Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/YRnQYu3TdH0kSXIU1YBbP3wcMb4.roa
File: YRnQYu3TdH0kSXIU1YBbP3wcMb4.roa (raw, json)
Hash identifier: hLtfcai9Tjq7ihUtiiaYxqH1q6t1aou7wPrvQl4KTu8=
Subject key identifier: 61:19:D0:62:ED:D3:74:7D:24:49:72:14:D5:80:5B:3F:7C:1C:31:BE
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0186A9ACD102D155BF6825C45DCF8D0BB891
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/YRnQYu3TdH0kSXIU1YBbP3wcMb4.roa
Signing time: Fri 03 Mar 2023 22:52:00 +0000
ROA not before: Fri 03 Mar 2023 22:52:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199685
IP address blocks: 2a12:bec0:180::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a9:ac:d1:02:d1:55:bf:68:25:c4:5d:cf:8d:0b:b8:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Mar 3 22:52:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6119d062edd3747d24497214d5805b3f7c1c31be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c2:ee:48:20:5d:fc:70:6c:a9:4d:85:a3:7b:
69:17:6c:a2:b7:06:65:22:b9:79:96:de:22:11:94:
28:71:2e:0a:f2:ff:00:93:b3:eb:35:53:4c:e9:c6:
53:82:57:87:c8:93:ed:80:76:40:57:da:f1:8c:20:
65:3d:46:19:e5:00:d4:b6:73:ef:b5:74:62:15:6d:
97:f4:88:1a:13:fc:ba:1b:57:be:d3:68:dd:be:8c:
3f:3b:56:ae:a4:d6:cc:24:87:24:a2:ba:5a:80:a0:
ee:ab:6c:43:a4:32:b2:dd:8b:60:f6:d0:1a:51:c9:
67:ed:67:3e:ae:49:b7:bd:ed:db:49:d0:cb:ae:19:
21:e0:26:f2:cd:83:7c:10:64:b8:cf:e6:a7:b2:5a:
89:5b:de:02:92:5f:77:d8:c0:71:06:00:5f:0a:a1:
25:2d:06:60:20:1c:d4:6c:b5:f6:97:04:e7:60:ce:
1c:c9:64:64:b2:e6:3f:f9:db:09:b6:98:69:10:ac:
56:d2:44:63:9b:98:e9:4a:48:95:ff:6f:17:63:d4:
c7:cd:cc:7a:21:5a:b4:e2:94:85:79:7e:0c:79:1b:
5a:49:5c:9d:9c:51:61:3b:8a:6a:0f:68:98:56:5b:
3f:f4:00:ac:a3:1e:46:54:2e:9c:45:5c:03:0d:2b:
d1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:19:D0:62:ED:D3:74:7D:24:49:72:14:D5:80:5B:3F:7C:1C:31:BE
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/YRnQYu3TdH0kSXIU1YBbP3wcMb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:180::/44
Signature Algorithm: sha256WithRSAEncryption
12:9c:7f:58:d0:88:20:0e:ba:eb:0d:f1:ea:50:e0:51:2e:b2:
f2:9d:93:4a:4e:d3:f8:81:c7:41:c0:e2:58:0d:47:94:25:5a:
46:d2:43:c9:cf:dc:55:d8:85:61:21:f3:0c:1f:3d:49:54:e1:
4c:47:4f:43:95:36:60:b3:e4:5b:ac:17:6c:b4:1a:05:4a:b6:
13:b5:4a:20:1b:97:5e:6f:d9:10:1d:30:0b:5b:62:10:cc:d6:
8e:a1:77:b4:69:dc:69:e8:2c:40:c9:03:41:aa:52:1b:38:db:
41:84:50:fb:8c:59:b1:a2:68:77:48:95:e6:f4:b0:14:00:b0:
30:d5:01:4e:da:25:b2:c0:15:6b:22:bc:86:39:77:0f:a2:e3:
43:e7:9c:7f:13:b8:28:7c:66:8c:ee:19:50:34:ec:e0:75:2e:
80:7e:d3:81:1c:d1:97:b3:12:72:1c:25:d8:60:da:9e:c1:ef:
7b:ce:d2:74:c0:47:4e:a6:91:f3:bb:c2:74:a0:85:a0:4a:02:
22:ec:18:4f:19:76:3d:6f:1d:78:d7:cb:4b:56:86:4a:c8:52:
7a:79:e9:bb:0c:55:db:5c:37:96:fd:06:47:ba:b8:f6:06:b7:
ac:43:78:79:22:5f:67:b8:96:97:6c:ba:64:76:67:e0:da:09:
da:27:82:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org