Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/389n8wxqWAPuxarkYactbLXqIoI.roa
File: 389n8wxqWAPuxarkYactbLXqIoI.roa (raw, json)
Hash identifier: SAxt52WJXd7mqTEoNwstNFvwstksAI67ec48csqZ9JE=
Subject key identifier: DF:CF:67:F3:0C:6A:58:03:EE:C5:AA:E4:61:A7:2D:6C:B5:EA:22:82
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018CF5B889B0DBEDB860D94987EF2A6AE456
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/389n8wxqWAPuxarkYactbLXqIoI.roa
Signing time: Wed 10 Jan 2024 23:32:40 +0000
ROA not before: Wed 10 Jan 2024 23:32:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57487
IP address blocks: 2a12:1804::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 13 Feb 2024 10:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f5:b8:89:b0:db:ed:b8:60:d9:49:87:ef:2a:6a:e4:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Jan 10 23:32:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfcf67f30c6a5803eec5aae461a72d6cb5ea2282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:93:30:d9:85:e6:2e:49:ea:ec:d9:0f:92:17:
1e:3c:ff:2f:4f:c4:48:af:9e:de:3d:4a:6c:56:ea:
f6:5a:92:6f:4f:c0:c1:cd:46:9a:0f:e2:09:13:6b:
bd:c4:cb:2f:71:38:c8:d9:90:9f:1e:dd:f1:39:39:
b3:9c:34:d0:0b:0b:be:ea:c7:e3:14:f0:5c:b7:de:
29:48:b7:b6:60:93:fd:8a:11:5d:34:85:1f:27:7a:
71:f5:1f:5f:d2:0c:52:53:57:d6:e8:9b:84:9b:42:
02:f0:89:90:79:f0:a8:72:dd:ac:16:2e:31:44:bd:
6b:c6:43:ee:ca:89:5a:42:04:39:1a:22:98:7b:22:
2e:20:95:5d:06:83:6e:38:36:a7:92:1e:63:ff:57:
ea:43:54:7c:c7:8d:fe:e7:db:af:68:49:57:5a:fb:
dc:e0:cf:70:35:cb:eb:f5:c5:6c:ee:b1:39:62:03:
78:df:f1:bd:39:e9:fc:5b:3c:43:b6:3b:ee:a3:29:
75:e3:16:21:d0:d8:7e:05:2a:19:f4:ea:91:fe:de:
8e:f6:8e:ee:93:60:5e:2d:6a:e6:76:42:e6:0a:e3:
e2:23:f3:3c:f1:08:70:98:dc:1f:89:65:84:3d:3a:
f2:53:62:77:3f:fd:f1:26:ba:5d:9a:6e:c5:b5:27:
f1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:CF:67:F3:0C:6A:58:03:EE:C5:AA:E4:61:A7:2D:6C:B5:EA:22:82
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/389n8wxqWAPuxarkYactbLXqIoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:1804::/32
Signature Algorithm: sha256WithRSAEncryption
23:a1:6b:81:ca:7c:1f:94:03:d9:70:29:05:ac:24:69:0c:cb:
41:0f:c4:81:72:75:53:9d:85:ed:59:1e:b6:a9:f4:56:18:25:
8e:8b:e3:c0:dd:6b:da:06:f9:2d:c0:9a:53:30:20:d5:87:30:
0b:72:e2:f2:7a:a7:e8:c1:1b:92:e1:24:90:69:da:20:1e:cd:
b9:2c:d9:7d:2e:29:69:57:6e:b7:ee:3a:20:c2:10:47:8e:08:
aa:e9:da:45:c9:c0:0d:bc:4d:cc:fd:63:f5:b0:e5:a0:75:4c:
85:45:4f:d8:49:c6:36:5c:20:a9:da:93:d3:17:67:d0:f1:4a:
2f:17:da:48:02:1b:fb:61:b1:9e:be:4f:1a:90:cb:3e:0c:dc:
68:00:f4:94:7b:09:c0:27:b3:33:77:b3:27:79:09:12:42:3b:
54:c1:9d:96:0e:cd:a2:bf:8e:81:72:4c:6b:82:bc:80:de:aa:
c5:db:47:09:9e:d0:35:f9:44:bc:82:20:db:d2:ac:9e:7d:64:
a5:7c:9e:b2:b8:6e:97:de:2f:8f:2a:75:49:24:2c:03:1b:ff:
30:72:65:08:33:c1:5b:38:49:20:cf:3b:e3:b1:ea:2e:e3:ba:
8f:db:70:8f:56:85:3d:29:3c:f1:43:8e:97:e0:88:a0:92:6d:
65:19:07:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org