Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/vBdDQ5X8nahjiHvnpXNUds7yJLU.roa
File: vBdDQ5X8nahjiHvnpXNUds7yJLU.roa (raw, json)
Hash identifier: jY21PVV8erueMCjWL54+1vTWMgzzqL6SmrpSsOp7nRs=
Subject key identifier: BC:17:43:43:95:FC:9D:A8:63:88:7B:E7:A5:73:54:76:CE:F2:24:B5
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0190B60EFEEBAA408C464BF90A4EFAA3CC8C
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/vBdDQ5X8nahjiHvnpXNUds7yJLU.roa
Signing time: Mon 15 Jul 2024 11:02:34 +0000
ROA not before: Mon 15 Jul 2024 11:02:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51847
IP address blocks: 2a12:bec4:13f0::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 Nov 2024 09:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b6:0e:fe:eb:aa:40:8c:46:4b:f9:0a:4e:fa:a3:cc:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jul 15 11:02:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc17434395fc9da863887be7a5735476cef224b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:21:8b:e2:0e:95:51:32:fe:45:6e:fb:d8:0a:
45:6a:c5:57:c0:e9:e3:b6:b2:85:14:fb:a4:65:49:
97:25:53:80:c6:22:75:fa:8c:69:d4:0d:4a:fc:e1:
dd:f8:aa:95:22:a1:9f:7a:75:d3:4d:a1:36:26:6a:
b7:87:c6:21:f9:95:83:31:1b:92:7b:0f:25:42:85:
37:fb:4a:83:6d:a0:85:9a:67:06:d9:0c:a4:fe:bc:
1a:ef:20:03:35:9f:9f:de:d4:15:1a:23:08:d5:4d:
7b:5a:1d:57:c8:a8:84:85:7e:24:07:fe:12:bc:41:
14:c7:d6:c6:b7:d9:e3:d8:7e:66:88:f1:c5:f7:1e:
04:5c:11:82:54:f7:23:4e:71:be:d0:25:da:da:2e:
5e:78:f3:4e:62:a8:72:1f:3a:35:7b:d0:e9:de:bb:
0c:b4:da:4d:2d:5a:ec:4c:76:bb:9c:43:88:ca:b5:
fb:d5:de:97:cb:ea:9d:a2:9b:92:6c:f9:1d:4c:5e:
b6:18:22:7a:19:3e:2b:92:9b:72:7a:93:76:d5:b2:
92:e1:00:e4:c7:6b:d1:98:f6:6c:2c:42:6a:4a:df:
ff:59:32:9a:0a:1f:d5:a7:9b:bb:fb:55:c7:80:fa:
9e:55:91:11:98:f9:f2:46:fd:63:ab:02:3d:94:03:
a0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:17:43:43:95:FC:9D:A8:63:88:7B:E7:A5:73:54:76:CE:F2:24:B5
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/vBdDQ5X8nahjiHvnpXNUds7yJLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:13f0::/44
Signature Algorithm: sha256WithRSAEncryption
2e:d4:c7:73:b1:a5:9a:11:81:a4:25:7c:92:4b:b9:60:e0:07:
92:7d:9d:87:e8:7d:90:b7:4a:13:26:6c:aa:37:0a:b4:53:47:
a9:94:d1:42:f1:2a:50:be:b6:c0:71:83:ea:3e:29:78:27:0d:
bb:af:50:60:1d:07:f9:29:c5:1b:25:43:f3:b8:d8:95:e5:35:
13:5a:d2:89:78:a3:d5:74:6c:5c:b4:83:36:b5:41:70:c3:de:
f1:61:2a:0a:76:f4:69:c7:2e:5a:fc:c7:19:32:24:33:22:e4:
9e:50:ef:b8:24:b2:2b:82:84:ec:10:d6:fa:2b:1e:5a:3c:d9:
b9:b4:c7:b6:ad:e0:cb:1e:fe:57:69:cd:c2:13:0e:7a:67:e0:
f8:0c:23:46:c0:4a:66:fa:8b:24:e2:aa:98:61:ad:ac:29:3a:
35:67:4b:da:30:73:fb:e7:74:2c:ca:bd:a7:87:42:3e:c5:e4:
58:1e:a1:88:3f:ae:01:c8:fc:c0:74:37:e7:e6:cb:c5:5d:16:
59:e7:f1:2f:dd:b3:94:fd:f9:f6:cb:ff:bb:da:5a:17:56:1d:
b5:e2:1b:73:fb:ba:1b:87:d0:21:c7:98:fc:bb:2f:38:7f:bd:
5b:48:17:98:2d:07:9f:df:36:7b:42:46:90:f1:b1:e0:25:eb:
07:29:2f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 11:26:55 2024 by rpki-client on console-ams.rpki-client.org