Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/dQruiTqQcPS64QMr0Qd46igyGCg.roa
File: dQruiTqQcPS64QMr0Qd46igyGCg.roa (raw, json)
Hash identifier: vLBoRXtXBP4Mnb3zQJOOPCFXuZSgYOUedv6AiM1m/QQ=
Subject key identifier: 75:0A:EE:89:3A:90:70:F4:BA:E1:03:2B:D1:07:78:EA:28:32:18:28
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0186EE8537B707CCB28408041A754D1E6201
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/dQruiTqQcPS64QMr0Qd46igyGCg.roa
Signing time: Fri 17 Mar 2023 07:42:33 +0000
ROA not before: Fri 17 Mar 2023 07:42:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199457
IP address blocks: 2a12:bec0:220::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ee:85:37:b7:07:cc:b2:84:08:04:1a:75:4d:1e:62:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Mar 17 07:42:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=750aee893a9070f4bae1032bd10778ea28321828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:53:80:99:10:ac:cc:1c:e5:9c:51:6e:6b:9d:
ce:75:ca:0a:58:db:bc:b4:68:84:53:80:55:f1:8f:
54:f3:f5:3a:33:58:04:2d:ee:25:ce:3d:26:b4:bd:
2c:7d:65:65:60:e4:f5:2e:19:27:91:38:6c:d3:61:
1e:0b:d0:88:9e:e5:75:17:21:d8:b0:9a:50:9a:bd:
9c:2d:20:ed:34:9f:08:e0:7c:3e:47:4c:2b:51:30:
58:8f:ff:1c:57:2d:69:a2:14:15:31:6c:5b:9d:fa:
b6:c1:7f:01:52:a3:c6:22:42:a7:e6:0f:b6:5a:a0:
02:81:cd:f7:7a:7a:69:87:77:e2:78:cf:0d:30:f4:
7a:98:94:63:fb:fa:55:94:16:fb:86:a5:77:de:ef:
5b:5d:df:f4:c8:d2:7b:39:ad:e2:5f:87:94:6f:2e:
f2:ea:df:d3:4c:ca:c8:5e:22:02:6d:ed:9b:81:62:
a4:2b:93:66:5c:c9:82:8e:d8:7e:0e:f1:5e:69:d9:
14:f3:71:11:b5:a5:cc:79:76:9d:b7:74:89:c7:84:
d8:e5:79:e4:94:01:07:34:88:88:6f:43:10:18:57:
0d:63:1b:0d:bb:7b:bb:10:9c:63:ef:dc:ea:c9:c5:
18:7f:e9:ed:ae:a2:9c:36:19:3a:77:5f:0b:e3:0d:
74:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0A:EE:89:3A:90:70:F4:BA:E1:03:2B:D1:07:78:EA:28:32:18:28
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/dQruiTqQcPS64QMr0Qd46igyGCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:220::/44
Signature Algorithm: sha256WithRSAEncryption
9d:54:c3:0e:be:9d:4c:f1:19:3e:39:ab:37:df:94:85:a7:d5:
8a:ea:00:b0:d3:f6:1c:3d:70:48:1c:9e:6e:6f:b5:2d:8f:10:
b8:c9:42:6f:2f:e0:c5:c8:b7:f3:96:31:be:e7:79:49:a1:9b:
ab:bb:3d:74:a0:16:06:f6:0c:00:6d:17:6d:23:b5:ae:21:26:
59:98:1e:54:87:9f:2a:c1:dd:07:da:d2:14:49:ef:57:93:85:
b9:28:c5:f3:56:d4:00:9f:36:57:83:56:b8:ba:30:0d:45:43:
99:71:53:91:35:77:36:84:b4:11:ca:56:ff:49:fb:2b:e3:c8:
78:46:9f:a5:5d:ef:05:a9:e1:da:73:c3:3c:fd:4f:6e:4c:d1:
e8:45:11:10:5f:12:56:94:68:db:e8:73:e1:a3:1e:9c:01:ac:
ad:0e:31:d4:4d:6f:c7:f6:f0:89:84:06:56:eb:66:2e:e5:06:
98:7f:49:b6:6e:9d:84:2f:33:10:ad:4d:58:b3:b7:d2:f2:05:
24:ad:27:60:e6:25:ee:09:01:33:87:36:68:d7:82:ba:28:4d:
ca:79:94:c5:b4:55:6e:01:90:ce:af:4a:f5:31:eb:ef:00:90:
10:a1:16:a8:d8:b4:71:d5:12:7d:00:b3:55:79:65:f4:26:f5:
e6:7d:f9:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org