Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/06StKlOWesxDTM_OjOjHkGTPY20.roa
File: 06StKlOWesxDTM_OjOjHkGTPY20.roa (raw, json)
Hash identifier: wt4dJKX4yJZNU8GHxu6QrG5uwj1v808ZUl0hGTehKCI=
Subject key identifier: D3:A4:AD:2A:53:96:7A:CC:43:4C:CF:CE:8C:E8:C7:90:64:CF:63:6D
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 0186A3743D45C3A31939C97A9B1B966892DB
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/06StKlOWesxDTM_OjOjHkGTPY20.roa
Signing time: Thu 02 Mar 2023 17:52:29 +0000
ROA not before: Thu 02 Mar 2023 17:52:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 932
IP address blocks: 2a12:a380::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Mar 2023 18:06:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a3:74:3d:45:c3:a3:19:39:c9:7a:9b:1b:96:68:92:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Mar 2 17:52:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3a4ad2a53967acc434ccfce8ce8c79064cf636d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6f:55:2c:61:07:51:76:9c:2d:7d:3e:be:ef:
5b:dc:07:e4:2c:99:e4:70:56:11:36:e4:27:82:c4:
38:6f:cf:a8:66:f4:26:81:49:34:da:ce:30:e4:c5:
5d:78:e0:0c:8a:50:49:ab:28:5e:80:1f:53:36:ab:
37:33:57:27:9b:54:90:3b:52:4d:e2:ab:a2:90:ea:
50:0b:7e:85:0f:c9:9e:3f:68:71:32:b5:69:0e:49:
bb:f6:51:36:97:c4:57:ce:8f:d3:a8:b4:23:ab:c9:
52:50:ba:75:2a:1c:4c:3d:70:da:12:17:47:7f:cc:
ff:de:65:81:de:f4:78:95:a2:a8:27:1a:f6:66:42:
6c:86:1d:f2:61:7e:9b:6c:fe:7a:01:eb:0d:a2:0d:
29:d2:6e:45:72:7b:27:af:53:9b:a1:9f:0a:c4:ad:
a6:bd:ed:43:3f:76:7f:88:fd:76:5d:51:ec:b5:36:
f1:a4:77:7d:5e:ab:10:71:a8:04:60:37:45:42:1d:
39:60:ee:bd:1e:27:e8:b5:23:8f:b6:51:30:ce:b2:
6f:c7:e0:ca:e3:80:0e:24:85:62:d5:c9:43:a8:5e:
16:5d:e9:d8:73:8a:45:2b:29:c7:50:ff:56:78:74:
7a:05:ec:3c:47:d6:92:ad:9b:e7:db:d4:00:1a:03:
b6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A4:AD:2A:53:96:7A:CC:43:4C:CF:CE:8C:E8:C7:90:64:CF:63:6D
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/06StKlOWesxDTM_OjOjHkGTPY20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:a380::/48
Signature Algorithm: sha256WithRSAEncryption
48:38:10:0b:b4:fe:1e:10:25:bc:42:6b:60:3a:34:66:e9:62:
35:2a:1d:6c:bd:15:bc:b2:73:2e:12:15:3b:27:f5:35:38:dc:
08:84:a6:12:67:dc:c7:66:94:00:af:f7:c7:7e:d5:9d:08:cb:
ca:8b:ca:7d:78:a0:b0:00:9e:a6:b9:e1:ca:ee:7b:1c:1d:92:
42:1f:4a:f9:de:d2:b0:e7:fc:08:0a:f5:11:0f:0e:79:f5:0e:
71:1d:99:86:a8:9f:4e:56:4c:bd:91:6b:fe:a6:39:17:1f:7a:
41:55:58:f2:fd:53:5e:24:0e:04:a8:e5:b4:d0:63:f1:9e:9b:
4a:ae:91:3c:23:6c:84:d2:34:b9:59:f1:f7:f3:e9:d8:51:9a:
e1:5f:78:51:3d:72:a3:b8:73:68:e0:11:da:f3:61:86:31:09:
67:a3:d5:1e:e3:9c:85:92:f9:23:27:eb:d2:6f:d8:be:09:ef:
87:44:81:33:ce:07:1c:43:fd:2a:3f:d3:97:84:06:ff:39:fc:
8a:a1:77:4e:b5:bb:25:40:aa:b6:7f:c6:59:f3:7c:20:41:23:
66:cc:74:fa:54:4b:90:cb:33:30:d8:55:9f:91:75:65:1f:f5:
64:f1:62:36:6b:b8:90:74:b9:29:9c:4f:61:81:aa:34:e7:2f:
69:f0:21:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:11 2024 by rpki-client on console-ams.rpki-client.org