Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/RPi0nf65nUZj1uvMD_7TM1unhpE.roa
File: RPi0nf65nUZj1uvMD_7TM1unhpE.roa (raw, json)
Hash identifier: /uahpTQP0sYJyVCJVmd3554UJPbplf1lKvyrqdM9xLU=
Subject key identifier: 44:F8:B4:9D:FE:B9:9D:46:63:D6:EB:CC:0F:FE:D3:33:5B:A7:86:91
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018EB2D41A03D288D4B94E8C030607526E57
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/RPi0nf65nUZj1uvMD_7TM1unhpE.roa
Signing time: Sat 06 Apr 2024 09:53:48 +0000
ROA not before: Sat 06 Apr 2024 09:53:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215439
IP address blocks: 2a12:bec4:10b0::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 23 Apr 2024 14:43:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b2:d4:1a:03:d2:88:d4:b9:4e:8c:03:06:07:52:6e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 6 09:53:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44f8b49dfeb99d4663d6ebcc0ffed3335ba78691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:59:04:a8:a5:4b:ab:85:78:6d:33:3c:cf:5f:
d6:8c:22:01:e3:7e:54:ef:be:38:30:84:07:14:25:
07:1e:27:79:6a:9e:ad:94:a3:14:c7:87:35:d5:bf:
2d:fc:db:09:4c:9d:fc:69:04:9f:d2:b0:9b:27:5e:
8a:5c:21:54:85:e0:46:a3:97:c1:eb:de:15:27:5a:
ba:59:6c:e9:a1:dd:49:00:26:50:be:8b:d7:11:36:
b3:f8:d2:91:c3:90:dd:f3:cc:ac:76:cb:d2:fb:49:
12:5b:8e:63:ee:50:c0:5d:ae:14:1a:fa:36:d8:9b:
41:2a:4d:3d:66:bb:75:48:07:47:96:0a:13:e7:96:
b6:da:17:a7:21:83:83:0e:f5:cd:24:93:8e:e2:7b:
11:57:a2:53:a6:0b:3c:bd:ad:7b:d2:09:97:4c:3e:
b3:6d:cd:81:5c:5f:2b:d7:68:54:53:77:26:10:39:
30:2c:45:ba:54:72:f7:80:75:a5:33:f0:89:d8:6e:
ba:71:a1:f8:ea:0f:30:a6:53:f2:78:a2:eb:9d:e3:
2c:3a:e1:2b:d0:0a:cd:e3:3b:16:e8:de:cc:a9:b7:
d8:a1:d3:4b:5c:2f:f7:66:88:a0:80:f5:84:6f:cd:
e1:03:4a:d8:94:8f:41:97:e2:06:21:01:55:d1:cb:
b4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F8:B4:9D:FE:B9:9D:46:63:D6:EB:CC:0F:FE:D3:33:5B:A7:86:91
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/RPi0nf65nUZj1uvMD_7TM1unhpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:10b0::/44
Signature Algorithm: sha256WithRSAEncryption
95:29:2b:fc:51:01:65:4f:3e:4b:a2:b5:5c:81:92:03:54:3d:
bd:d6:5a:71:63:96:2e:e6:9f:88:8b:9e:fd:65:03:40:2f:7a:
28:48:b2:87:c6:8a:f9:b2:fb:42:75:8a:9c:3f:1a:b9:4a:3f:
63:c4:57:0c:a0:c2:31:9d:9f:d2:27:0d:9e:3e:a0:53:25:96:
4e:b1:00:c0:57:24:03:3a:d5:14:ce:9e:86:06:ca:49:43:b8:
e6:99:58:96:20:c6:9d:2c:70:67:42:0f:e5:33:ae:92:50:c4:
91:5a:d8:23:d0:a3:09:68:86:f6:91:5e:53:88:e5:58:0c:24:
ce:e1:02:43:8a:61:81:33:42:30:5a:57:8d:9c:15:7d:2e:16:
24:38:e0:4c:9c:11:ea:88:18:1f:38:4b:f9:b7:2b:5f:da:ba:
63:54:8d:df:5a:ca:c1:99:b8:d2:fc:90:98:2e:96:75:4f:0e:
53:4a:5c:73:88:fb:e6:cc:89:52:f6:1b:5e:2b:95:51:71:a8:
5f:15:6a:5d:8b:d8:7b:64:41:a7:3a:38:b9:bf:47:90:42:ea:
4b:18:1e:41:38:2b:70:e4:87:a4:25:aa:2c:51:36:0b:48:91:
a4:37:39:62:4e:7e:df:78:0b:09:ed:82:93:95:ce:92:23:a5:
3a:a5:fd:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org