Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/raHhIXehX6wJ-5q7V6-7Iq8q_VE.roa
File: raHhIXehX6wJ-5q7V6-7Iq8q_VE.roa (raw, json)
Hash identifier: dgFcHGhjUG1HKTiJnYzpUwDOkWjK+kl1GU6cSjXZ+SE=
Subject key identifier: AD:A1:E1:21:77:A1:5F:AC:09:FB:9A:BB:57:AF:BB:22:AF:2A:FD:51
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0186088C381F310CAFF0A2ED36626ACCD161
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/raHhIXehX6wJ-5q7V6-7Iq8q_VE.roa
Signing time: Tue 31 Jan 2023 15:57:32 +0000
ROA not before: Tue 31 Jan 2023 15:57:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200180
IP address blocks: 2a12:bec0:110::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:8c:38:1f:31:0c:af:f0:a2:ed:36:62:6a:cc:d1:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 31 15:57:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ada1e12177a15fac09fb9abb57afbb22af2afd51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:14:6a:8c:16:b5:e4:30:f5:a7:21:62:8f:58:
fe:88:c3:84:91:3b:e2:09:59:b6:97:25:e1:24:1a:
42:1a:f4:6e:90:83:9b:b5:5e:d2:9c:cb:45:f9:88:
1e:4c:0c:be:29:28:5b:94:e4:8b:3c:e1:7f:0d:88:
64:61:01:1b:97:78:9b:d1:c9:23:a5:a4:1d:f0:cb:
c7:cc:ce:c2:23:b7:57:f0:5e:31:11:0d:c4:7c:f4:
9b:d4:21:9e:30:b7:1a:68:b7:99:e2:ab:61:b7:20:
91:b4:09:4c:76:7f:21:a3:43:97:92:01:3f:00:3a:
23:fa:d9:be:ef:c7:7a:4c:6a:d9:1b:be:11:99:96:
88:2e:88:23:fe:d9:1f:4d:62:62:2b:85:ad:c9:57:
e5:ce:2b:8a:0c:2d:90:c1:e0:44:f2:fc:0d:eb:04:
af:d8:de:71:37:29:96:3a:a1:60:ab:f2:72:93:53:
60:96:65:50:1b:2e:33:7f:34:63:5f:e8:c1:34:08:
f5:1c:cc:a5:0a:07:21:b6:9e:58:bf:ab:9d:61:ee:
0c:e9:be:7b:73:06:83:9a:ab:40:cb:c9:08:ba:32:
0b:77:1d:3f:32:32:a5:d7:95:5e:e6:e5:b2:95:8d:
27:e4:47:55:eb:74:d8:01:cd:cc:3b:b6:fa:d8:92:
c8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A1:E1:21:77:A1:5F:AC:09:FB:9A:BB:57:AF:BB:22:AF:2A:FD:51
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/raHhIXehX6wJ-5q7V6-7Iq8q_VE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:110::/44
Signature Algorithm: sha256WithRSAEncryption
47:0c:3d:fe:f1:99:61:c3:2c:83:41:02:c6:48:87:b0:5b:99:
89:5c:1d:74:49:43:b1:71:86:3e:8c:85:31:87:d6:98:6d:9e:
19:b7:a5:82:ce:33:08:19:c8:32:45:e6:a2:ea:19:b7:24:2d:
ee:42:86:79:38:51:5a:99:42:ca:1d:b2:08:7e:aa:f6:5e:4f:
50:26:68:b3:8c:3c:77:17:8e:e7:3b:86:24:42:f0:5c:fa:d6:
d2:3e:c5:f6:48:7e:30:fb:c9:6e:a5:b4:f2:5f:49:91:6a:e2:
ed:e2:de:05:58:5d:38:ec:74:fa:1f:68:5f:a0:df:ea:79:8a:
db:fe:16:93:ec:5d:6e:00:a5:ee:76:68:08:0b:d4:b1:a7:d7:
c7:a8:52:46:74:ac:4b:0f:18:ff:00:7a:7b:fe:05:e1:a3:60:
8a:45:30:f6:2b:76:8f:27:ef:ec:b6:9b:eb:f4:ac:25:4a:97:
7c:bf:29:e6:87:ae:48:e2:60:ec:fe:ff:bf:ec:2c:a7:59:fa:
a4:48:d7:24:92:da:1c:9d:ea:15:45:fa:c3:6d:f7:8e:5f:27:
4e:0a:29:0d:60:b6:09:5b:79:01:c1:94:4f:37:20:4b:57:b2:
af:7e:31:bb:6e:31:43:dc:f4:9e:99:7d:8d:90:fd:88:7f:93:
64:99:36:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org