Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/pnb9nzlRfJ1x7EDKAnKfTCF0wRA.roa
File: pnb9nzlRfJ1x7EDKAnKfTCF0wRA.roa (raw, json)
Hash identifier: YI5PpGaG57kHp4tIiKPVtLgOD6cffjrj3ns9hIQ+eUI=
Subject key identifier: A6:76:FD:9F:39:51:7C:9D:71:EC:40:CA:02:72:9F:4C:21:74:C1:10
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0190B60D4C5206093FB08B6EEC06F5B43F5D
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/pnb9nzlRfJ1x7EDKAnKfTCF0wRA.roa
Signing time: Mon 15 Jul 2024 11:00:43 +0000
ROA not before: Mon 15 Jul 2024 11:00:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215269
IP address blocks: 2a12:bec4:13f0::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 06 Aug 2024 04:54:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b6:0d:4c:52:06:09:3f:b0:8b:6e:ec:06:f5:b4:3f:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jul 15 11:00:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a676fd9f39517c9d71ec40ca02729f4c2174c110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:31:c9:d7:cd:c3:0c:e8:50:0e:ab:9f:6c:06:
0c:06:a2:58:9d:3d:43:00:b2:c3:33:06:20:0a:52:
b5:27:e1:e4:7b:1e:28:a0:b6:a7:bd:e0:1f:3c:18:
f0:ad:75:81:ca:17:61:28:58:a0:6e:30:2a:0d:49:
b9:d2:2d:d4:57:75:ff:f8:3e:76:59:b2:df:d6:d9:
2c:98:c7:d4:ab:f9:4e:8e:0c:b0:71:14:ad:1f:17:
09:04:98:00:01:59:5d:81:81:f7:eb:dc:0a:9b:69:
17:13:c8:25:cb:7a:a1:d7:d3:d3:43:ee:d6:16:29:
73:d8:33:c2:41:d9:f1:60:11:55:1f:1f:2e:40:a6:
69:b6:32:f9:6f:e3:93:52:13:a3:11:7b:fd:c5:0f:
05:cb:d0:eb:39:6b:31:12:83:24:99:aa:c0:8d:a3:
2c:7e:02:f2:b7:b6:1b:ec:df:bc:96:0f:41:2f:bb:
59:2b:74:e0:bc:04:3d:ce:c2:a0:45:f6:4c:2f:cb:
9a:b9:0d:0d:ec:92:4e:1a:09:37:45:04:c4:49:0e:
a0:ae:ae:35:97:a2:43:5b:71:07:c2:f5:46:a9:a4:
52:f9:59:ac:39:a8:d1:dc:55:3e:c3:23:2c:39:e7:
83:67:db:cc:7f:76:cf:ae:c9:b1:b7:f3:2a:45:8e:
ac:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:76:FD:9F:39:51:7C:9D:71:EC:40:CA:02:72:9F:4C:21:74:C1:10
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/pnb9nzlRfJ1x7EDKAnKfTCF0wRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:13f0::/44
Signature Algorithm: sha256WithRSAEncryption
86:dc:d3:fd:d5:f6:2e:f7:a0:a3:66:ca:f0:e9:ce:cf:99:7b:
0b:4e:a6:44:ce:ed:d1:19:df:a9:a1:5e:70:b6:5f:82:65:86:
7f:ad:7d:c7:8c:e9:24:33:1c:67:19:84:42:7e:d1:e4:a1:88:
d9:a0:58:23:1a:25:e2:a6:1d:32:4b:cd:8a:4b:95:d9:da:80:
b1:93:80:e6:f7:ef:05:4a:e5:c5:30:c1:eb:ba:5e:42:a1:ff:
bd:db:07:af:fa:3d:e9:f6:ff:3b:b3:7c:af:a3:ba:ea:08:9e:
a7:2f:61:1a:1b:8d:ae:bb:3a:f2:93:bc:b2:a1:71:e5:4b:f3:
8c:31:18:a7:8c:c0:40:c1:6f:c0:82:a9:be:08:39:09:19:e6:
e1:5f:3e:58:7d:00:5b:32:64:51:16:b9:6e:22:81:d0:d4:ef:
2c:b6:09:27:bc:27:f1:c5:b3:98:4e:4b:03:3a:af:9f:3c:03:
9f:be:85:a1:ab:b5:5f:ba:6c:f0:db:23:ca:e6:62:98:c4:01:
e9:a5:4d:f8:f3:09:44:2b:50:77:ad:fe:a5:81:88:06:cd:f2:
96:d2:5c:30:3a:e4:fc:d1:5a:f9:99:f3:87:1a:d0:87:95:bd:
2c:9b:2a:50:b2:b4:78:37:62:27:dc:42:3d:6f:cd:e1:61:28:
e7:88:d3:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 6 07:25:33 2024 by rpki-client on console-ams.rpki-client.org