Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/1AT7ii4Ei6SO0hsGuChl94pqzF8.roa
File: 1AT7ii4Ei6SO0hsGuChl94pqzF8.roa (raw, json)
Hash identifier: xZHOfCcC1oBiDoIrymdsLd3n8BsjL+xYVSKwDXOqWZI=
Subject key identifier: D4:04:FB:8A:2E:04:8B:A4:8E:D2:1B:06:B8:28:65:F7:8A:6A:CC:5F
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 0186A7EE09C35976FB752D9AD53EFA502BF3
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/1AT7ii4Ei6SO0hsGuChl94pqzF8.roa
Signing time: Fri 03 Mar 2023 14:44:00 +0000
ROA not before: Fri 03 Mar 2023 14:44:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48734
IP address blocks: 2a12:8fc6:400::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a7:ee:09:c3:59:76:fb:75:2d:9a:d5:3e:fa:50:2b:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Mar 3 14:44:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d404fb8a2e048ba48ed21b06b82865f78a6acc5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:54:46:ab:3d:71:f9:cc:63:cf:39:6e:f6:cf:
68:d2:36:b5:81:15:3c:7c:92:be:a6:6a:71:d9:9e:
59:44:57:88:50:5c:11:55:ae:dd:8a:a4:b8:ef:6b:
0c:93:6c:d0:17:0a:83:52:83:85:07:94:b3:0e:20:
e9:65:85:47:68:c7:bf:38:2f:2f:80:e2:5d:9d:2b:
f7:ef:e1:c4:b1:6f:86:99:37:42:8d:a6:83:88:b5:
5a:ee:0c:6b:05:42:5d:68:cc:2c:72:e3:27:28:84:
47:08:0b:77:f3:e9:4d:f8:cd:62:bf:f0:48:ef:fc:
63:e0:17:86:6b:a0:a6:53:ef:6f:23:d0:54:d5:f0:
ab:c9:88:2f:ef:64:c8:50:2c:20:58:5a:1b:4f:ed:
36:97:ee:28:d0:88:35:ca:e1:55:2b:5a:69:87:a1:
23:61:45:a6:d5:e2:24:0e:52:ad:4c:8c:d8:1f:4f:
17:e1:9e:d5:e5:0e:52:00:83:06:83:04:ec:d9:26:
a6:c7:85:95:c7:16:fa:15:ac:2c:fa:35:91:48:8f:
9c:9a:d5:0b:e7:18:93:e4:5b:89:ae:6f:22:3a:d9:
83:f6:de:c9:21:b6:97:e3:73:32:a5:8a:07:f8:0f:
49:f1:7d:14:db:1b:f9:ea:d5:32:26:3b:26:58:e5:
0a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:04:FB:8A:2E:04:8B:A4:8E:D2:1B:06:B8:28:65:F7:8A:6A:CC:5F
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/1AT7ii4Ei6SO0hsGuChl94pqzF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8fc6:400::/48
Signature Algorithm: sha256WithRSAEncryption
78:06:00:cf:92:69:28:e5:bf:00:b9:3d:0e:a6:f8:4d:2a:c7:
0f:d2:de:26:3b:cc:21:de:3f:8d:05:e1:89:e4:de:bf:b9:68:
70:27:e5:5d:40:f3:ea:42:3a:00:39:37:25:f7:c7:80:25:c3:
96:f2:fe:f7:53:e2:27:2f:6b:d2:32:6d:b9:c7:66:4e:88:19:
36:0b:97:7a:ec:4e:f1:bc:c4:a1:39:ef:62:00:16:33:67:89:
ee:f7:f5:53:3d:d3:a0:55:38:51:50:e0:0b:c2:77:58:10:bd:
87:20:ce:48:f4:06:2f:89:0a:da:b8:b1:53:bd:0e:3c:15:dc:
0c:50:3b:6c:b1:ed:4c:39:2f:41:57:95:e3:2d:7b:3a:85:49:
a4:c6:d7:c7:b4:e5:b5:f5:2b:13:a2:32:09:cc:ae:5b:24:e5:
63:05:10:f0:39:86:3d:a1:d0:9d:c1:a5:19:8b:c2:99:6f:21:
20:df:7e:f1:48:c7:8d:08:65:b2:47:c5:55:d7:b5:77:5a:f1:
10:a2:2f:4e:ae:73:7c:db:3b:b9:9d:78:de:02:79:b7:ca:3d:
12:d0:dd:5e:fc:38:22:e3:f1:fc:bb:c1:07:94:d6:b6:95:32:
59:3d:78:43:21:50:62:64:07:07:fa:cf:d4:6d:3d:66:1d:ef:
51:ba:47:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:13 2024 by rpki-client on console-fra.rpki-client.org