Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/jCG_BjdUNW0VNOro6Qef7uQeYFw.roa
File: jCG_BjdUNW0VNOro6Qef7uQeYFw.roa (raw, json)
Hash identifier: Cl+vmHH6++h2IVy7dqVh/SzBCmTALj2jHJHkMJsrRq4=
Subject key identifier: 8C:21:BF:06:37:54:35:6D:15:34:EA:E8:E9:07:9F:EE:E4:1E:60:5C
Certificate issuer: /CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Certificate serial: 018572DF01C03A637F73CC900C58A6EC7DA5
Authority key identifier: 1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/jCG_BjdUNW0VNOro6Qef7uQeYFw.roa
Signing time: Mon 02 Jan 2023 14:24:55 +0000
ROA not before: Mon 02 Jan 2023 14:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13347
IP address blocks: 2a12:f3c0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:df:01:c0:3a:63:7f:73:cc:90:0c:58:a6:ec:7d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Validity
Not Before: Jan 2 14:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c21bf063754356d1534eae8e9079feee41e605c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a1:4f:68:75:d8:9b:99:52:ba:bd:88:f3:6b:
bc:07:09:a9:aa:42:f8:ad:ad:65:5a:34:b7:53:3d:
f1:58:77:71:6f:0b:3d:89:fc:15:1e:0a:f2:68:4c:
f0:66:b9:6e:a5:ec:7b:85:d5:9a:72:2e:f5:97:d2:
db:05:8e:43:87:19:57:6c:53:b9:43:74:62:26:2d:
95:f6:0d:c8:4b:02:2c:ac:df:81:cb:87:15:a2:c7:
21:fb:a3:11:7b:1d:34:ed:87:aa:d7:ce:07:3f:a7:
52:aa:77:1c:04:23:f3:82:33:c4:3d:42:30:bf:77:
37:f0:b2:4e:fc:37:a4:31:f2:9d:7e:ed:61:fd:41:
09:26:f1:30:bc:6b:10:96:91:e9:db:45:01:f5:06:
6f:40:bd:57:78:13:73:22:17:c5:10:08:51:35:cc:
45:a7:8d:95:a3:9c:33:5d:f1:eb:99:01:7e:e0:07:
28:84:ca:1a:b4:66:6d:19:0c:d9:8b:1b:dc:5c:db:
e2:6e:ba:96:52:ae:70:09:3f:0b:51:84:75:d7:cf:
81:00:37:bc:e9:f9:96:de:79:f3:14:03:80:41:7e:
c5:41:f4:67:63:6a:31:ab:b6:80:3d:5d:a6:97:ed:
9b:fa:f3:32:bd:8b:b3:53:82:b0:57:6d:1f:c1:20:
3e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:21:BF:06:37:54:35:6D:15:34:EA:E8:E9:07:9F:EE:E4:1E:60:5C
X509v3 Authority Key Identifier:
keyid:1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/jCG_BjdUNW0VNOro6Qef7uQeYFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/GpFU4cVXiw_virt3n4EX5k6ITRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f3c0::/29
Signature Algorithm: sha256WithRSAEncryption
46:0f:fc:3e:62:d4:d0:a1:65:d0:32:e5:58:08:3f:40:07:f3:
06:3d:22:8d:b6:c3:b6:85:75:98:49:02:bb:f1:6a:bd:c2:ff:
80:44:e9:9d:d2:03:04:29:88:60:b0:1b:30:39:f9:73:cb:db:
e2:21:3d:0c:3b:cc:42:9e:95:03:0d:38:3b:ad:1b:c2:51:1d:
32:d1:66:c0:1f:f8:06:74:5c:b9:21:c1:b8:7d:27:c8:db:62:
a3:4c:56:16:36:48:bc:dc:82:62:47:9f:eb:70:83:b5:b3:6f:
a5:92:ff:3f:c2:52:09:d2:1d:cf:85:59:da:53:a8:2d:4c:50:
e3:b2:38:c0:49:b8:1b:0a:3e:f3:4e:d0:f9:57:de:99:05:93:
82:a5:65:0e:dd:50:42:ed:df:90:9a:c9:33:9a:a2:87:f9:e3:
a4:38:22:a7:63:30:75:41:4f:c5:d3:8a:8a:e4:03:8c:8f:bf:
6e:d8:20:6c:e7:9e:29:a4:b4:a5:7d:1c:96:bc:c6:71:36:a0:
9e:3e:f2:2f:7b:bb:55:ca:49:cb:1c:fc:f0:40:5c:9a:c0:62:
e5:7f:a3:19:ad:18:ca:b0:b0:fe:2b:ca:aa:09:8e:e3:6a:10:
76:82:a1:8d:9c:82:e1:f3:24:2e:6b:30:2a:b1:96:44:9b:9f:
a3:3d:9b:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:49 2023 by rpki-client on console-ams.rpki-client.org