Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/d0JZPl5_1T-BUl_8CqvadsG7-yo.roa
File: d0JZPl5_1T-BUl_8CqvadsG7-yo.roa (raw, json)
Hash identifier: YRhppXm1KpI8eUh5A+FJXaNRpy68PIwJjKJzQ8uRESY=
Subject key identifier: 77:42:59:3E:5E:7F:D5:3F:81:52:5F:FC:0A:AB:DA:76:C1:BB:FB:2A
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018D8986E619D9A2813E09B6C3A66992CA0F
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/d0JZPl5_1T-BUl_8CqvadsG7-yo.roa
Signing time: Thu 08 Feb 2024 16:22:15 +0000
ROA not before: Thu 08 Feb 2024 16:22:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198351
IP address blocks: 2a12:bec4:1020::/48 maxlen: 48
2a12:bec4:1021::/48 maxlen: 48
2a12:bec4:1022::/48 maxlen: 48
2a12:bec4:1023::/48 maxlen: 48
2a12:bec4:1024::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 09 Feb 2024 07:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:89:86:e6:19:d9:a2:81:3e:09:b6:c3:a6:69:92:ca:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Feb 8 16:22:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7742593e5e7fd53f81525ffc0aabda76c1bbfb2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:27:0b:1e:b6:27:25:ee:7a:c2:61:8f:0d:f7:
34:29:58:22:99:47:f2:e3:80:02:fa:c5:cb:b8:c3:
62:3a:ba:1e:c0:de:ae:89:6c:ee:0a:2f:35:ea:9d:
61:f6:74:f5:15:09:4e:d0:03:da:1f:cd:de:46:30:
59:55:84:9f:72:86:b3:00:8e:a4:3f:ec:15:30:16:
12:e7:03:81:fc:2b:49:07:f0:6d:57:91:55:39:ad:
6b:21:51:0d:a8:08:ab:e7:93:06:e0:02:be:02:c2:
d3:5c:26:d2:41:55:89:cf:ea:44:ee:36:dc:b7:9f:
f4:20:9c:0c:6a:54:f0:96:a4:b0:69:65:c5:ea:f4:
c4:c4:b8:9f:16:aa:b5:a2:18:e6:f8:84:90:1e:ea:
88:ab:8e:aa:6e:92:75:fa:f3:95:63:a6:4a:53:66:
dd:2f:0a:e8:3d:0b:a8:39:da:7e:80:84:f3:46:a6:
c2:4f:06:17:e7:0a:8f:13:67:d9:7e:cf:ce:a8:80:
31:41:9c:15:6d:92:7f:1f:b6:d6:2f:c3:02:1e:1b:
e9:1e:73:c7:f4:27:bd:f6:56:35:81:4a:ac:bc:47:
cb:dd:25:c9:4b:d7:f1:3c:8f:1d:54:cd:72:5e:4b:
1a:2e:cf:0e:c4:65:0b:87:1a:cd:73:79:e4:85:00:
b3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:42:59:3E:5E:7F:D5:3F:81:52:5F:FC:0A:AB:DA:76:C1:BB:FB:2A
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/d0JZPl5_1T-BUl_8CqvadsG7-yo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:1020::-2a12:bec4:1024:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
96:35:88:ea:8b:bf:e1:ac:3c:2c:37:98:89:28:0a:d0:bb:22:
7a:7d:1b:d2:6a:36:84:ce:87:c5:84:73:dd:65:65:6b:66:21:
27:df:60:61:77:89:4d:5c:91:b9:f0:35:f3:57:2f:75:03:5d:
54:fb:59:bd:c2:e7:6c:17:1c:6b:d6:71:1e:16:b7:11:db:51:
bb:6f:a7:be:c6:37:a7:6c:5f:5d:12:2c:4d:9f:ae:53:48:a8:
4a:0e:8e:31:3b:b7:08:86:2b:e8:c9:04:9c:ae:00:6e:21:bc:
08:f5:e2:90:9a:ba:8d:70:7d:32:49:77:39:1b:3d:56:15:b5:
45:45:cf:c0:bf:38:24:aa:42:50:96:90:31:27:f0:41:51:85:
7a:df:90:f7:2a:b8:12:33:fa:77:7a:54:e2:9c:7f:9b:63:88:
cd:ed:a0:af:b1:46:08:0e:29:9e:04:66:ed:39:a2:5c:1f:de:
95:5d:dc:13:b7:7a:e9:65:c6:c0:25:8b:dc:d3:06:7a:8f:9e:
08:24:e2:ff:06:ed:f2:38:39:ab:71:40:b7:87:c1:f6:7f:75:
d3:09:78:fd:49:22:16:35:67:1e:40:d5:8c:c5:bc:df:e7:d2:
8d:d9:ad:02:08:25:b6:3e:ab:ce:20:6d:40:a2:3d:c3:f7:58:
9e:ea:c8:81
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org