Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/rxxx6kAVMy6xegVOoBcTgMubHlk.roa
File: rxxx6kAVMy6xegVOoBcTgMubHlk.roa (raw, json)
Hash identifier: ZumK+xHLCYtGu5vjxMWsFfwXmyh2LeuDscF38GTDW8A=
Subject key identifier: AF:1C:71:EA:40:15:33:2E:B1:7A:05:4E:A0:17:13:80:CB:9B:1E:59
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018C896DB949D6F61524BC3C8AE3AD76B773
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/rxxx6kAVMy6xegVOoBcTgMubHlk.roa
Signing time: Wed 20 Dec 2023 22:51:58 +0000
ROA not before: Wed 20 Dec 2023 22:51:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202585
IP address blocks: 2a12:bec0:5e0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:89:6d:b9:49:d6:f6:15:24:bc:3c:8a:e3:ad:76:b7:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Dec 20 22:51:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af1c71ea4015332eb17a054ea0171380cb9b1e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:09:33:22:c9:a0:7d:f0:56:4a:de:8d:38:66:
3e:8c:9b:33:d8:15:a6:0e:c7:91:b9:ff:3c:b2:fa:
a4:af:0a:88:5b:4a:05:66:e9:61:5c:d8:09:36:e9:
e9:2c:a3:eb:08:26:c1:c4:40:74:74:41:de:49:e8:
bb:94:60:40:42:ab:ae:d1:7b:72:3a:cd:25:d0:78:
31:57:66:81:2b:da:d7:b6:e7:98:9c:27:7b:0a:f0:
29:19:4c:fb:8c:b4:49:37:56:24:f9:c2:f4:6b:ff:
14:be:91:b6:5f:cf:c7:6c:47:fe:93:54:4d:90:eb:
da:35:91:63:be:5f:c7:50:e8:f3:7d:f2:35:33:73:
3e:2a:38:a1:e0:97:32:10:2e:5e:08:95:be:1e:c9:
a7:25:e2:ba:c9:61:57:bc:b3:7f:93:75:8d:e6:67:
96:f3:03:d4:fa:9f:ae:1e:44:02:63:13:b9:47:bf:
87:51:13:26:fa:8c:b7:80:a4:3b:73:28:1b:66:c7:
0e:bd:8c:ce:43:cb:b1:75:0d:26:b1:c6:bf:f1:cd:
2e:a6:23:86:a5:8f:7f:3a:8d:f4:36:72:e7:77:76:
09:06:40:e1:e2:34:5d:ec:68:07:17:16:7d:18:d2:
77:c6:f3:98:85:33:dc:19:8b:7a:45:4f:fb:3d:07:
4f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:1C:71:EA:40:15:33:2E:B1:7A:05:4E:A0:17:13:80:CB:9B:1E:59
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/rxxx6kAVMy6xegVOoBcTgMubHlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:5e0::/44
Signature Algorithm: sha256WithRSAEncryption
43:99:ba:f8:00:45:de:2f:c2:11:7f:37:08:84:11:df:5b:ae:
c9:bd:62:71:02:78:e5:ba:31:22:45:70:d1:b0:e1:59:be:cc:
53:77:1a:62:d9:f4:b2:c1:f7:ac:a2:fe:46:44:0a:9a:a7:d2:
cf:99:e8:a5:1d:55:6b:35:2a:a8:0f:61:e2:bb:ed:71:37:76:
44:08:0e:57:44:45:0a:38:a7:bf:e9:88:a3:96:a4:72:6f:db:
f9:1b:c6:14:81:88:b7:20:d8:fa:ad:68:6c:77:b3:00:90:39:
ca:3e:b2:17:d4:a4:a1:ab:87:af:91:64:03:65:b4:25:5e:7c:
39:3c:9b:e6:98:e1:81:f4:e9:c9:1b:35:62:5b:70:97:a6:f5:
74:cb:08:2d:82:cf:f0:65:a8:95:a6:86:8c:5c:0d:25:40:f1:
65:10:d8:9e:80:1b:e9:91:f4:80:38:cd:42:82:19:25:64:61:
7a:fa:65:b0:d2:9f:00:7e:df:28:82:23:af:b1:e1:fd:ea:3f:
dd:6e:22:1e:9c:0e:4c:a4:f5:cd:cb:eb:bf:c6:cb:d1:63:7c:
1d:8d:69:d7:c7:63:f5:a5:75:b3:ae:da:ed:47:36:27:be:fe:
a7:7a:fd:70:d0:86:00:29:65:72:f9:bc:3a:80:91:f5:a4:e1:
37:9a:1c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org