Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/rnrtIZCo_UcP_uclojgZ6DOmLrc.roa
File: rnrtIZCo_UcP_uclojgZ6DOmLrc.roa (raw, json)
Hash identifier: HLLfl1LSnDet6HDTJ837D+0lpvdic+t2lOcBcaV8kBY=
Subject key identifier: AE:7A:ED:21:90:A8:FD:47:0F:FE:E7:25:A2:38:19:E8:33:A6:2E:B7
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018D383CE7B3A0E958492EC77CD976382025
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/rnrtIZCo_UcP_uclojgZ6DOmLrc.roa
Signing time: Tue 23 Jan 2024 21:32:11 +0000
ROA not before: Tue 23 Jan 2024 21:32:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 2a12:ec0::/29 maxlen: 32
2a12:1900::/29 maxlen: 32
Validation: Failed, certificate revoked on Thu 08 Feb 2024 11:39:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:38:3c:e7:b3:a0:e9:58:49:2e:c7:7c:d9:76:38:20:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jan 23 21:32:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae7aed2190a8fd470ffee725a23819e833a62eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d6:3c:ef:b1:4c:60:41:03:9e:aa:d1:2e:12:
8f:73:5b:15:bf:1d:86:96:2d:48:40:4f:b5:f9:f8:
be:92:32:0f:8d:7f:f0:b4:30:80:b2:3d:68:2f:f0:
46:8f:c2:f4:1f:15:af:5d:00:46:15:a5:ae:bc:cb:
ee:69:f4:97:37:c7:d7:de:db:24:65:43:0a:81:de:
00:1d:05:36:35:cd:4b:1a:f4:e1:87:30:80:bf:58:
0b:0c:d6:f8:10:7a:b8:fd:bf:0c:8d:cf:1a:8a:04:
87:dc:31:ec:1f:83:be:16:2d:c8:7f:23:e0:29:82:
a0:8a:2a:5f:03:fd:83:1e:7f:d9:15:15:93:d3:bb:
18:36:8d:a1:af:26:dc:af:b7:ce:00:34:09:ab:54:
5d:ea:ef:c5:59:77:43:ba:ae:94:bf:4c:c5:4c:3e:
bf:35:f5:31:d5:b9:d2:b1:f0:10:7f:ce:bc:00:08:
4d:e1:ff:bb:2c:bc:a3:0a:91:ce:01:3d:d3:ea:6d:
07:99:89:d9:1a:42:97:20:97:c9:2d:e8:5e:da:5f:
fa:99:57:ef:26:bb:f1:36:e6:3c:88:bf:d4:00:a0:
a8:54:0f:70:f5:bb:02:e9:0d:6d:c4:c7:e4:71:ce:
7e:c4:da:ae:9b:39:ca:06:28:41:cf:9f:a4:5b:ab:
c3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:7A:ED:21:90:A8:FD:47:0F:FE:E7:25:A2:38:19:E8:33:A6:2E:B7
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/rnrtIZCo_UcP_uclojgZ6DOmLrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:ec0::/29
2a12:1900::/29
Signature Algorithm: sha256WithRSAEncryption
82:f9:c3:e8:5e:cb:7e:4d:e6:97:d9:cd:17:32:a4:fe:b3:12:
92:20:7b:64:33:e3:4d:c6:c2:20:0a:7e:79:2e:ec:42:8f:ba:
f1:4c:e4:fb:28:8d:87:8e:5d:20:93:d3:cd:db:77:44:c6:b2:
4c:01:b6:a9:63:e3:f3:ce:05:1e:cd:8e:fc:14:26:68:b4:8d:
93:5f:bf:a1:f0:13:85:c7:27:0e:a1:36:d9:6f:ef:80:6b:98:
b1:a1:bb:e3:01:4c:49:b1:7d:98:ce:a2:4b:01:bb:3c:85:67:
4d:dd:32:ff:ae:5f:3a:e1:c4:0a:5d:79:4e:58:15:4d:2b:9c:
1d:bd:47:2f:03:ba:14:d1:0e:89:20:ee:8d:b3:b2:b7:8d:e0:
46:5c:62:6b:ac:02:fa:45:2c:0d:72:98:3a:b0:e2:e9:16:5b:
9e:69:a9:00:d8:ac:e7:7b:33:3b:8d:af:b7:f0:a4:2b:6a:3b:
2b:fd:55:d6:0c:33:2b:b8:0b:c9:e6:16:ea:33:7f:07:88:2c:
ff:b1:e5:eb:79:74:1c:23:7e:50:ce:ab:03:0b:c2:e0:a9:06:
5a:52:67:62:ed:a6:03:47:b0:ca:83:de:78:5a:68:f2:b7:55:
5d:b7:3b:0e:65:9f:2e:5e:a5:fe:8f:24:37:f1:d0:2b:9e:db:
0a:1f:82:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:03 2024 by rpki-client on console-ams.rpki-client.org