Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/cPMX4NWXtDORAvjPeVXtMTDCeF0.roa
File: cPMX4NWXtDORAvjPeVXtMTDCeF0.roa (raw, json)
Hash identifier: bBz1SWSE6oVNAacZXM2kKJ8BMG+0+A7j91E0GupeTrI=
Subject key identifier: 70:F3:17:E0:D5:97:B4:33:91:02:F8:CF:79:55:ED:31:30:C2:78:5D
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 018CB10ED46744740C8E0B9069EB2ABB14E2
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/cPMX4NWXtDORAvjPeVXtMTDCeF0.roa
Signing time: Thu 28 Dec 2023 15:33:08 +0000
ROA not before: Thu 28 Dec 2023 15:33:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51741
IP address blocks: 2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b1:0e:d4:67:44:74:0c:8e:0b:90:69:eb:2a:bb:14:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Dec 28 15:33:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70f317e0d597b4339102f8cf7955ed3130c2785d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f5:d6:38:3a:d7:f0:28:11:43:e1:86:e6:07:
49:3c:21:40:7a:0a:d2:80:37:05:ae:b0:ae:e0:78:
09:96:a6:64:ec:fc:03:3c:38:64:ce:b5:0c:24:8e:
4e:ab:63:54:3c:69:31:b3:a3:77:72:a0:f4:39:8e:
15:99:99:f5:35:49:e6:e0:59:f7:5b:e7:0b:a8:91:
37:9d:d4:fb:64:be:d1:57:cd:59:ca:ae:db:80:f3:
31:2c:16:df:bb:36:94:a8:10:32:c7:74:e1:92:49:
2a:5c:e8:90:9a:f9:fa:94:4f:ed:e6:5e:13:0b:1f:
1d:0b:76:47:3c:9d:47:6d:27:60:c6:91:96:91:12:
b6:10:da:e8:bd:41:fa:7e:ba:22:27:9d:98:1e:dd:
9c:76:dd:41:22:18:6d:06:54:b8:5f:1e:2e:64:92:
f9:76:9d:42:7e:2d:2b:72:bd:b2:a5:fe:92:4f:81:
b6:e2:19:a3:87:ec:34:bf:f6:da:58:b0:0a:0b:22:
98:85:20:a2:2d:4a:0d:f8:11:39:bb:e8:00:e1:47:
a4:ea:65:0c:71:71:21:70:72:dc:61:0d:00:96:39:
ec:5f:dc:87:cf:6c:54:8e:12:97:18:25:9b:d1:ee:
04:a8:98:a4:73:10:7e:fb:86:95:9d:67:08:db:16:
e0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F3:17:E0:D5:97:B4:33:91:02:F8:CF:79:55:ED:31:30:C2:78:5D
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/cPMX4NWXtDORAvjPeVXtMTDCeF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
6e:7d:dc:2d:4b:d9:cf:69:6b:7e:f2:da:bd:cf:b6:c2:02:26:
8d:87:0a:3a:b8:33:1f:e6:49:2e:bb:ec:a3:8d:b1:a1:85:a0:
f4:58:1f:1d:2c:d4:a3:a4:09:69:e7:4a:3f:dc:83:d5:20:59:
c2:95:4c:c4:d1:0b:2d:80:04:0c:4b:1a:51:f7:54:30:ff:05:
36:ee:a4:84:18:b4:a8:9d:ed:45:2b:2e:12:a2:e7:ca:e9:a3:
fd:dc:bc:88:38:f9:ec:bf:2e:cb:ac:60:12:fa:23:2b:ac:f9:
3a:13:14:c8:57:44:06:23:20:33:e8:96:f9:db:e9:b2:ee:6b:
c5:35:e6:99:f8:d7:4f:92:78:97:85:86:1b:0a:9c:92:a6:fb:
d3:91:86:c2:c8:79:c8:14:64:08:e3:3f:d9:5e:3d:b7:54:4e:
bf:b5:5e:fa:52:52:27:b9:b6:fa:d0:67:ff:8d:ce:8d:af:36:
eb:f9:12:9c:39:d6:2a:08:d9:35:c4:38:94:3f:09:a8:08:28:
97:56:15:ed:76:9c:06:cb:6c:76:1f:c3:a5:20:ba:46:4c:94:
f5:a8:58:53:f4:e7:58:9e:16:dc:f0:40:c1:01:46:e1:af:d8:
47:40:e0:ba:d9:95:18:b1:23:5d:72:21:72:93:1a:da:f8:c2:
cc:36:17:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 28 19:58:30 2023 by rpki-client on console-fra.rpki-client.org