Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/XeS8XQ6qp-cqai2voal_BI5GjAk.roa
File: XeS8XQ6qp-cqai2voal_BI5GjAk.roa (raw, json)
Hash identifier: YqUK+ALSuxks+qufDCcVA39X8pyG10XGbSLo7QJ3slc=
Subject key identifier: 5D:E4:BC:5D:0E:AA:A7:E7:2A:6A:2D:AF:A1:A9:7F:04:8E:46:8C:09
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018D008658CF07C2739B1B4F61FE730F26B3
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/XeS8XQ6qp-cqai2voal_BI5GjAk.roa
Signing time: Sat 13 Jan 2024 01:53:40 +0000
ROA not before: Sat 13 Jan 2024 01:53:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215745
IP address blocks: 2a12:bec0:638::/46 maxlen: 46
Validation: Failed, certificate revoked on Sat 13 Jan 2024 13:16:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:00:86:58:cf:07:c2:73:9b:1b:4f:61:fe:73:0f:26:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 13 01:53:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5de4bc5d0eaaa7e72a6a2dafa1a97f048e468c09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:38:ba:0d:3b:2d:c9:8d:52:8c:f9:9a:fd:fd:
53:46:f4:45:80:88:af:f9:34:86:e3:0b:c9:93:c7:
b5:68:c7:e2:ba:8e:3c:fc:58:b9:5f:6f:cd:39:ae:
02:1f:82:20:8e:7f:f8:7d:27:5d:8e:0f:9b:26:24:
b5:ce:c2:fa:83:4c:3c:ef:8c:d3:b4:cf:c8:95:30:
2f:4c:87:9e:f8:a6:45:e7:ec:1b:81:79:6c:a4:40:
22:02:49:bc:1a:b7:88:e7:31:99:4b:63:f0:fc:b8:
ec:9a:46:c0:f1:3d:37:95:ba:61:b5:4d:e9:b7:48:
f5:7f:5b:9b:ef:b2:ab:0f:89:cf:d9:44:00:5d:76:
ec:ee:8c:c6:df:c0:9a:75:c1:ef:de:34:64:a3:8c:
30:48:05:1a:39:1b:9f:23:5c:70:0f:05:bc:1d:06:
0a:1f:84:40:2f:e2:0a:87:54:db:bd:cf:d6:5d:ec:
42:aa:22:57:c4:1d:bc:9a:b1:80:ca:27:8e:a6:7c:
a1:88:7d:f4:66:a7:6c:5c:39:6d:3d:d0:d9:54:e9:
cf:f8:80:94:80:52:0d:d3:78:d6:74:2c:09:11:99:
3f:e9:4c:46:2b:7b:70:4c:b2:8f:47:82:c7:5d:d7:
d4:ac:a4:df:6c:0a:02:4c:47:19:dd:fc:0c:21:d3:
fa:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E4:BC:5D:0E:AA:A7:E7:2A:6A:2D:AF:A1:A9:7F:04:8E:46:8C:09
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/XeS8XQ6qp-cqai2voal_BI5GjAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:638::/46
Signature Algorithm: sha256WithRSAEncryption
a7:07:af:37:d4:d4:4a:21:a7:06:bc:75:a5:37:11:99:fe:9b:
95:97:19:83:f6:59:85:8e:df:95:58:f6:78:05:3c:61:d0:19:
71:6c:56:9c:6b:56:7c:98:88:ad:e6:74:42:c9:52:9c:7e:44:
d6:d4:bd:88:84:87:e3:68:96:86:17:00:79:d8:cb:11:74:2e:
57:17:dd:63:71:6d:80:10:e1:5a:67:99:1c:a3:48:6c:98:eb:
37:d8:9b:95:d3:5e:7f:0c:c7:c0:1d:53:9c:ba:15:14:3f:91:
19:c4:47:53:e2:e8:b2:97:89:ab:f2:00:0e:af:ad:5f:0e:e4:
ab:cf:98:2c:b3:35:b9:2b:b5:f3:8a:b7:40:73:e5:d7:ce:d7:
61:6f:60:6c:c2:3f:66:d4:03:9a:78:37:96:c0:36:60:b4:a3:
0f:7a:1e:9d:ce:4f:6c:3d:c5:d6:9c:90:1e:49:a6:b2:90:e0:
1a:b8:ec:ad:3c:14:f9:7a:98:f9:5d:d8:7c:45:5c:e4:e5:86:
bc:5e:af:1f:2a:03:aa:5f:f4:6f:7f:fd:51:29:d6:02:7d:88:
61:1d:ab:94:76:df:d2:49:7e:ad:47:33:4e:56:6e:8a:de:36:
96:8a:58:50:11:c9:3e:e3:84:3c:fd:8a:d6:dc:d7:00:c7:e6:
4c:4c:48:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org