Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/P0SS8p1Y4kn57gxv5NzC-rafqZw.roa
File: P0SS8p1Y4kn57gxv5NzC-rafqZw.roa (raw, json)
Hash identifier: f5GVLV3uEdm0iM7V/cG6LnuAQCYF/MgcYoOozB4NyIs=
Subject key identifier: 3F:44:92:F2:9D:58:E2:49:F9:EE:0C:6F:E4:DC:C2:FA:B6:9F:A9:9C
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 01872523683364D95D70AD5DCB9C501D7EBE
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/P0SS8p1Y4kn57gxv5NzC-rafqZw.roa
Signing time: Mon 27 Mar 2023 22:14:50 +0000
ROA not before: Mon 27 Mar 2023 22:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199689
IP address blocks: 2a12:bec0:de0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:25:23:68:33:64:d9:5d:70:ad:5d:cb:9c:50:1d:7e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Mar 27 22:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f4492f29d58e249f9ee0c6fe4dcc2fab69fa99c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2c:c5:16:5e:03:e8:22:bb:ab:0f:fa:e5:17:
cb:59:88:72:0d:bc:28:3c:9f:9b:96:e5:c0:ad:7b:
32:a1:c8:68:35:a9:1f:0b:f8:df:34:e4:67:4a:88:
8d:94:77:0e:e6:f6:d5:3a:d6:34:42:3f:95:1f:ab:
f2:7c:f9:ec:8a:9b:06:a8:98:fe:6f:d0:9c:46:a5:
96:e7:e0:0d:8b:a6:f1:ff:d6:05:9d:55:75:cf:8f:
bd:e6:f9:51:65:e4:54:97:a2:6d:d0:f7:88:3c:d4:
fe:d1:8b:56:42:e6:8d:2b:ac:97:55:4c:47:4b:bb:
e1:f2:14:65:94:71:ea:66:82:e3:51:45:84:00:68:
4d:e8:40:0d:25:fc:00:ee:27:77:b8:7a:78:d7:83:
c6:a1:19:5d:c1:b1:6b:47:da:71:ac:d1:c5:c3:c6:
6d:83:1a:d1:65:80:a0:b1:4f:15:2e:da:b4:96:c0:
35:75:fb:68:cd:f2:da:af:cd:1f:ad:b2:29:c7:44:
c9:5b:9d:e7:15:42:59:9d:8a:a8:1f:52:40:44:1e:
d4:88:ee:c1:d3:b4:d2:30:ee:5c:dd:2e:50:88:ba:
da:05:68:91:fe:7f:38:51:f3:85:72:9e:d6:e1:73:
2e:96:db:28:f3:f5:96:65:53:c5:ef:d8:07:84:46:
d4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:44:92:F2:9D:58:E2:49:F9:EE:0C:6F:E4:DC:C2:FA:B6:9F:A9:9C
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/P0SS8p1Y4kn57gxv5NzC-rafqZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:de0::/44
Signature Algorithm: sha256WithRSAEncryption
66:0f:10:c9:25:29:d7:35:8b:61:78:80:23:54:5c:65:a6:64:
b0:19:55:89:66:14:10:62:ef:72:24:d0:0b:c0:25:22:67:4e:
55:ee:a2:8b:cd:c1:f7:82:04:73:d8:98:21:a7:7c:19:a9:32:
ba:fd:8f:8e:6b:af:3a:51:20:37:4a:53:12:67:69:9d:d2:33:
09:3b:6b:34:74:8f:1e:29:35:35:15:f6:09:eb:48:7e:bd:fe:
b9:ee:4f:e5:63:6e:62:e2:94:3a:af:fa:0d:ee:c3:cb:7c:7f:
5d:20:52:33:6d:64:7f:61:6c:fc:2d:59:15:48:45:c8:fe:15:
25:0a:f5:22:64:bf:eb:f8:64:4e:71:72:66:05:b2:87:6b:ed:
8e:4b:be:26:5e:cb:d6:e2:12:d9:5a:65:b9:95:72:6e:87:c9:
60:5c:e2:c9:91:a2:d2:4e:30:9d:e1:5d:7e:b0:3d:86:72:c5:
11:06:f3:6f:6e:c5:44:44:9e:36:52:49:43:1c:84:01:0d:5d:
f6:4d:b1:10:c9:ba:df:b8:94:8f:93:c5:8d:64:18:01:7c:d5:
ec:c3:b2:db:1c:56:26:ad:01:5d:7d:52:8c:f2:98:c5:a3:f3:
b2:7a:e7:c5:23:88:f4:62:eb:88:5b:18:cc:51:02:5a:f8:cc:
49:c2:cf:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org