Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/jVXMYIlRQYtoknc_B7o59XndoZc.roa
File: jVXMYIlRQYtoknc_B7o59XndoZc.roa (raw, json)
Hash identifier: d3+7D3BnP56ZWlso3zMagZxzzFbSsvuAwt3YFbUgLfU=
Subject key identifier: 8D:55:CC:60:89:51:41:8B:68:92:77:3F:07:BA:39:F5:79:DD:A1:97
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0190960034F716D25FF0C34B987C88B10117
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/jVXMYIlRQYtoknc_B7o59XndoZc.roa
Signing time: Tue 09 Jul 2024 05:38:34 +0000
ROA not before: Tue 09 Jul 2024 05:38:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215436
IP address blocks: 2a12:1900::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 24 Aug 2024 10:40:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:96:00:34:f7:16:d2:5f:f0:c3:4b:98:7c:88:b1:01:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jul 9 05:38:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d55cc608951418b6892773f07ba39f579dda197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f3:19:51:b6:d4:65:d1:8f:55:91:d9:0e:50:
87:20:44:21:cd:84:20:f2:13:e0:1f:cf:08:2d:37:
20:e9:b7:97:c2:4a:01:49:5a:e6:a3:eb:ab:18:af:
be:d5:5d:46:7c:0c:9f:40:c1:bb:c0:be:d2:06:d2:
3f:7e:65:5f:1a:74:45:55:cf:6a:6a:84:ac:38:ed:
2b:b0:86:51:f3:f7:d4:e3:31:3c:52:1b:0a:d2:d3:
b2:83:4a:8e:ac:7a:fc:ee:48:09:33:ac:84:0f:5a:
9f:0a:1d:23:b6:7c:ce:f7:51:4c:7e:ae:a2:22:cb:
5a:0b:73:1a:42:eb:cc:7a:92:c2:6c:5c:92:35:68:
a3:c6:1e:fd:91:b4:58:11:2e:2f:fa:3c:20:e7:95:
0f:27:13:97:2c:81:cc:42:b9:7f:0d:4b:d9:25:c6:
74:e9:6e:b1:81:15:c3:cf:6f:62:0e:f2:59:7d:70:
2d:b5:3f:13:38:4d:5c:6d:63:2f:7f:18:9a:e9:68:
24:ff:2c:85:ae:cc:5d:89:2a:ba:08:be:8e:82:f5:
78:64:1d:d2:6d:f5:19:db:33:77:4d:6e:28:dc:e1:
a7:75:06:59:94:2f:04:92:d9:6f:7d:b2:db:ae:30:
c3:8f:b2:40:12:c1:31:44:a8:59:40:98:fb:dd:47:
50:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:55:CC:60:89:51:41:8B:68:92:77:3F:07:BA:39:F5:79:DD:A1:97
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/jVXMYIlRQYtoknc_B7o59XndoZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:1900::/29
Signature Algorithm: sha256WithRSAEncryption
1a:57:7a:f8:75:72:8f:b4:41:82:62:08:03:1a:84:5f:26:28:
d9:39:b2:91:f7:ed:dd:7c:f0:f9:82:9e:df:ec:82:3e:3f:63:
23:28:9e:0a:ad:32:db:b0:73:e1:91:df:df:4a:8d:75:28:5e:
4a:3a:31:46:02:73:5c:b0:c8:6b:80:d4:1e:09:d8:d5:1f:47:
a1:0b:b8:94:4b:ae:27:84:59:b1:9b:25:44:95:06:df:28:82:
90:f3:b4:9d:36:37:6a:88:70:58:1f:24:a6:a2:96:6f:ce:6a:
62:52:a7:ed:e9:5c:d4:df:ce:b9:d6:fd:79:ce:b3:72:63:34:
f8:15:9e:52:e1:12:67:25:ee:0c:52:1a:81:cb:62:11:51:9c:
98:ab:8f:03:37:a8:4d:37:cb:1c:72:ff:2b:a9:b1:15:98:0f:
b6:87:ab:43:18:89:76:da:02:0d:9a:5c:fd:22:9b:91:12:a4:
c8:9f:2e:39:5a:4c:45:76:b2:13:08:47:0a:c1:e8:92:c4:37:
a6:1a:83:d9:e9:c7:86:f3:17:cd:a2:e4:de:d2:7a:5a:0e:22:
1b:08:6a:be:66:21:83:31:5e:10:42:bb:71:e4:83:9b:c4:00:
6b:46:fd:8c:ea:cf:2e:89:36:a0:bf:47:a1:78:83:d8:a3:d8:
04:3a:27:0a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZCWADT3FtJf8MNLmHyIsQEXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwNzA5MDUzODM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDU1Y2M2MDg5NTE0MThiNjg5Mjc3M2YwN2JhMzlmNTc5ZGRhMTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvMZUbbUZdGPVZHZDlCHIEQhzYQg
8hPgH88ILTcg6beXwkoBSVrmo+urGK++1V1GfAyfQMG7wL7SBtI/fmVfGnRFVc9q
aoSsOO0rsIZR8/fU4zE8UhsK0tOyg0qOrHr87kgJM6yED1qfCh0jtnzO91FMfq6i
IstaC3MaQuvMepLCbFySNWijxh79kbRYES4v+jwg55UPJxOXLIHMQrl/DUvZJcZ0
6W6xgRXDz29iDvJZfXAttT8TOE1cbWMvfxia6Wgk/yyFrsxdiSq6CL6OgvV4ZB3S
bfUZ2zN3TW4o3OGndQZZlC8EktlvfbLbrjDDj7JAEsExRKhZQJj73UdQEQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFI1VzGCJUUGLaJJ3Pwe6OfV53aGXMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvalZYTVlJbFJRWXRva25jX0I3bzU5WG5kb1pjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhIZADAN
BgkqhkiG9w0BAQsFAAOCAQEAGld6+HVyj7RBgmIIAxqEXyYo2Tmykfft3Xzw+YKe
3+yCPj9jIyieCq0y27Bz4ZHf30qNdSheSjoxRgJzXLDIa4DUHgnY1R9HoQu4lEuu
J4RZsZslRJUG3yiCkPO0nTY3aohwWB8kpqKWb85qYlKn7elc1N/Oudb9ec6zcmM0
+BWeUuESZyXuDFIagctiEVGcmKuPAzeoTTfLHHL/K6mxFZgPtoerQxiJdtoCDZpc
/SKbkRKkyJ8uOVpMRXayEwhHCsHoksQ3phqD2enHhvMXzaLk3tJ6Wg4iGwhqvmYh
gzFeEEK7ceSDm8QAa0b9jOrPLok2oL9HoXiD2KPYBDonCg==
-----END CERTIFICATE-----
Generated at Sat Aug 24 13:31:59 2024 by rpki-client on console-fra.rpki-client.org