Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/YhhzCuNqmI78HMHFsXB3Rjq-Rs8.roa
File: YhhzCuNqmI78HMHFsXB3Rjq-Rs8.roa (raw, json)
Hash identifier: hFR9bjMuF+17Fvx0Gqelv4gokBQYy1qvimUODKUHhcY=
Subject key identifier: 62:18:73:0A:E3:6A:98:8E:FC:1C:C1:C5:B1:70:77:46:3A:BE:46:CF
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018DD0F18FA0633CCDA73D2385EADA6A4F42
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/YhhzCuNqmI78HMHFsXB3Rjq-Rs8.roa
Signing time: Thu 22 Feb 2024 13:11:48 +0000
ROA not before: Thu 22 Feb 2024 13:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215439
IP address blocks: 2a12:bec4:10b0::/44 maxlen: 44
Validation: Failed, certificate revoked on Sat 24 Feb 2024 18:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:f1:8f:a0:63:3c:cd:a7:3d:23:85:ea:da:6a:4f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Feb 22 13:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6218730ae36a988efc1cc1c5b17077463abe46cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:17:6f:96:d6:5f:28:d0:fb:e2:ab:de:51:2b:
19:97:28:fd:a8:31:92:49:0b:d5:35:c3:cd:a6:05:
dc:ce:78:75:1b:24:ab:3c:d2:b0:eb:02:17:b2:02:
55:02:50:99:2d:a3:f3:6b:2f:fa:60:04:bc:8a:96:
14:e9:3e:d3:99:20:9f:fb:a3:05:d9:ac:9c:8d:30:
ff:0a:67:c1:1a:40:5e:36:04:52:98:d3:5a:f6:1f:
9d:a2:e6:1c:33:da:94:37:24:c5:5a:ea:96:0c:ef:
39:b8:97:9c:7b:e9:f3:94:78:2e:e4:1b:b7:03:72:
b2:3a:da:eb:9f:e3:9e:ae:f3:a7:b5:4f:6e:98:f7:
e9:2b:e0:ee:74:18:2f:c4:cd:43:b5:17:8c:e8:fe:
a4:b6:8f:7e:c0:3c:29:06:ca:7b:14:f2:a9:55:88:
c5:4c:be:58:cd:92:54:eb:f8:c3:26:47:42:02:78:
10:89:b6:6e:ab:56:e4:66:44:d8:75:62:a9:e2:5b:
93:c3:d4:5f:1b:09:75:d9:f5:84:db:80:e0:78:c6:
0b:32:70:3b:4f:d1:26:d1:ad:d1:2e:ec:e7:9c:b7:
2c:38:4b:46:66:99:f6:a3:17:81:41:bf:d1:c1:bd:
cb:26:ed:34:05:a7:76:73:be:de:96:da:94:ea:f0:
eb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:18:73:0A:E3:6A:98:8E:FC:1C:C1:C5:B1:70:77:46:3A:BE:46:CF
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/YhhzCuNqmI78HMHFsXB3Rjq-Rs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:10b0::/44
Signature Algorithm: sha256WithRSAEncryption
c3:dd:71:3a:95:bc:de:b5:53:10:69:a6:86:c6:a2:99:04:e5:
2d:7f:3b:74:74:22:80:6c:00:b1:83:ee:9b:8b:e9:51:9d:ce:
8b:ed:f8:0e:61:8b:6c:cc:a6:1a:e5:24:1c:c5:bf:7b:6e:62:
19:e2:35:ba:4a:01:f1:1c:78:31:94:fd:e4:43:1b:92:eb:07:
fa:5b:da:68:85:3c:55:cb:59:1c:74:a9:70:73:cf:ac:74:65:
6b:a0:dc:15:49:43:e5:39:9d:57:25:ed:a9:8a:bd:44:82:a3:
6b:bc:28:6a:d9:d4:e7:d1:81:06:44:8c:6a:65:2e:d0:63:33:
49:a9:11:60:5c:96:67:2a:b9:2d:8f:ca:6d:aa:39:2a:94:93:
9d:eb:62:f7:d4:1b:44:5c:36:1e:dc:63:7f:cf:d3:d8:f0:4e:
a5:8d:47:e8:a2:6a:de:4f:92:1d:2f:51:25:11:86:b7:e4:f1:
74:77:b4:82:b7:35:35:40:f1:c5:8b:d7:72:87:d0:03:ff:f0:
46:95:c3:3e:e5:22:95:a9:50:d1:f2:50:4f:b0:8a:f9:31:c0:
74:57:f2:32:27:5c:87:d6:7d:53:73:6e:88:fd:06:0b:55:da:
84:36:e4:ef:5d:87:6f:23:c2:b1:89:16:c7:10:08:10:0a:73:
00:07:ab:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org