Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/pHpe0URKrV4ONxQtoYi1_6t0Sfg.roa
File: pHpe0URKrV4ONxQtoYi1_6t0Sfg.roa (raw, json)
Hash identifier: AaACrACq9112euaQzo+q73iEspgCPeAYmyXNDNBRzTc=
Subject key identifier: A4:7A:5E:D1:44:4A:AD:5E:0E:37:14:2D:A1:88:B5:FF:AB:74:49:F8
Certificate issuer: /CN=3eabe028f3be7ee072885d02bbd7b62a652425ef
Certificate serial: 0188F4F7BEF7DB915AEA3A781EE7CCCEA0D9
Authority key identifier: 3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/pHpe0URKrV4ONxQtoYi1_6t0Sfg.roa
Signing time: Sun 25 Jun 2023 23:50:56 +0000
ROA not before: Sun 25 Jun 2023 23:50:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210414
IP address blocks: 2a12:a080::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f4:f7:be:f7:db:91:5a:ea:3a:78:1e:e7:cc:ce:a0:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eabe028f3be7ee072885d02bbd7b62a652425ef
Validity
Not Before: Jun 25 23:50:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a47a5ed1444aad5e0e37142da188b5ffab7449f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0c:ea:9e:9f:44:9e:5a:bd:5f:c1:5a:7e:62:
0f:30:c6:df:d9:87:64:da:f5:b1:ce:98:af:f5:cc:
87:5c:3e:de:c9:83:85:2e:5f:a1:1b:a8:1e:64:d7:
d0:b4:90:6b:a1:24:ae:f4:41:58:e2:f4:4a:4a:c7:
0d:0b:4b:c1:ad:46:5e:1c:39:98:5d:a9:36:31:e1:
4c:b8:1a:16:3f:f1:a9:2a:bf:f6:62:52:a3:f8:18:
ce:e1:ba:29:d7:32:88:df:ee:dc:09:f4:4a:a4:52:
65:e8:e2:22:43:67:77:20:09:a2:78:3f:34:4a:be:
f2:12:fa:0b:d4:a1:87:4d:f1:c9:18:2c:6d:d8:f1:
38:7a:b4:f2:e6:d5:17:eb:ac:e3:a4:18:3d:50:ee:
92:63:1a:98:81:2b:ae:a1:b2:7d:c8:fd:a6:03:fa:
68:96:42:7c:2e:85:9b:e2:9d:c7:8e:15:32:f2:4f:
1b:70:fe:8c:54:64:23:af:5a:f4:21:51:76:90:63:
19:c7:61:e4:4c:77:3f:3d:dc:11:c6:c1:a4:06:bd:
9d:a8:c4:14:0e:25:7d:a5:4e:6e:f4:e6:26:a2:b1:
b1:d9:65:64:4e:f1:22:7b:3c:5f:8f:d8:3e:78:f1:
ea:11:7c:06:b4:42:32:3d:22:5b:ab:05:95:bc:6e:
d1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7A:5E:D1:44:4A:AD:5E:0E:37:14:2D:A1:88:B5:FF:AB:74:49:F8
X509v3 Authority Key Identifier:
keyid:3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/pHpe0URKrV4ONxQtoYi1_6t0Sfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:a080::/29
Signature Algorithm: sha256WithRSAEncryption
6a:ff:e7:60:d8:3f:f6:6d:ad:f3:7a:fe:4a:91:64:ea:49:c7:
2e:f8:e6:d0:41:26:c7:50:59:06:b6:f7:11:2b:a8:0f:34:27:
8a:60:3b:8c:e7:ac:69:0c:64:50:1d:db:48:08:a6:14:c5:84:
08:04:f3:ed:e4:4d:57:d7:73:27:e9:2b:14:bc:9b:be:0d:0f:
fb:f0:c9:ea:ba:a6:bb:32:6c:fe:62:15:73:59:6c:d7:80:29:
9d:da:6b:ed:9c:d0:94:37:b9:66:53:8a:c5:df:6e:23:04:e1:
dc:0d:ac:d7:b5:a0:41:5a:25:bd:bf:57:94:88:1f:74:67:df:
6e:24:a6:85:ec:50:89:59:e7:fb:53:c8:30:c7:ff:a6:a3:10:
6c:8c:48:4d:2b:52:1c:86:9e:c5:bf:9f:0d:f9:3d:dc:ac:cb:
8d:55:72:15:44:8f:43:3f:a0:cc:90:0b:db:d0:da:2a:6a:0d:
b3:d3:37:88:3e:8c:33:3b:c3:58:37:e2:a6:20:05:d6:96:6e:
7d:67:f9:14:f5:fb:d7:47:b6:b8:bf:4b:5a:c1:a6:56:96:1e:
25:48:8d:93:df:dc:57:a0:a5:86:c1:a9:db:42:93:d0:87:88:
da:77:d7:2d:5d:69:4f:7b:66:e3:82:30:e4:fb:18:3a:de:c1:
d7:cd:91:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:57 2024 by rpki-client on console-fra.rpki-client.org