Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/jSUYZccRHybPBLF-N6C5Ps99NFg.roa
File: jSUYZccRHybPBLF-N6C5Ps99NFg.roa (raw, json)
Hash identifier: bIoIDgUha9TfkB4hC3ty+zm/n8FpTGyH9kE/vRAVmJM=
Subject key identifier: 8D:25:18:65:C7:11:1F:26:CF:04:B1:7E:37:A0:B9:3E:CF:7D:34:58
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018E99B2A3D8458A1FE11C9D912854633507
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/jSUYZccRHybPBLF-N6C5Ps99NFg.roa
Signing time: Mon 01 Apr 2024 12:46:45 +0000
ROA not before: Mon 01 Apr 2024 12:46:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198351
IP address blocks: 2a12:bec4:1020::/48 maxlen: 48
2a12:bec4:1021::/48 maxlen: 48
2a12:bec4:1022::/48 maxlen: 48
2a12:bec4:1023::/48 maxlen: 48
2a12:bec4:1024::/48 maxlen: 48
2a12:bec4:1025::/48 maxlen: 48
2a12:bec4:1026::/48 maxlen: 48
2a12:bec4:1027::/48 maxlen: 48
2a12:bec4:1028::/48 maxlen: 48
2a12:bec4:1029::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 13 May 2024 10:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:99:b2:a3:d8:45:8a:1f:e1:1c:9d:91:28:54:63:35:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 1 12:46:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d251865c7111f26cf04b17e37a0b93ecf7d3458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:35:04:bc:78:8f:f7:6d:85:20:45:57:fe:65:
ca:c5:d6:dc:18:5d:f8:bf:d4:dc:14:5e:84:8b:b3:
6b:e6:e8:7d:87:f2:44:d9:88:fd:4e:a9:45:a4:cd:
9c:d5:ad:61:f3:3d:eb:76:84:88:00:ea:fa:0b:30:
be:6f:f1:75:d0:46:bf:11:c3:0e:9d:e3:35:25:37:
82:e9:81:c5:4a:33:02:d4:46:30:3e:f9:23:27:21:
c0:d6:d6:08:de:42:cc:cc:69:c6:82:5f:55:b7:00:
c0:d6:c9:2b:12:a6:cc:1b:0a:95:2f:29:ba:38:42:
a2:af:1a:12:45:8c:7d:d5:80:ef:f9:ef:ac:90:5f:
23:aa:16:b3:f4:72:e5:95:c2:bc:40:38:8b:09:bf:
b9:25:78:28:fa:5a:52:c2:c9:ed:48:12:9c:1e:25:
f9:4f:58:e8:ca:35:40:80:c8:98:43:e1:20:ee:cd:
2a:f9:d2:68:1a:e7:1d:1a:93:e5:18:c7:42:ad:23:
c4:f9:3c:b5:0c:b3:2a:8f:bc:50:06:4d:b2:15:03:
f5:d1:7d:82:38:90:5c:81:9a:f9:f8:be:d4:6e:27:
f0:48:64:69:2d:10:03:28:50:f7:a8:de:0d:e0:f9:
79:ae:79:bf:73:fd:41:af:3d:47:1f:92:93:83:cb:
39:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:25:18:65:C7:11:1F:26:CF:04:B1:7E:37:A0:B9:3E:CF:7D:34:58
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/jSUYZccRHybPBLF-N6C5Ps99NFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:1020::-2a12:bec4:1029:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4c:15:0a:22:f0:33:ab:e5:3d:89:48:92:5d:f7:60:24:14:db:
9d:04:49:25:82:3e:3c:97:bd:75:06:7c:0e:a9:4d:87:9d:3a:
9b:c3:f2:b7:03:95:38:2d:14:cd:5a:e1:6c:92:74:81:6a:db:
a1:bf:99:f3:5c:a1:af:d0:23:00:af:3e:ca:9e:83:5e:98:7b:
87:f4:48:cb:c3:c6:9b:d5:30:7c:91:62:08:f3:b5:42:19:aa:
5c:b2:03:bb:4b:4c:93:cc:e7:5f:ed:df:16:d4:5d:89:32:ec:
fe:47:b3:0d:c1:34:d1:74:5d:90:85:c9:af:2f:20:a5:68:9f:
9d:a3:20:8b:6c:29:b3:f4:bd:dc:fa:67:13:32:80:d9:6c:dd:
bb:35:54:4a:c2:25:0d:3a:81:4c:ea:1b:3c:08:44:63:14:2a:
b1:0a:06:c8:8f:93:b4:d0:f2:9a:15:19:34:c8:58:cb:f0:e8:
62:60:f4:c3:8b:2e:de:ac:65:dc:52:53:78:a8:d5:9e:f8:5f:
df:af:37:06:bd:01:f0:dc:f0:2e:f6:41:7e:4b:1a:70:aa:7e:
f4:1b:8f:f1:f8:b7:4b:bb:b8:ad:85:00:cf:fa:53:5d:fc:f6:
f0:e1:df:93:81:49:66:bc:48:86:3a:b0:66:c9:8a:9d:3b:5a:
ce:31:7b:33
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org