Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/iMSxqdT0phdhLLy_R0VK70T3iw4.roa
File: iMSxqdT0phdhLLy_R0VK70T3iw4.roa (raw, json)
Hash identifier: 6Ud4UumMqDwf01wqKgT+p1dRTFN9u+0vlEtZk0x09rA=
Subject key identifier: 88:C4:B1:A9:D4:F4:A6:17:61:2C:BC:BF:47:45:4A:EF:44:F7:8B:0E
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0186A450E1350A10B7151D9A3110899987DC
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/iMSxqdT0phdhLLy_R0VK70T3iw4.roa
Signing time: Thu 02 Mar 2023 21:53:29 +0000
ROA not before: Thu 02 Mar 2023 21:53:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199765
IP address blocks: 2a12:bec0:150::/44 maxlen: 44
Validation: Failed, certificate revoked on Fri 03 Mar 2023 09:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a4:50:e1:35:0a:10:b7:15:1d:9a:31:10:89:99:87:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Mar 2 21:53:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88c4b1a9d4f4a617612cbcbf47454aef44f78b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e3:97:43:9b:1f:ee:2a:b5:81:62:09:92:61:
07:9b:8b:33:1e:e1:06:53:61:59:d9:08:c8:a6:86:
68:c6:c6:49:a9:50:04:c0:d9:ab:a0:a6:6f:ed:56:
b0:2c:67:b3:5a:33:e3:4d:55:44:dd:0f:a1:ee:ad:
ff:ff:2a:5e:8b:13:fb:51:67:1a:11:87:a5:b5:fe:
ed:13:41:8b:52:f5:07:0f:8f:15:10:e1:a7:06:04:
b6:22:a1:44:f0:c7:63:0d:28:20:c1:2e:06:09:a2:
bb:df:00:15:51:de:6e:87:8c:cc:60:61:65:29:47:
f9:eb:12:d2:c0:af:ee:63:9f:f9:1c:3c:85:c9:cf:
ab:0f:30:53:41:bb:dd:f8:84:d3:49:63:24:66:27:
25:62:4c:48:f5:bd:ad:f3:c4:08:0d:d8:64:52:d0:
d0:77:13:be:ee:40:b0:31:29:a5:83:bc:3f:0e:b4:
9e:cc:fa:33:69:d9:63:8d:b6:f4:93:ae:3f:67:b8:
16:6a:c5:be:38:a0:8d:d2:51:83:3e:fa:08:a4:3c:
89:72:c2:33:5b:1d:ef:d1:b0:a6:4d:52:e2:e9:e0:
76:30:cb:b2:0d:00:1b:c8:26:63:78:b2:a9:38:b4:
40:5d:51:0e:87:65:41:91:47:1c:11:90:f6:67:0e:
cd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C4:B1:A9:D4:F4:A6:17:61:2C:BC:BF:47:45:4A:EF:44:F7:8B:0E
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/iMSxqdT0phdhLLy_R0VK70T3iw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:150::/44
Signature Algorithm: sha256WithRSAEncryption
02:d3:be:3c:17:97:a5:ee:5c:89:fc:36:8b:67:e6:f4:5f:3b:
ac:6b:57:78:ea:50:f3:04:ca:b9:9e:2e:ea:26:42:5a:55:20:
57:65:46:90:09:09:21:5d:44:8f:0f:be:da:65:c2:79:15:78:
40:d7:8f:96:7f:77:e1:f3:9f:8b:32:93:bd:07:46:06:c1:27:
d4:39:01:96:09:d7:13:14:c8:78:10:90:ff:44:4f:41:b5:37:
58:44:bc:54:9c:24:88:1a:a7:39:cb:bd:a3:93:fe:0e:8a:b7:
90:bf:e1:35:e0:28:4c:69:9a:7e:80:3d:f4:c0:27:18:f6:60:
2b:c0:cd:60:ca:4b:e8:5e:dd:58:2d:42:13:e3:68:f7:9e:bd:
38:f2:2b:6d:12:cb:48:e8:b8:49:a3:45:f8:1d:c7:36:07:f8:
df:40:58:74:a0:e7:63:83:86:47:92:9a:34:da:fe:e9:7c:fe:
7b:f6:e5:8f:89:d9:34:3a:f4:6d:1c:65:f5:79:84:4b:d6:cd:
0e:93:2e:66:0f:7c:f0:49:0d:f0:c3:60:14:dd:d9:1b:73:52:
d1:48:63:0c:cd:3b:0e:51:6f:ee:20:1d:cc:c1:4b:a7:15:9b:
bc:d5:5c:48:ec:33:4a:e3:fe:90:59:d2:eb:e5:7c:07:54:50:
ab:c9:4a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org