Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/WGjU9Xmy8jvCGG0tvn5HYg277VI.roa
File: WGjU9Xmy8jvCGG0tvn5HYg277VI.roa (raw, json)
Hash identifier: 2sjP+lZsCxFF+iJIum80DjzQLt+Cpc4qPPFS/nJypWg=
Subject key identifier: 58:68:D4:F5:79:B2:F2:3B:C2:18:6D:2D:BE:7E:47:62:0D:BB:ED:52
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0193226593A0FD461FB2067C70B8C3D1FC71
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/WGjU9Xmy8jvCGG0tvn5HYg277VI.roa
Signing time: Tue 12 Nov 2024 22:01:42 +0000
ROA not before: Tue 12 Nov 2024 22:01:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214422
IP address blocks: 2a12:bec4:1460::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 13 Nov 2024 11:11:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:22:65:93:a0:fd:46:1f:b2:06:7c:70:b8:c3:d1:fc:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Nov 12 22:01:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5868d4f579b2f23bc2186d2dbe7e47620dbbed52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:59:36:60:8d:af:33:f7:c4:41:17:15:49:ba:
bd:81:e9:3b:3b:7a:82:28:69:51:38:a9:11:91:b2:
9c:8c:7d:73:6c:a5:cd:d8:66:f7:74:79:bd:17:3e:
9f:dc:bb:79:26:28:9c:ed:3a:0f:fb:ee:3a:bb:f7:
02:99:27:38:72:79:ea:4e:50:26:74:50:7a:58:06:
52:ba:fa:bc:9f:63:0b:da:5d:f6:36:ed:b6:0c:af:
fd:94:76:2d:0d:81:09:92:be:25:ba:6e:ac:bb:b9:
6d:02:f5:04:53:10:b1:b0:54:10:bc:f3:12:a4:e4:
46:51:5a:ee:dc:a9:db:8f:08:23:e0:a1:0d:c3:06:
09:78:ea:2c:e2:ba:3a:8c:15:41:9b:71:c7:4d:c3:
e1:0e:2d:e7:e6:a4:a5:a2:73:45:16:89:90:1a:3f:
0e:14:8a:d2:aa:6c:45:2e:22:9d:a8:af:76:57:af:
42:7c:54:27:29:28:8a:a6:00:69:41:97:69:b7:b8:
38:41:88:82:c4:b2:a4:b9:0b:70:43:2d:6d:6a:cf:
2d:1d:ba:28:d4:93:16:5a:a4:70:50:b9:02:3c:9a:
12:15:52:70:79:c6:da:c1:9e:2c:26:99:53:13:ca:
59:75:57:6d:fb:0f:d2:be:22:9b:c1:04:de:fa:e9:
e0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:68:D4:F5:79:B2:F2:3B:C2:18:6D:2D:BE:7E:47:62:0D:BB:ED:52
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/WGjU9Xmy8jvCGG0tvn5HYg277VI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:1460::/44
Signature Algorithm: sha256WithRSAEncryption
4d:fd:ac:54:e7:a0:49:9a:c5:cb:a5:4b:ce:81:84:71:df:08:
1b:f8:d1:72:d8:42:95:5e:98:29:a1:71:6b:ef:bf:3c:11:fc:
3a:87:15:f4:55:4b:2a:2c:cd:d1:ec:a0:2d:b0:66:27:41:62:
ef:88:2a:7d:98:71:ad:0c:a5:cc:b4:3b:c8:8b:b7:d4:05:98:
4a:9f:db:5e:3d:ec:ca:8a:6b:da:8e:5b:05:7d:f7:6f:85:97:
01:bd:8b:a3:95:c7:6e:18:c1:81:bf:6c:26:e3:dc:9f:c3:33:
ae:48:c8:78:44:46:52:f4:c6:d2:0d:ec:c0:73:02:88:d1:d4:
25:3c:4b:4c:1f:32:b0:d3:d9:9c:90:6c:94:ea:e0:a3:1e:b9:
8f:a5:1c:e1:a4:a7:6f:e0:6a:b2:e8:50:a2:6e:22:2d:af:ce:
4f:07:ee:aa:f2:7b:66:f4:93:ce:a4:7b:bb:9e:01:b0:61:a0:
17:57:0a:30:09:ce:cf:81:ff:f7:e9:b5:b1:fe:50:56:d8:30:
1e:3e:59:fa:17:81:9f:ef:7d:78:b7:c5:8e:16:a1:11:04:74:
cf:da:39:63:76:af:e3:25:50:54:1f:8d:0c:a2:24:87:b8:5d:
ef:d9:02:31:19:bd:66:3d:4c:46:67:48:7e:67:6a:16:ac:4d:
88:2d:b8:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 14:06:17 2024 by rpki-client on console-ams.rpki-client.org