Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/1j2um97wQ6M4SvnTwjkL-Xo76u8.roa
File: 1j2um97wQ6M4SvnTwjkL-Xo76u8.roa (raw, json)
Hash identifier: 0Xe+opuhqZqfMZtkRdbPe8Cwp+h7DoYUC5k/tylLv7U=
Subject key identifier: D6:3D:AE:9B:DE:F0:43:A3:38:4A:F9:D3:C2:39:0B:F9:7A:3B:EA:EF
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F813599CFCB98E18EC71B7A56D8BF2080
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/1j2um97wQ6M4SvnTwjkL-Xo76u8.roa
Signing time: Thu 16 May 2024 11:42:04 +0000
ROA not before: Thu 16 May 2024 11:42:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a12:22c0::/29 maxlen: 29
2a12:31c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 16 May 2024 19:16:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:35:99:cf:cb:98:e1:8e:c7:1b:7a:56:d8:bf:20:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 16 11:42:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d63dae9bdef043a3384af9d3c2390bf97a3beaef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:08:04:57:c2:08:08:68:69:fb:6e:f2:a0:57:
12:61:1e:90:09:1e:ee:2b:94:51:49:35:19:b0:0d:
c0:30:07:5a:a6:09:67:1b:84:a9:8e:2b:be:65:2a:
0b:4c:67:09:e8:a8:9a:89:18:bd:17:be:08:d7:33:
2d:fb:3b:d1:eb:eb:3c:1d:26:fa:43:70:af:e5:02:
31:ce:05:75:b2:7f:87:84:17:92:82:00:f6:e1:7d:
40:cf:e3:bf:a0:e9:f5:28:68:66:25:7f:08:54:f9:
e5:45:b2:ca:65:2f:2e:32:c8:d9:46:b2:57:19:dc:
be:3f:bd:2d:2c:07:cf:e5:e6:da:e2:5e:9e:0a:91:
f9:d1:2c:a8:1d:db:9a:f4:29:e5:e1:a0:04:e8:23:
fa:e0:a9:35:4f:e1:a6:4d:9b:85:f9:9e:45:b7:71:
56:97:5e:64:c6:79:7b:24:86:b1:3a:a8:e9:21:8d:
41:5e:52:ab:81:d2:bd:65:4b:49:7a:87:b3:2b:d3:
2b:4d:28:04:0f:b0:c2:5e:cb:27:85:c2:57:e8:61:
05:a2:d6:29:4a:73:88:e3:6b:9f:0e:3d:af:8d:f6:
41:d9:7a:16:44:38:2a:96:44:3f:8c:ea:e7:2d:8d:
a3:45:5b:57:e1:b1:12:b8:61:04:d6:e5:45:de:81:
59:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3D:AE:9B:DE:F0:43:A3:38:4A:F9:D3:C2:39:0B:F9:7A:3B:EA:EF
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/1j2um97wQ6M4SvnTwjkL-Xo76u8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:22c0::/29
2a12:31c0::/29
Signature Algorithm: sha256WithRSAEncryption
55:db:b3:42:cb:25:39:7b:0d:44:a8:8c:f6:be:30:a5:d7:9c:
dd:00:e9:74:27:56:1c:f2:64:ee:7e:f1:ea:a7:96:aa:5d:d1:
97:73:13:1f:aa:97:34:6a:23:30:de:88:a2:73:75:d8:2d:f0:
6c:8f:a2:24:ab:f8:7b:2e:4c:ed:90:df:8f:d0:ec:ad:89:09:
18:89:37:13:38:29:fe:5b:c2:8b:1b:f4:73:ca:24:1a:f7:6f:
78:f5:a9:e2:85:fe:67:e8:05:16:1a:48:ab:eb:d0:b5:ac:c5:
fb:a0:fb:27:f5:04:e0:a4:80:53:5e:98:ec:ec:3e:98:fd:49:
87:f1:af:db:c0:e7:fe:57:88:9e:9f:9d:9f:1b:ac:ae:5e:28:
e2:38:76:79:67:81:03:ea:b4:1c:3d:33:19:09:4e:99:26:9e:
ef:04:e2:89:76:22:67:e8:be:fa:bb:16:db:97:cb:ca:68:c5:
cb:9a:ef:22:50:a1:95:ba:4b:51:fa:b0:8b:ab:a4:f8:82:0b:
57:41:cb:0e:e8:3d:fc:77:1c:12:17:36:91:72:61:68:cf:7f:
72:a9:32:2d:da:63:78:e5:94:68:54:79:4b:e4:d3:50:4d:81:
b7:5e:c7:e5:cf:89:64:22:40:36:df:93:e5:8c:67:74:08:60:
92:ff:73:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 21:09:49 2024 by rpki-client on console-fra.rpki-client.org