Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/FpSZ1Be8LjwTufo9oNK5g4U5ai0.roa
File: FpSZ1Be8LjwTufo9oNK5g4U5ai0.roa (raw, json)
Hash identifier: gtzJjlhy4gyE6sq0cRcjK2uwEPNMKWe4IyE6L89Fm8g=
Subject key identifier: 16:94:99:D4:17:BC:2E:3C:13:B9:FA:3D:A0:D2:B9:83:85:39:6A:2D
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0187A82B4DBA0D3CEF6C80E54772753C83EC
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/FpSZ1Be8LjwTufo9oNK5g4U5ai0.roa
Signing time: Sat 22 Apr 2023 08:53:42 +0000
ROA not before: Sat 22 Apr 2023 08:53:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199948
IP address blocks: 2a12:bec0:140::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a8:2b:4d:ba:0d:3c:ef:6c:80:e5:47:72:75:3c:83:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 22 08:53:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=169499d417bc2e3c13b9fa3da0d2b98385396a2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3b:3a:e6:71:3d:c5:a4:0d:23:d1:c0:dd:6b:
53:89:80:6d:f1:4d:84:89:6a:85:28:6c:e7:33:4b:
1a:9d:a9:f8:aa:40:0b:78:52:f3:7d:47:7c:b2:ec:
3b:7f:35:44:9d:10:49:be:b4:2b:70:c4:ec:52:1b:
f2:51:49:16:6f:c0:b2:57:80:e5:b1:ec:3e:e7:65:
8e:32:07:71:35:c2:c9:23:31:f6:01:9d:2d:a2:c3:
d5:a1:8a:3b:a0:12:cd:67:2e:33:2d:5b:24:88:0b:
42:d8:c7:16:d8:5a:63:5e:fb:40:59:cf:6d:7d:f4:
b8:44:da:ed:22:81:b6:4e:2c:cf:ec:45:81:a4:0f:
2a:f2:9a:48:b3:fe:26:cf:1f:07:9a:1c:1c:d9:71:
3f:77:c4:d9:75:24:63:03:6a:d2:f2:2f:47:a8:bb:
00:d8:29:2d:ed:c5:23:02:b6:ec:b6:fc:cb:12:e9:
31:08:dc:e7:ef:1a:a2:ef:0d:e5:84:25:ca:c5:87:
65:e5:12:a7:40:87:f2:e5:8f:a7:39:18:3b:75:13:
bd:1c:d4:ba:0f:e3:46:ca:8a:d0:6e:70:b9:ac:b7:
2e:1c:4f:3e:3c:85:79:ca:80:5f:c2:1f:83:d0:c5:
a8:01:f5:f3:47:83:4d:c4:73:4d:c4:df:71:bd:6c:
a1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:94:99:D4:17:BC:2E:3C:13:B9:FA:3D:A0:D2:B9:83:85:39:6A:2D
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/FpSZ1Be8LjwTufo9oNK5g4U5ai0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:140::/44
Signature Algorithm: sha256WithRSAEncryption
72:13:84:be:5d:09:71:7c:30:02:ab:03:cd:a6:61:db:69:bb:
8e:c0:1e:3f:c3:4a:db:65:a7:d5:50:0d:4f:92:3a:88:9e:66:
b5:53:9c:7f:9c:87:29:66:da:5c:63:a0:6f:7d:20:b9:d3:ca:
c1:55:26:71:e4:bb:e3:3d:d4:f8:a9:f7:dd:05:b1:d4:57:ce:
25:37:2d:9c:cc:75:cb:07:39:32:d8:a3:d9:d7:36:f8:a2:7b:
d4:a2:bf:a5:55:58:5f:03:52:71:3a:0c:1b:2a:a4:87:9e:40:
56:bc:0e:62:95:5d:a0:3e:b4:90:78:cf:c8:b8:f4:df:4c:99:
39:e8:da:c6:3b:e9:ae:f5:62:01:8a:25:b7:dc:61:d6:a9:2c:
2f:f7:81:b1:d5:14:99:5d:45:10:9f:f9:72:f7:b2:08:54:0e:
ad:4f:c9:20:dc:22:97:69:4f:92:ca:ed:d0:15:be:4d:1a:fa:
21:d8:96:83:43:df:bc:c1:fc:9e:01:84:bb:a3:4b:9e:fa:d1:
ac:22:ed:34:ad:01:14:f4:32:cf:ed:7f:ca:5f:f0:7c:df:fd:
cc:f2:4b:9f:f0:7c:c2:26:31:6b:54:79:80:ea:05:af:04:27:
c9:7c:b9:be:c5:3d:02:10:8b:51:f7:9f:79:69:e4:03:1d:2c:
f4:af:c0:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org