Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/yTiyHAiozxkDpVAV8VJIiQRTHAw.roa
File: yTiyHAiozxkDpVAV8VJIiQRTHAw.roa (raw, json)
Hash identifier: YF3pbHyKWL9F1bOCEPo9iKMTyPpe2vXekdVsN0gKm90=
Subject key identifier: C9:38:B2:1C:08:A8:CF:19:03:A5:50:15:F1:52:48:89:04:53:1C:0C
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018ACC9B5C6C0207B7CAB506E851228AD014
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/yTiyHAiozxkDpVAV8VJIiQRTHAw.roa
Signing time: Mon 25 Sep 2023 13:50:48 +0000
ROA not before: Mon 25 Sep 2023 13:50:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216250
IP address blocks: 2a12:bec0:510::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:9b:5c:6c:02:07:b7:ca:b5:06:e8:51:22:8a:d0:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Sep 25 13:50:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c938b21c08a8cf1903a55015f152488904531c0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:32:e6:0a:9c:ed:21:b7:3e:0f:e7:f8:fb:79:
2f:fa:34:36:76:e1:57:63:0f:34:58:25:85:d0:27:
91:36:53:11:1d:92:56:66:df:68:3b:d4:8d:a7:82:
b9:44:c1:f8:2a:da:87:97:61:31:6e:0b:f3:b7:46:
db:17:75:d8:c0:b2:59:e3:5a:b4:38:b4:c9:3f:30:
c0:68:38:6b:78:a0:3a:d0:78:b0:39:aa:67:fa:ee:
a6:a4:00:4c:e2:5d:e3:f8:a7:7e:96:6e:ce:42:ce:
7e:b1:6b:5a:55:c5:70:52:bd:ac:a4:ed:6a:31:2d:
c4:93:fc:e4:8e:ca:51:e8:91:72:9b:62:1a:ef:77:
df:fa:24:70:68:74:05:72:7b:03:f5:b4:cd:13:b0:
f0:32:23:c6:42:1e:e8:bd:1c:01:b7:23:0e:f4:9b:
10:f1:8f:74:4f:eb:cc:e6:3e:01:15:2d:89:d7:e3:
16:92:3a:c6:8d:86:26:97:dd:1b:c4:ae:56:67:72:
3f:ae:11:bb:5e:b7:55:95:26:bb:81:04:de:7c:ae:
7c:9b:dc:b4:51:c6:69:77:bd:9d:e8:65:54:e1:8a:
27:4b:b8:99:87:19:8e:9d:cd:d7:1c:fc:5e:93:4c:
b7:74:8f:79:da:da:36:96:9a:24:26:0f:e2:83:f0:
b0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:38:B2:1C:08:A8:CF:19:03:A5:50:15:F1:52:48:89:04:53:1C:0C
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/yTiyHAiozxkDpVAV8VJIiQRTHAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:510::/44
Signature Algorithm: sha256WithRSAEncryption
0e:f5:70:c3:9b:ed:82:1e:9b:65:52:7e:78:5d:a3:6b:20:2c:
af:c2:93:1d:94:92:d3:e2:4a:b6:29:20:ab:6a:06:1a:b5:eb:
4f:21:36:14:55:7d:ff:74:56:fa:38:64:05:d0:fe:9d:64:00:
3f:79:8e:b7:b3:15:14:51:36:c0:93:70:9b:2e:a6:4c:b1:45:
27:89:80:7f:db:cf:7d:99:a9:fd:74:15:49:54:2e:ea:64:63:
1c:3a:a9:de:09:7d:c7:36:e3:da:ef:61:c8:74:80:ea:ae:77:
69:f1:5f:2b:6f:c7:57:28:54:3f:b7:de:be:4b:d2:73:17:29:
2d:99:d0:96:ec:c8:f1:ac:1c:2b:69:dc:bc:91:73:c1:3a:10:
26:46:14:1b:9d:4f:9f:d5:c6:42:d1:ae:57:f7:b5:d3:15:a3:
e7:6a:ca:e9:6f:39:1e:7c:ed:2a:51:64:97:7b:0e:c0:e4:dc:
53:77:37:10:78:48:dd:7a:96:b5:f4:97:ad:be:e6:d9:60:43:
d1:22:a5:18:a5:77:28:97:73:16:92:fd:fc:42:3c:9f:56:4d:
26:86:dc:7d:0b:09:5f:3c:46:cc:f7:c0:45:0e:f6:d8:bf:18:
33:d8:0e:15:02:f1:91:1a:bb:b8:38:25:41:94:0f:7e:36:c7:
37:ba:16:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org