Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/1iAyRLCufUjxEZ7eb8Vks1yH3uc.roa
File: 1iAyRLCufUjxEZ7eb8Vks1yH3uc.roa (raw, json)
Hash identifier: MBJy23pq3zLkVljH5iCL3fy9ArmRUgipd01pQ2yLI4k=
Subject key identifier: D6:20:32:44:B0:AE:7D:48:F1:11:9E:DE:6F:C5:64:B3:5C:87:DE:E7
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 0191324F9F769B1CE084928E511401CF03E9
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/1iAyRLCufUjxEZ7eb8Vks1yH3uc.roa
Signing time: Thu 08 Aug 2024 14:06:04 +0000
ROA not before: Thu 08 Aug 2024 14:06:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212128
IP address blocks: 2a12:3b47::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 23 Aug 2024 17:51:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:32:4f:9f:76:9b:1c:e0:84:92:8e:51:14:01:cf:03:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Aug 8 14:06:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6203244b0ae7d48f1119ede6fc564b35c87dee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f4:5a:9e:84:e7:ea:06:83:67:42:e7:ab:13:
42:3f:3d:77:0e:87:a4:05:23:13:3e:f8:90:ff:d8:
94:06:86:75:57:3b:c8:2f:f3:fb:15:fd:fe:9e:61:
a0:bc:af:86:12:c0:09:19:39:51:92:b9:f0:88:ae:
29:6e:45:67:63:5d:87:ad:67:1a:1f:f1:59:64:11:
5c:b6:a8:27:53:1d:94:5d:21:05:92:e1:3e:4c:ff:
76:e8:cb:ad:83:6c:9d:6e:4f:2b:6f:58:6c:20:63:
5c:66:a6:b0:7e:25:0a:9e:b5:74:f2:a9:f3:b9:95:
ff:c4:4e:ef:2b:83:02:f9:38:d0:43:cc:8e:8b:95:
64:d7:f4:8a:23:49:ff:8d:55:3b:db:3b:fe:ea:57:
0c:da:82:11:19:f1:e4:72:dc:c4:b8:7b:74:ec:46:
37:6f:71:4e:6b:11:68:dd:5c:36:bb:53:72:db:7a:
10:3d:41:63:2e:a6:aa:90:4e:fb:c4:f7:58:d8:ad:
9f:59:2f:e4:77:6f:5a:e4:0b:6d:59:df:61:96:ba:
98:d4:33:f6:d7:fc:74:a5:62:0b:cd:96:30:d4:e8:
ac:13:00:ec:53:ac:2e:b1:2a:2c:25:16:bc:b6:af:
12:b6:5f:5c:c3:11:d1:d5:20:b2:69:ac:ca:ba:b9:
62:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:20:32:44:B0:AE:7D:48:F1:11:9E:DE:6F:C5:64:B3:5C:87:DE:E7
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/1iAyRLCufUjxEZ7eb8Vks1yH3uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3b47::/32
Signature Algorithm: sha256WithRSAEncryption
81:43:8d:00:5a:91:8b:97:b1:6f:0c:b0:f8:81:5f:16:d8:1e:
c5:b9:a2:4d:c8:30:87:a2:34:99:6b:64:aa:86:f1:c8:dc:84:
a8:f4:6c:95:e4:78:d8:ee:14:58:12:12:87:2c:24:cb:4f:f8:
f3:02:09:6a:f9:f5:8a:aa:d2:10:e0:81:40:31:b2:be:46:ae:
df:df:85:4f:60:13:34:38:45:c3:9b:18:8e:0e:40:cb:ad:70:
a7:c7:7d:ba:a6:1f:87:20:21:8d:d7:35:73:8a:e3:f5:ca:0e:
09:5d:f4:6e:4c:2e:0c:00:27:32:86:ba:00:3b:ba:43:76:18:
27:b2:cc:bf:a1:ab:64:96:17:ef:fb:32:2c:d6:61:29:6e:de:
5c:9a:98:da:3c:81:72:25:db:36:34:fe:8a:9f:b4:2a:fe:9e:
6f:3d:88:44:6a:0a:f8:b5:e5:88:91:9e:f8:31:85:4f:74:0a:
66:7e:8b:cb:98:de:32:60:df:1e:a5:d6:e4:5e:41:32:8a:62:
aa:44:44:aa:d1:a1:7a:fc:49:ac:51:f7:9e:c7:43:25:a3:01:
11:b0:2a:3a:60:39:58:b6:dd:b8:68:96:a0:97:96:a9:7a:83:
e1:82:3b:f0:b4:f9:ab:41:14:5e:48:81:a4:99:23:e8:b2:18:
1b:5d:b6:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 19:24:22 2024 by rpki-client on console-fra.rpki-client.org