Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/m7_wno-ypbTNinQ-ZN9sWi13GxI.roa
File: m7_wno-ypbTNinQ-ZN9sWi13GxI.roa (raw, json)
Hash identifier: XFMoGKIRRwEjqhxKO1BlcgXGUIGdRkSHGZsR3cMNVMU=
Subject key identifier: 9B:BF:F0:9E:8F:B2:A5:B4:CD:8A:74:3E:64:DF:6C:5A:2D:77:1B:12
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 018FCAF076FA0CC9718BD832181F9CD2AE8B
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/m7_wno-ypbTNinQ-ZN9sWi13GxI.roa
Signing time: Thu 30 May 2024 19:18:27 +0000
ROA not before: Thu 30 May 2024 19:18:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 401110
IP address blocks: 2a12:8fc6:4011::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 31 Jul 2024 12:40:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ca:f0:76:fa:0c:c9:71:8b:d8:32:18:1f:9c:d2:ae:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: May 30 19:18:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9bbff09e8fb2a5b4cd8a743e64df6c5a2d771b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:33:39:67:b7:71:58:5b:8f:65:ef:d1:45:57:
eb:55:ac:bc:90:76:56:bf:c1:cd:8e:53:61:b6:be:
00:29:a0:84:cf:b2:01:60:88:31:da:da:c3:67:a0:
9a:e3:5f:1f:af:1f:f5:89:ba:70:57:d6:aa:71:1a:
16:1f:7c:6f:f0:8c:ca:31:33:64:b7:30:fa:ad:09:
29:37:ce:04:e0:24:24:44:e8:b3:4a:c8:f5:2d:c4:
73:50:a8:b9:d4:6e:ce:32:f9:4c:87:6f:12:d4:0f:
1c:c1:42:92:a8:5f:72:20:61:4a:05:99:c5:12:fa:
59:c5:33:87:47:ab:24:51:b7:67:b8:99:bf:0d:e1:
1e:c0:c6:3d:88:14:ea:85:21:ba:fd:b8:82:c3:45:
87:28:ca:83:ab:81:15:5f:75:eb:e9:3b:43:20:64:
8e:d5:23:f0:34:fc:d6:39:94:d8:09:9a:cc:6f:af:
cd:8f:87:c8:e7:41:22:19:44:0f:77:e5:b6:7a:91:
d7:ab:53:31:eb:d6:b2:34:63:33:7a:eb:72:48:6c:
27:7e:a1:4b:b1:dc:65:98:51:80:3d:45:09:9c:9f:
94:ce:33:9a:99:6f:2f:70:39:3c:49:60:20:72:b0:
de:a4:43:14:a1:e7:31:d0:95:97:b5:52:98:72:d6:
22:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:BF:F0:9E:8F:B2:A5:B4:CD:8A:74:3E:64:DF:6C:5A:2D:77:1B:12
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/m7_wno-ypbTNinQ-ZN9sWi13GxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8fc6:4011::/48
Signature Algorithm: sha256WithRSAEncryption
05:90:7b:ae:52:94:5b:3a:53:5c:e4:66:e7:5f:b6:13:4d:c8:
ba:53:29:9a:6b:ac:97:f7:56:cf:ae:94:21:32:8e:00:6e:9b:
5f:b4:bc:51:83:12:82:98:fc:e8:4b:64:a9:3c:9c:38:d4:f0:
39:87:f7:94:77:79:b9:73:69:af:2c:f1:62:59:a8:8f:4b:25:
11:d6:75:8f:2d:47:59:22:6b:4c:b9:cd:d0:77:48:98:98:ff:
2b:a4:d6:28:99:00:c7:cf:b3:95:e5:f2:09:3c:8b:c1:7d:c5:
9b:86:25:dc:08:6b:da:40:32:d1:70:a1:7b:8d:14:9d:71:82:
ef:e8:d8:11:2e:1f:24:06:59:28:b8:c0:f6:98:4c:60:4f:47:
c4:4b:e4:02:5b:10:6b:b2:ed:e7:63:38:f5:2b:a1:6e:da:8f:
b8:1e:e2:6a:98:b3:f1:cb:8e:bf:f6:3d:d5:5e:26:f0:5a:8d:
3f:f0:e4:29:47:27:9b:00:39:61:b4:1c:3b:97:cb:47:ed:6c:
d2:22:ef:57:3c:71:0a:c8:2e:27:93:53:04:62:f4:ab:72:bc:
c2:0b:53:ed:fc:f7:10:95:b9:4b:19:ab:90:d9:b6:d9:fa:51:
ab:34:b6:7e:93:cd:e0:9b:2a:75:3e:e6:f2:d0:04:7f:b9:fd:
65:68:ac:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 14:29:33 2024 by rpki-client on console-fra.rpki-client.org