Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/HDiZsG2MJv3VlYgP4hY76z7tLb4.roa
File: HDiZsG2MJv3VlYgP4hY76z7tLb4.roa (raw, json)
Hash identifier: P4Zh4ka5UzwTJ3W7UZ8cIGNBsRdLfivx39VzDetuCpE=
Subject key identifier: 1C:38:99:B0:6D:8C:26:FD:D5:95:88:0F:E2:16:3B:EB:3E:ED:2D:BE
Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Certificate serial: 0190149901A072C26B990F955795E9D562A4
Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/HDiZsG2MJv3VlYgP4hY76z7tLb4.roa
Signing time: Fri 14 Jun 2024 02:34:50 +0000
ROA not before: Fri 14 Jun 2024 02:34:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215245
IP address blocks: 2a14:6782::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 09 Jul 2024 20:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:14:99:01:a0:72:c2:6b:99:0f:95:57:95:e9:d5:62:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Validity
Not Before: Jun 14 02:34:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c3899b06d8c26fdd595880fe2163beb3eed2dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:75:08:7a:99:12:71:e1:31:58:54:3a:d4:6e:
d1:04:72:18:13:15:b5:90:26:b8:09:0f:e5:60:23:
3b:15:2f:b6:32:b0:79:90:22:4d:79:cb:9f:08:cc:
7a:97:04:32:6e:0c:91:e1:78:5e:43:68:d0:eb:29:
0b:7d:88:f7:f4:52:18:e0:20:30:92:3d:39:a5:1c:
24:99:8f:3e:61:9e:e9:54:e1:64:9f:1e:dd:e3:d2:
69:99:84:5a:e6:19:28:b2:93:38:70:15:2d:d6:8e:
78:c8:2f:a3:c9:b5:6a:1b:88:85:20:ef:63:79:32:
9f:5b:a7:e4:91:09:05:ce:18:44:17:96:2e:c2:3d:
15:42:18:ad:19:3d:e8:87:cd:c5:fc:7d:19:a1:6a:
8b:dc:87:9b:6a:7f:73:a0:e2:eb:ce:1b:d3:ed:84:
c4:f2:1e:7a:4c:16:2f:f1:c3:69:bb:d0:55:cd:0b:
77:8b:0c:79:ae:c7:86:58:22:c5:dd:28:ec:59:70:
ab:0c:fb:9c:96:3d:99:d2:36:c2:d9:30:18:1a:66:
f5:31:e2:4f:77:c9:ce:76:2e:57:f4:96:96:be:d3:
80:b3:9a:88:bd:5e:79:91:c2:18:6a:d2:a0:57:79:
ad:10:f2:f0:77:79:6d:56:fe:85:70:75:66:5a:7f:
7b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:38:99:B0:6D:8C:26:FD:D5:95:88:0F:E2:16:3B:EB:3E:ED:2D:BE
X509v3 Authority Key Identifier:
keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/HDiZsG2MJv3VlYgP4hY76z7tLb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6782::/32
Signature Algorithm: sha256WithRSAEncryption
55:da:60:f0:f8:1a:7f:12:57:a7:8f:57:37:a1:9a:97:df:1d:
9c:49:09:73:72:f2:41:b6:d4:51:8c:34:c3:96:35:e3:7a:69:
60:ea:88:6a:c2:e4:3d:ae:30:c0:0f:0a:c4:a8:a0:25:02:b0:
10:2f:ae:a3:15:6f:4d:7c:69:d8:07:e5:fc:39:79:da:da:a4:
58:75:11:b0:64:40:95:3e:40:e2:d8:2a:32:b1:b3:a9:36:ec:
c5:b8:36:08:8a:45:ca:e5:4d:89:5b:8f:42:d6:e9:6b:2b:04:
79:8e:ab:62:e1:47:8a:02:ba:5a:d0:37:87:86:aa:e3:20:f3:
aa:7e:5d:9e:66:34:9c:65:f1:85:db:dd:99:7d:b3:98:33:63:
f9:a7:51:df:a3:ab:57:8b:1b:74:85:c7:f7:23:55:df:d7:cc:
2a:bb:bc:a4:ea:06:26:47:84:9c:94:63:cc:65:2a:2b:46:1e:
c3:b9:04:64:dd:d6:37:48:49:ed:e3:83:80:aa:58:c0:5d:17:
1c:cb:70:14:34:f9:03:de:74:43:65:76:e9:35:2b:7f:08:fe:
19:73:05:88:20:16:3f:b7:9c:c2:f4:5c:8f:6f:33:0a:4e:be:
14:22:30:30:01:c6:a0:40:78:7f:d6:bc:4f:a6:38:ed:a1:27:
36:54:14:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 21:07:17 2024 by rpki-client on console-ams.rpki-client.org