ROA not before: Tue 02 Jul 2024 20:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208626
IP address blocks: 2a12:1543::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 03 Oct 2024 11:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:75:25:04:6f:a5:be:4c:af:05:2c:20:ac:2c:b5:91:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Validity
Not Before: Jul 2 20:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61f5d00b7ef02ea27cd459e73e1cf0cc22b63c5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:18:81:37:b3:67:ca:1e:5b:a5:7a:37:58:5a:
02:87:72:86:b3:06:81:7e:62:7b:44:22:13:8e:81:
5d:39:fb:7b:ea:5c:22:b6:01:56:51:d9:ff:09:0f:
00:64:e3:1d:e8:68:ba:2f:c6:f9:6d:c3:4f:93:2c:
83:83:16:a6:0b:f4:29:16:9c:d8:6a:2a:d9:dd:39:
c4:78:7e:81:32:df:4f:0f:fb:cf:89:f8:d1:b3:7b:
c9:93:03:3d:e6:e6:ec:6d:1b:a2:a8:40:16:e1:bc:
81:9e:7e:db:da:25:a5:9d:71:85:99:9f:ea:29:08:
1c:c1:85:32:8f:cf:62:02:37:ff:73:8f:e3:25:11:
96:a5:ab:5d:ae:58:09:2f:d3:dc:58:4d:0b:bc:78:
24:e9:48:99:9b:68:da:82:8a:31:c3:73:9c:1a:7c:
7b:50:43:88:0b:88:75:ab:32:12:e5:ae:e9:05:a5:
60:9a:9f:b2:6b:d9:77:74:06:08:ab:0a:55:78:29:
a0:df:79:ef:03:5d:87:31:78:9f:11:13:a9:eb:e2:
85:01:20:6b:c4:78:e3:ef:8b:0e:35:02:fc:c7:28:
d1:20:f2:7d:6e:4b:05:fc:36:3e:ff:1d:5e:e4:5f:
5b:6c:68:81:38:fc:ad:70:f2:40:af:d6:28:03:c7:
f6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F5:D0:0B:7E:F0:2E:A2:7C:D4:59:E7:3E:1C:F0:CC:22:B6:3C:5C
X509v3 Authority Key Identifier:
keyid:F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/YfXQC37wLqJ81FnnPhzwzCK2PFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/912LUoFfPyYT6UiZLsn-Zg9pSbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:1543::/32
Signature Algorithm: sha256WithRSAEncryption
72:18:08:48:0d:2b:4f:13:3e:15:78:93:f6:f0:0b:db:d3:b9:
f4:59:48:c3:53:1f:13:d1:14:0e:e4:84:52:04:d1:f1:31:96:
c0:84:1c:4a:f3:d8:ac:f7:5b:ab:bb:fd:ca:81:e7:db:a4:7a:
fa:08:e9:4a:e6:54:da:d6:b0:ba:37:8a:52:58:f9:54:e8:c7:
ce:c9:b0:61:85:4c:00:10:52:30:31:6d:f5:a2:b8:a8:bc:c3:
20:25:77:79:d6:d5:25:a8:38:e4:24:f2:1b:e1:a8:53:aa:a1:
d0:7d:24:c8:74:a7:b7:c9:e8:71:ce:3c:c8:09:c0:97:cc:9b:
3e:b8:aa:d0:a2:e4:9f:e7:12:51:f9:95:5b:d2:8c:eb:89:25:
b5:8e:6a:be:83:6d:e8:60:3a:9f:af:02:10:b5:96:6d:79:bc:
c2:a0:40:7c:d9:79:e0:98:1d:18:93:e1:18:c6:66:11:8e:8a:
84:30:6c:b5:d4:f6:4d:f8:91:1c:31:f0:e3:83:5d:30:a4:b7:
9b:02:2f:2e:36:dc:42:d7:c5:75:8a:8c:20:2a:e1:aa:d3:05:
06:86:06:5d:aa:3e:09:c8:d4:d6:a4:08:56:6f:8b:5b:87:32:
83:50:ac:73:28:d5:eb:dc:6f:0f:a2:41:32:d8:f9:8a:47:2a:
a0:ac:70:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 15:30:06 2024 by rpki-client on console-ams.rpki-client.org