Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/xBx-enFpWv21Ez4H1UBOt-Eu518.roa
File: xBx-enFpWv21Ez4H1UBOt-Eu518.roa (raw, json)
Hash identifier: lqLYKa9CYgsHVLbXKW+epcTF1u44ivCMFpyBSHii8Xg=
Subject key identifier: C4:1C:7E:7A:71:69:5A:FD:B5:13:3E:07:D5:40:4E:B7:E1:2E:E7:5F
Certificate issuer: /CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Certificate serial: 018713B38823D45EE7BE6D3B427CF621EA28
Authority key identifier: BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/xBx-enFpWv21Ez4H1UBOt-Eu518.roa
Signing time: Fri 24 Mar 2023 12:59:05 +0000
ROA not before: Fri 24 Mar 2023 12:59:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57797
IP address blocks: 2a12:8ac0::/40 maxlen: 48
Validation: Failed, certificate revoked on Sat 25 Mar 2023 18:59:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:b3:88:23:d4:5e:e7:be:6d:3b:42:7c:f6:21:ea:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Validity
Not Before: Mar 24 12:59:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c41c7e7a71695afdb5133e07d5404eb7e12ee75f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:00:e4:36:9e:79:cd:5f:1d:8f:3c:bb:f4:a5:
0e:fa:c3:d9:82:ec:9d:d4:aa:c1:9b:f2:37:2f:da:
20:6a:02:a2:14:55:ea:dc:7d:ad:09:bf:c4:a0:cb:
26:32:a3:5c:f2:e4:79:41:93:ac:e4:ee:54:3c:a2:
eb:f9:28:33:5e:04:67:4e:55:4a:ff:cb:c6:48:47:
f5:27:d9:7a:c3:aa:73:74:77:9a:d7:ca:ba:44:bc:
80:a7:fe:65:da:3f:d3:d6:33:27:4d:36:12:2c:ef:
b7:99:38:af:e5:66:71:eb:af:49:2e:da:92:db:e7:
32:6a:3b:6c:db:d6:94:e7:b8:08:ee:aa:c8:12:4a:
3e:b3:ad:31:b1:de:18:de:1a:98:2d:40:ac:6a:bb:
05:f7:d4:fd:ca:cd:d0:0e:bc:66:24:01:17:40:84:
bf:b5:6a:2b:df:f4:d3:3f:bb:4d:0a:a2:60:60:ec:
c3:ce:6b:ea:09:d4:95:5b:7d:fa:b4:22:d9:83:4b:
0f:c4:41:c7:ba:2e:9b:b0:c9:2b:e1:5c:a2:b4:06:
67:c2:42:23:19:65:8f:a4:ce:dd:7f:7f:10:38:f8:
5e:22:e8:91:82:18:eb:4e:2a:ec:60:e4:26:8b:da:
e6:4b:31:12:87:32:89:43:24:72:50:57:26:b9:94:
96:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:1C:7E:7A:71:69:5A:FD:B5:13:3E:07:D5:40:4E:B7:E1:2E:E7:5F
X509v3 Authority Key Identifier:
keyid:BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/xBx-enFpWv21Ez4H1UBOt-Eu518.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8ac0::/40
Signature Algorithm: sha256WithRSAEncryption
5d:5f:78:13:3f:ea:c1:b4:1b:d4:a0:83:97:11:0a:7b:3d:35:
72:90:0a:c9:f6:a5:b1:43:5f:4a:29:37:4a:63:b1:f1:ea:de:
64:ea:5f:b3:33:d0:41:09:c2:b0:6e:f1:5b:4b:24:c9:dd:ee:
1f:f6:eb:df:37:fd:5f:f6:21:37:c6:f8:bc:0a:f2:82:f8:1b:
c9:b3:59:ea:6a:19:83:bb:22:2b:26:b1:19:f8:e5:34:eb:a8:
b9:0b:91:dd:f4:e0:c1:93:f2:36:ec:0b:8f:9d:18:06:fd:a7:
e8:f9:6a:d5:f5:f4:ab:18:68:a4:9d:4b:9f:8e:2e:ea:78:c7:
e3:c5:4a:54:f9:ad:9c:dd:27:b4:c6:5d:9b:a0:06:61:34:b5:
4b:56:96:bb:fd:f0:c8:54:f8:cf:62:d6:17:f5:c0:5c:4a:a7:
ab:6c:cc:8a:15:99:97:d5:24:ec:82:ba:64:27:4f:66:31:39:
b9:14:ef:48:45:94:09:71:9a:65:70:b7:36:ce:1a:0a:73:78:
06:eb:50:c3:f1:fc:f1:12:90:d2:03:50:c1:52:ed:bf:ef:fa:
5a:e9:da:e4:df:69:0d:1f:4b:7d:0d:11:d6:3a:e0:cb:3e:77:
6f:3b:28:6a:05:fe:a7:58:d3:81:a4:43:eb:fd:a5:36:9e:8f:
ac:24:15:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:01 2024 by rpki-client on console-fra.rpki-client.org