Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/8a5aRV31apovdE0kRYaNAJ3iGjY.roa
File: 8a5aRV31apovdE0kRYaNAJ3iGjY.roa (raw, json)
Hash identifier: uMRsqWBntk6uk9Z4Wj+cilgLpptoeFmfmS0YRveGpjo=
Subject key identifier: F1:AE:5A:45:5D:F5:6A:9A:2F:74:4D:24:45:86:8D:00:9D:E2:1A:36
Certificate issuer: /CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Certificate serial: 018572BA50A8D824A8E64D48BDBC88A8C5D1
Authority key identifier: BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/8a5aRV31apovdE0kRYaNAJ3iGjY.roa
Signing time: Mon 02 Jan 2023 13:44:51 +0000
ROA not before: Mon 02 Jan 2023 13:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42275
IP address blocks: 2a12:8e40:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:50:a8:d8:24:a8:e6:4d:48:bd:bc:88:a8:c5:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Validity
Not Before: Jan 2 13:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1ae5a455df56a9a2f744d2445868d009de21a36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:90:52:9c:4e:46:59:b5:86:e7:fa:68:41:a6:
1f:65:24:a4:00:70:c2:e8:6a:63:c7:2a:19:23:f7:
ec:13:0e:6d:bc:ec:73:9e:9a:c3:d9:c2:75:ce:57:
35:87:9f:cf:a0:7c:94:00:3d:04:c1:75:dc:ee:14:
76:93:0a:cd:0a:1b:0a:ce:64:44:5e:d6:13:02:3b:
e3:55:b8:8f:c0:e7:7f:67:56:de:af:b5:f7:d9:70:
b1:e7:5b:a9:7b:45:36:89:ff:54:16:fc:97:3b:b8:
7c:28:e1:bf:a6:ac:03:96:4b:08:6c:1e:62:41:21:
7a:fe:8b:85:ea:59:ac:9e:96:00:b4:43:e7:a4:c3:
99:63:60:1f:bf:4f:7c:01:b5:96:0d:c4:50:f8:d6:
25:86:fa:81:29:6d:28:69:75:aa:7f:65:ff:76:63:
12:03:d2:82:27:42:8c:88:1f:6b:3c:37:c8:0a:b0:
bc:7b:f4:08:bd:db:bb:18:62:de:71:35:bd:3a:bf:
ce:01:d7:2f:c9:97:d6:ca:a4:0d:33:08:b3:a9:3d:
68:80:0e:ff:d6:77:08:2b:07:5f:d0:88:32:6c:1f:
bd:f3:24:7d:b8:53:cb:92:5c:c5:b8:47:40:7a:a9:
80:83:5b:2a:93:21:ac:46:32:f7:53:b6:61:b6:df:
de:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AE:5A:45:5D:F5:6A:9A:2F:74:4D:24:45:86:8D:00:9D:E2:1A:36
X509v3 Authority Key Identifier:
keyid:BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/8a5aRV31apovdE0kRYaNAJ3iGjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/voSufAUDrEUJNMn2z_OaFTelEm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8e40:2::/48
Signature Algorithm: sha256WithRSAEncryption
34:c3:2d:d7:48:dd:a4:08:2f:e3:5d:a5:a8:d9:39:50:e8:08:
14:a8:d2:72:e1:dd:46:05:02:86:ee:5f:62:f8:89:10:ef:bb:
00:82:24:c4:d5:e7:75:f6:59:eb:b9:4d:35:a4:72:ab:96:20:
ec:5b:14:fd:59:e1:12:00:b1:02:f3:3d:f1:82:e9:f8:03:3a:
2c:7c:d3:c0:88:e3:25:0e:33:b1:2d:67:73:b4:80:56:94:6b:
63:eb:5a:be:55:49:a0:c3:0c:f3:71:f5:93:d6:1e:fb:2b:fd:
7c:f1:7a:37:05:be:4a:f6:da:65:52:5a:78:47:b7:48:be:85:
8c:35:9e:1a:23:76:e0:b2:56:df:1b:57:cf:62:42:00:05:3d:
2d:87:34:2b:4c:5f:3d:4a:32:31:a5:6b:df:ce:ce:9d:0f:b1:
d3:46:15:46:a4:54:a1:57:13:94:a9:82:53:7d:f6:ec:12:1e:
2f:b1:be:8d:0f:47:28:4b:e7:89:f5:56:63:33:85:8d:ca:96:
4a:9d:f3:8a:08:43:3c:69:8b:bf:a7:08:d1:04:91:e6:d4:28:
10:20:66:62:46:0a:1e:4e:ba:fc:6e:9b:99:0d:f1:50:93:3c:
80:54:3e:8b:ba:e8:1e:4c:0b:06:8d:a6:91:0c:a1:3b:14:fe:
96:83:fb:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org