Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/SS0gz72xU3qFa8wj9Sc9jntlsME.roa
File: SS0gz72xU3qFa8wj9Sc9jntlsME.roa (raw, json)
Hash identifier: EWHwjn/hxnXYPtTwDWyHHTc98CDXWL3KZFFMpU8tjXw=
Subject key identifier: 49:2D:20:CF:BD:B1:53:7A:85:6B:CC:23:F5:27:3D:8E:7B:65:B0:C1
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018CC64A0333BF990767B128246EC21A41DC
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/SS0gz72xU3qFa8wj9Sc9jntlsME.roa
Signing time: Mon 01 Jan 2024 18:29:48 +0000
ROA not before: Mon 01 Jan 2024 18:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199654
IP address blocks: 2a12:bec0:19a::/48 maxlen: 48
2a12:bec0:200::/44 maxlen: 48
Validation: Failed, certificate revoked on Sun 21 Apr 2024 09:47:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:03:33:bf:99:07:67:b1:28:24:6e:c2:1a:41:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 1 18:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=492d20cfbdb1537a856bcc23f5273d8e7b65b0c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:14:ba:1a:d1:74:0c:82:f3:12:bb:15:38:61:
41:5e:d9:06:e5:a7:af:f7:f7:df:e9:4f:1b:e4:10:
21:04:f5:31:0f:e1:4e:87:68:c0:70:cc:cf:ef:17:
e8:51:ab:d5:9a:95:f5:74:00:4f:29:9e:f3:9f:2d:
e8:88:63:16:05:a1:2a:22:8f:86:7d:68:66:5a:d2:
62:23:6b:c5:02:3f:bf:96:22:1e:4e:c3:4f:e1:85:
d5:3b:3b:2a:68:3a:61:83:dd:29:8b:b5:81:16:33:
a2:44:15:8f:c0:95:0d:f4:8f:35:67:cb:2c:05:5d:
0c:ca:44:1e:f1:ff:57:3b:c5:5c:28:0f:4d:4b:42:
cb:49:1c:93:b1:49:11:f5:af:03:b3:e9:19:aa:6e:
fe:52:a3:1c:57:2e:ca:10:b5:9d:12:08:3f:4d:23:
54:46:22:5b:f9:fe:68:ba:9f:45:fa:8e:49:c5:22:
f2:c2:4d:b3:7f:1c:c2:a8:f5:f8:1f:ad:1e:fc:de:
c5:03:85:2e:75:8c:98:5b:31:6a:26:47:43:95:60:
dc:0a:ba:2b:e2:b1:6b:13:0c:78:e2:3c:4a:da:6f:
15:01:a1:bd:72:02:d0:d4:e4:4f:24:3b:7b:69:1f:
3f:6f:7d:d7:ca:90:80:ea:f5:5d:70:91:88:18:91:
14:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2D:20:CF:BD:B1:53:7A:85:6B:CC:23:F5:27:3D:8E:7B:65:B0:C1
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/SS0gz72xU3qFa8wj9Sc9jntlsME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:19a::/48
2a12:bec0:200::/44
Signature Algorithm: sha256WithRSAEncryption
42:fd:5e:95:39:fd:1b:b6:fc:4f:3a:fe:2c:7c:ee:3c:c2:d2:
17:0d:0a:36:76:6d:3b:0e:94:58:ea:1c:25:31:40:99:ce:5c:
9e:94:00:9f:b1:e4:a6:76:86:b6:a3:50:0f:de:3f:92:b5:cf:
e1:a7:0a:b2:ba:e9:e8:1c:eb:2e:45:04:fb:6e:9d:d4:9d:26:
6a:3e:8e:85:48:c2:76:44:66:ed:a5:02:14:0a:4f:ae:fb:ee:
69:28:0a:f4:d6:1d:f5:4f:db:a6:c1:f0:d5:c3:30:cd:16:28:
4d:d5:24:39:fd:a9:a1:88:07:81:ed:72:06:0a:87:77:51:1e:
fa:b8:66:f8:32:c8:4e:e9:86:ab:58:2f:7a:40:97:eb:36:a0:
95:a3:12:43:94:97:f8:2f:f0:d9:f5:6c:4c:64:a5:e1:f7:0a:
64:2c:63:00:77:cb:8a:dd:46:d1:b3:54:14:ef:e9:af:b5:a4:
bf:d0:44:74:32:73:ad:ad:01:29:6b:05:49:d0:b2:8f:d0:09:
be:15:da:4f:8b:90:4d:53:0e:c1:5b:a8:cc:72:fd:fb:7f:aa:
48:2e:07:7e:38:d7:78:f0:45:a9:c1:77:8b:14:da:72:f7:42:
b1:76:81:79:ac:3e:90:fe:79:5a:8a:14:7b:fe:d7:4a:a8:c9:
fa:e0:4b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org