Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Sg0lXxruiQvyuhtlz34-jqEhvSQ.roa
File: Sg0lXxruiQvyuhtlz34-jqEhvSQ.roa (raw, json)
Hash identifier: Loxrpoyrh0tylIr9nhbNhrWFV1DO2ogSgkiFxSzql3Y=
Subject key identifier: 4A:0D:25:5F:1A:EE:89:0B:F2:BA:1B:65:CF:7E:3E:8E:A1:21:BD:24
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018683FFF46950B93429E88F75446EEE3864
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Sg0lXxruiQvyuhtlz34-jqEhvSQ.roa
Signing time: Fri 24 Feb 2023 15:17:14 +0000
ROA not before: Fri 24 Feb 2023 15:17:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52041
IP address blocks: 2a12:bec1:b00b::/48 maxlen: 48
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 05 Mar 2023 21:24:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:83:ff:f4:69:50:b9:34:29:e8:8f:75:44:6e:ee:38:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Feb 24 15:17:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a0d255f1aee890bf2ba1b65cf7e3e8ea121bd24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:30:a9:a6:68:9d:6f:40:b4:d5:78:92:39:13:
e8:6f:f2:e6:05:ed:c0:f7:07:79:43:5b:c5:2e:c3:
9f:18:d9:f0:40:77:b9:a2:38:41:fa:36:a5:19:7d:
ee:64:7c:bc:83:2f:3b:47:84:5e:af:0c:21:3e:6c:
b2:0c:69:fa:c5:2a:43:22:c1:7a:37:29:34:68:54:
9a:4f:d5:8d:8d:2f:b9:9a:ea:58:ae:3d:5a:e5:53:
be:35:9b:d4:20:28:ae:02:49:7a:ab:e4:30:07:55:
b7:20:7f:ae:33:4c:c1:3e:96:79:ec:ce:c6:18:d9:
94:2b:5e:3b:f9:b8:0f:6e:aa:c4:34:37:80:3e:f2:
70:5f:30:32:06:7f:13:cb:31:a9:96:51:92:e3:a1:
45:cb:df:37:fc:30:6c:e1:1e:ad:4c:83:79:22:3c:
6f:1f:1e:0c:18:6b:a4:55:57:a3:f2:eb:2a:84:a0:
69:b8:79:4a:a0:5a:b7:52:63:87:e5:c7:3e:05:29:
7b:d7:0c:7c:8b:62:96:be:cf:81:16:54:bb:5a:6b:
90:81:e5:0c:aa:90:e0:ff:0a:25:80:19:6a:82:2d:
48:52:dc:4a:9e:43:3c:e2:2d:c3:3b:f8:a4:7e:b2:
b5:5b:5c:8f:df:2a:a0:fc:70:29:1f:f5:bb:3b:30:
75:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0D:25:5F:1A:EE:89:0B:F2:BA:1B:65:CF:7E:3E:8E:A1:21:BD:24
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Sg0lXxruiQvyuhtlz34-jqEhvSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:d0::/44
2a12:bec0:7000::/47
2a12:bec0:b00b::/48
2a12:bec1:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
5a:b9:8e:73:2e:a0:a6:42:b0:5d:c4:80:3c:79:a7:e7:de:e0:
dc:da:c6:a3:3a:39:3a:73:76:23:73:35:90:fe:cc:e5:c9:59:
8a:4d:7c:93:14:85:b8:be:54:c8:81:6a:e3:d2:b9:11:9c:0f:
34:e8:5a:38:a3:4a:09:7c:14:c5:4b:a8:33:a7:68:4d:51:d3:
11:e1:50:25:c8:42:27:a1:f1:f4:6e:0b:bc:ae:30:d2:16:25:
0e:75:27:9d:37:a1:70:65:45:be:fb:95:c2:a3:01:73:72:fb:
18:41:5b:dc:b9:5b:c1:67:cd:2b:0d:67:f3:50:6c:cb:24:03:
b0:c3:1b:81:bd:95:dc:c3:e6:52:84:b9:bc:6b:3a:07:c0:f7:
c6:a3:fe:1c:ac:53:bf:85:30:62:17:ac:dc:34:d1:a2:5f:c4:
f3:b7:0e:2a:1d:63:b5:bf:01:e7:af:2a:c4:20:40:9a:f3:b7:
8b:cd:2a:a1:35:f1:57:14:26:41:4b:44:4c:e6:2f:26:f1:a4:
64:ef:15:16:41:91:f3:cf:6c:f4:c7:e8:86:8a:18:ca:68:6e:
eb:b5:24:c6:53:d8:d1:f6:36:68:91:79:0e:36:d9:f1:00:63:
41:c1:e9:7b:41:bd:4e:62:6f:96:6b:c5:f5:25:4a:4f:12:ec:
0a:85:79:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org