Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/Hx4P7bI-23Xb7dUaD_HJKgsbpv0.roa
File: Hx4P7bI-23Xb7dUaD_HJKgsbpv0.roa (raw, json)
Hash identifier: wOrBzFNn+k38iwCy0/651LeK9MMME+qgTVXK6MuMwec=
Subject key identifier: 1F:1E:0F:ED:B2:3E:DB:75:DB:ED:D5:1A:0F:F1:C9:2A:0B:1B:A6:FD
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 0187A975C9EF64C44C824820B6B96D051AE4
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/Hx4P7bI-23Xb7dUaD_HJKgsbpv0.roa
Signing time: Sat 22 Apr 2023 14:54:41 +0000
ROA not before: Sat 22 Apr 2023 14:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 932
IP address blocks: 2a12:a380::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a9:75:c9:ef:64:c4:4c:82:48:20:b6:b9:6d:05:1a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Apr 22 14:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f1e0fedb23edb75dbedd51a0ff1c92a0b1ba6fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e1:f1:d4:05:92:40:f5:2f:3b:a7:7f:a9:c2:
ca:69:ad:49:e1:cf:04:94:10:cd:00:4f:1c:a3:a9:
c6:b9:7b:82:4a:e0:49:59:c9:d3:ab:4d:4a:c5:00:
f0:65:6a:bc:ba:b6:e6:82:85:b0:14:ad:a9:0d:83:
bf:36:3a:44:28:b2:30:21:fe:4f:7f:17:d6:9f:e6:
e6:2e:4c:98:b8:ad:40:e4:20:29:a7:dc:5e:5b:c3:
f6:d5:8c:86:42:a2:94:e2:fd:79:73:45:3e:cc:53:
ae:36:2d:95:e4:ed:04:dd:70:cc:63:a9:5c:d1:d7:
07:96:97:d6:8f:2b:37:f5:28:07:0f:eb:e6:01:6c:
8c:d7:33:0c:f2:d4:8c:0c:41:d4:ac:96:72:d7:02:
72:15:8f:a7:d2:df:7a:2d:67:f8:16:f3:e4:a8:68:
da:6e:2d:12:01:96:bc:19:9b:f2:0f:c5:77:93:cf:
c0:b0:12:54:5d:87:c2:74:7d:e4:af:70:ee:1a:7d:
e7:8d:98:4b:ab:85:e6:bc:85:25:80:ec:89:12:9c:
2c:91:a8:58:27:8c:9c:f7:5f:7b:0b:c9:a6:79:f6:
87:3e:93:f2:fd:c9:cc:19:af:10:32:01:f1:41:c2:
d5:de:3c:4d:d4:9e:de:db:e8:f4:2b:d8:c5:fc:1c:
ad:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1E:0F:ED:B2:3E:DB:75:DB:ED:D5:1A:0F:F1:C9:2A:0B:1B:A6:FD
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/Hx4P7bI-23Xb7dUaD_HJKgsbpv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:a380::/29
Signature Algorithm: sha256WithRSAEncryption
4f:f3:4d:9c:a5:3d:18:f5:b8:47:d7:a4:fd:2b:94:70:03:ad:
8f:79:90:ec:a9:d1:59:80:fc:1f:1a:d3:1c:21:53:52:8b:63:
cf:cf:33:26:83:07:46:fe:64:5f:8e:0c:85:78:19:46:0d:72:
0f:ae:c8:cc:d9:cd:68:b7:c4:2b:40:08:6d:a3:31:07:54:7c:
00:0f:cb:da:84:bc:e2:d3:9a:84:93:e4:95:2b:fa:f6:f6:10:
c3:8b:98:8a:b2:1d:d1:cd:14:2b:61:16:08:ea:89:48:e9:70:
82:ad:de:33:d3:d8:3c:4a:e2:36:e0:d9:a1:66:dd:15:fa:f4:
7a:50:f2:ae:c4:58:df:26:40:0d:3b:f4:5f:cd:75:1b:c4:61:
bb:42:9b:64:00:ac:25:93:42:be:a6:d5:2f:6a:95:a6:0a:8a:
70:07:81:ee:29:32:23:fa:63:b3:27:57:ef:a5:76:61:2e:86:
01:59:94:49:4d:03:62:48:94:d6:1a:b5:b2:47:28:6e:8a:2d:
57:2d:8c:66:cc:17:63:b7:03:a5:e9:9d:2c:fe:68:ad:28:99:
8d:30:24:5b:24:76:c1:07:b0:fc:a3:3f:b1:17:59:fd:8b:4d:
1e:80:2d:c7:01:1c:20:df:fe:5b:5d:b0:60:50:a0:43:08:db:
ed:70:b6:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:13 2024 by rpki-client on console-fra.rpki-client.org