Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/1Xz85qZuMecC-lrlg1fphYXR9No.roa
File: 1Xz85qZuMecC-lrlg1fphYXR9No.roa (raw, json)
Hash identifier: XUVMWwegpfpmQhE13on7cdWxF7Y3iiS8ZYOWQyNXNJA=
Subject key identifier: D5:7C:FC:E6:A6:6E:31:E7:02:FA:5A:E5:83:57:E9:85:85:D1:F4:DA
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018570799439069850485F2FC7BD172053BE
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/1Xz85qZuMecC-lrlg1fphYXR9No.roa
Signing time: Mon 02 Jan 2023 03:14:54 +0000
ROA not before: Mon 02 Jan 2023 03:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206023
IP address blocks: 2a12:bec0:10::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 11 Apr 2023 21:58:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:94:39:06:98:50:48:5f:2f:c7:bd:17:20:53:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 2 03:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d57cfce6a66e31e702fa5ae58357e98585d1f4da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:01:2f:0f:d9:84:86:7e:d8:be:ae:4c:b9:f7:
02:69:e1:fb:a0:7f:b2:d9:99:fa:ce:54:e2:0a:15:
1f:ae:0a:35:63:e0:1e:26:5e:9e:9a:51:15:83:56:
6b:9f:b1:bb:e6:9f:52:7e:32:f8:46:43:5e:f0:23:
32:f8:80:6d:4f:97:8c:11:a9:38:77:5a:5c:c5:13:
09:4c:17:2e:f6:9a:40:f6:99:47:ef:99:e7:f0:2e:
5b:db:3a:6c:a8:4c:5c:78:d5:8c:49:9f:bb:69:76:
8a:cd:3b:70:2c:07:57:0d:73:00:cb:c0:6f:98:96:
a9:10:2e:07:9d:92:46:54:7f:04:c0:82:4f:cc:37:
c5:bf:b9:20:d5:d3:4b:d5:10:b3:24:54:9e:60:69:
e7:c6:9c:92:9e:bb:4d:51:ab:f6:a6:02:39:d7:4b:
f0:d8:aa:4d:a7:4f:c0:5b:bb:40:dd:f7:a8:6b:d0:
08:eb:5f:e3:4e:77:20:2b:41:5c:51:50:9e:a5:3e:
c4:e2:80:8a:4c:85:29:2c:21:28:b5:0d:cd:e1:97:
6c:8d:b7:e0:b2:3a:3e:b5:10:e1:9a:88:bb:7b:27:
8c:69:bc:99:c1:43:4a:77:5f:1b:9a:47:b2:c6:00:
3b:99:d2:3e:ed:5f:f1:b2:41:56:32:d9:7a:ee:3f:
fc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:7C:FC:E6:A6:6E:31:E7:02:FA:5A:E5:83:57:E9:85:85:D1:F4:DA
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/1Xz85qZuMecC-lrlg1fphYXR9No.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:10::/44
Signature Algorithm: sha256WithRSAEncryption
51:21:0f:64:db:32:bf:7f:54:05:66:ac:1b:6c:95:99:91:9c:
46:c5:c1:e8:93:24:6f:76:f0:a2:bd:81:a6:4c:83:e2:82:d8:
30:3b:f7:56:77:41:a0:09:07:be:eb:6e:28:a5:48:62:01:61:
4e:7a:4d:f2:39:87:d1:24:ba:88:d4:9b:38:14:8f:54:de:ba:
83:cd:bf:6f:b3:c2:be:f6:a3:94:10:a5:76:9d:a6:6c:3d:07:
02:8c:83:d8:60:c2:29:fa:76:c5:0d:b4:4c:14:00:96:88:c1:
40:f7:2d:9f:a6:da:ca:b6:3e:a7:1a:18:50:06:54:e9:d2:7e:
b7:96:e4:8f:62:4e:4d:08:f1:21:8b:0f:34:2b:fa:7a:3d:ce:
4d:96:8e:6f:96:c5:3d:26:72:e0:8a:a4:7f:41:5e:06:ca:f2:
f7:7e:76:6a:9d:30:1c:51:33:ae:4c:74:4f:e8:f3:f8:1c:e6:
33:f0:f7:60:25:a6:a3:4c:e9:bd:ba:9f:36:21:2a:0c:8a:70:
51:66:58:f5:8b:2a:aa:03:17:a6:3b:a3:7d:a7:dd:3e:01:c8:
d1:72:59:be:07:ab:ae:7f:7b:fd:0b:89:ec:af:bc:ec:b0:aa:
a1:16:bd:95:c8:3a:e5:42:10:fd:c8:52:1f:99:5f:35:90:80:
59:82:5f:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org