Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/Fv5t1fEzcvWLSZQJ8WSdIFe8xN0.roa
File: Fv5t1fEzcvWLSZQJ8WSdIFe8xN0.roa (raw, json)
Hash identifier: FQ8O5i2KvCfq8dOzijWOvpE3SFEQhE85vhSKE98pi5s=
Subject key identifier: 16:FE:6D:D5:F1:33:72:F5:8B:49:94:09:F1:64:9D:20:57:BC:C4:DD
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 0185E56A1918BDC88F7FA07C83340DECE288
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/Fv5t1fEzcvWLSZQJ8WSdIFe8xN0.roa
Signing time: Tue 24 Jan 2023 20:13:33 +0000
ROA not before: Tue 24 Jan 2023 20:13:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34465
IP address blocks: 2a12:8fc6:cd02::/48 maxlen: 48
2a12:8fc6:ace2::/48 maxlen: 48
2a12:8fc6:ace1::/48 maxlen: 48
2a12:8fc6:cd01::/48 maxlen: 48
2a12:8fc6:cae1::/48 maxlen: 48
2a12:8fc6:cd04::/48 maxlen: 48
2a12:8fc6::/32 maxlen: 32
2a12:8fc6:ce00::/48 maxlen: 48
2a12:8fc6:cd00::/48 maxlen: 48
2a12:8fc6:faa0::/48 maxlen: 48
2a12:8fc6:ca00::/48 maxlen: 48
2a12:8fc6:aa00::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 30 Jan 2023 12:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e5:6a:19:18:bd:c8:8f:7f:a0:7c:83:34:0d:ec:e2:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Jan 24 20:13:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16fe6dd5f13372f58b499409f1649d2057bcc4dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bb:7a:43:d2:9d:a9:26:42:22:92:8e:e4:e9:
08:04:f0:cc:c7:22:89:e7:75:16:74:39:a2:3e:2c:
d3:24:c0:c1:81:40:f4:32:69:aa:36:dc:a2:84:34:
35:38:79:8f:66:0a:6c:73:71:de:45:16:25:04:90:
3c:0c:50:0f:51:0f:5c:59:f0:58:a8:57:2e:d4:69:
b5:f2:e7:ec:db:0b:1b:73:61:61:65:42:23:48:c1:
ce:4b:41:94:48:ff:1e:5f:b2:84:1c:c5:f7:f8:ef:
11:e8:e1:8c:a3:77:76:7b:65:1a:9d:aa:5f:91:f8:
58:74:cb:80:9b:7e:59:a6:da:5d:58:5a:e3:a3:f9:
29:c8:66:0b:0a:ae:13:50:a3:eb:b5:26:66:48:9f:
80:a7:7d:23:8e:d9:09:26:db:d1:88:bf:fe:1f:aa:
f6:34:0c:65:0f:b2:bb:b7:43:80:e6:b8:d5:1a:e5:
22:c9:fe:74:53:3b:b0:e6:c3:31:a1:52:83:fb:f7:
ed:3e:22:b6:56:be:ff:e4:de:95:16:a9:b2:79:dd:
8d:b1:08:a4:0f:e0:d7:b6:ed:33:28:95:8f:f1:b1:
59:1d:94:d5:cc:9e:e5:15:33:b8:f6:96:5c:d6:89:
ff:de:f2:c9:97:96:a7:72:30:41:e2:6d:b0:05:89:
c0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:FE:6D:D5:F1:33:72:F5:8B:49:94:09:F1:64:9D:20:57:BC:C4:DD
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/Fv5t1fEzcvWLSZQJ8WSdIFe8xN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8fc6::/32
Signature Algorithm: sha256WithRSAEncryption
13:f0:36:b9:63:87:cc:b0:ff:0a:bd:d1:16:46:77:db:58:a6:
5b:64:c0:e5:5f:5d:12:d4:bb:32:74:c1:54:5c:b6:bf:4d:36:
bd:74:07:b9:b5:39:40:7d:ed:74:ed:82:44:6b:3c:48:01:62:
22:f2:56:59:2d:0b:64:b2:bc:33:90:a8:d6:01:8a:f9:4e:d4:
9b:9c:6f:58:db:45:7e:3b:0e:87:42:60:b5:fb:e2:28:7c:79:
ca:7a:4d:00:4d:a8:5d:2b:bc:2a:88:76:23:51:f4:ac:b4:b6:
97:ff:f9:76:ab:ba:30:3f:00:3f:31:39:81:7f:1e:cb:e9:73:
2b:1b:86:58:0d:5c:90:6d:6e:19:a8:b4:4e:72:99:cb:03:39:
df:cd:17:5c:5e:c9:a1:d2:37:71:c3:b0:d8:f3:20:10:e6:fa:
4c:05:58:60:f8:27:8c:ec:1b:6e:d0:55:a3:0e:d9:c8:77:84:
83:41:f8:07:69:31:bf:37:79:81:3e:80:cc:a0:10:86:ae:15:
49:69:02:97:a9:0f:a8:e8:98:ba:49:31:f9:ff:9a:eb:e7:36:
51:bb:71:5c:0e:87:67:8c:4d:3e:1d:12:7a:bc:bf:f7:14:e6:
e4:d0:5d:ab:d5:63:fe:b7:89:67:3d:df:aa:06:53:89:ad:b2:
28:ad:b4:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:13 2024 by rpki-client on console-fra.rpki-client.org