Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/HiDyoURmIob-sO_5H5dzCnp_PrQ.roa
File: HiDyoURmIob-sO_5H5dzCnp_PrQ.roa (raw, json)
Hash identifier: REv5iM5fENR1lUWZhChbNK84VD9O2+5tlks/6cgiuGo=
Subject key identifier: 1E:20:F2:A1:44:66:22:86:FE:B0:EF:F9:1F:97:73:0A:7A:7F:3E:B4
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 01856F42DEFE1DB02DF6B7CB84992C89F4DE
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/HiDyoURmIob-sO_5H5dzCnp_PrQ.roa
Signing time: Sun 01 Jan 2023 21:35:31 +0000
ROA not before: Sun 01 Jan 2023 21:35:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207721
IP address blocks: 2a12:fb40::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:de:fe:1d:b0:2d:f6:b7:cb:84:99:2c:89:f4:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: Jan 1 21:35:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e20f2a144662286feb0eff91f97730a7a7f3eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3e:cb:a4:37:fe:62:c9:fb:3a:e6:c5:a6:31:
e8:6e:6d:45:a0:e6:bf:8d:9e:05:c8:a9:ee:62:af:
22:25:7f:d4:ea:ee:e7:c9:40:bf:d5:6b:65:be:b0:
55:70:f7:69:52:3a:55:04:b5:1e:de:f6:57:6a:65:
cf:a7:d2:7a:61:80:fa:eb:a2:4b:1a:a6:52:fc:c8:
8c:08:a6:3a:b6:3b:05:d3:f7:5b:20:f8:e2:2c:d0:
ab:c6:e2:3c:d0:1c:b3:ce:6d:e5:49:55:50:d9:13:
42:a3:b0:ce:eb:5c:c5:3c:7b:4c:5f:08:9e:ae:72:
c0:9e:70:d9:b5:6b:06:03:df:9a:23:ee:a3:d0:c6:
aa:d6:0b:70:6b:73:2a:a4:83:8b:ff:94:90:fd:6c:
1a:bb:9c:df:95:f9:94:45:dc:7b:93:7f:74:4d:f5:
f7:84:53:cc:2e:df:87:df:d5:3f:8f:9a:89:c6:13:
ce:e8:ba:27:df:28:34:26:a2:0c:a6:81:23:a7:60:
80:c6:7b:8a:69:b2:8a:79:27:f4:e7:db:c1:88:5e:
c3:da:08:fd:77:d5:10:2f:2d:c1:09:56:a0:18:4f:
36:cd:f3:2a:cb:65:4a:05:33:d4:88:f7:5d:9c:3f:
f3:8d:c3:9a:26:f6:2b:d1:37:92:3c:e6:3d:47:9c:
89:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:20:F2:A1:44:66:22:86:FE:B0:EF:F9:1F:97:73:0A:7A:7F:3E:B4
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/HiDyoURmIob-sO_5H5dzCnp_PrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:fb40::/29
Signature Algorithm: sha256WithRSAEncryption
cf:95:bf:a6:52:12:45:96:11:20:08:62:d6:4d:d2:7b:49:a2:
12:52:cc:5e:b4:48:e7:98:f0:12:76:5b:2b:11:4b:22:d7:31:
32:af:5a:3b:b3:e6:70:8f:4e:2e:f6:07:63:73:c3:cb:92:2a:
2d:21:df:f6:83:6c:b9:8a:bb:59:81:e7:8e:ac:0e:f6:ee:0c:
ea:e4:c2:7f:de:11:16:04:31:e8:2c:2a:35:9d:27:4e:b6:12:
de:64:13:27:5a:b4:24:04:4a:00:68:b1:69:3e:5d:56:da:5f:
ff:d4:12:e1:84:98:f3:56:43:09:6a:b9:27:91:70:6c:9a:50:
b9:91:68:5c:95:35:9c:10:ae:e5:a0:b6:1a:6a:a8:5c:92:75:
10:3b:ba:43:eb:c8:77:8d:35:e2:ab:74:d1:f9:16:9d:c1:8d:
cd:44:79:5c:ba:cb:94:f2:4c:3c:66:0b:83:0c:9a:5d:98:e3:
69:e5:7e:b4:c8:52:c9:ea:b5:84:52:6e:12:07:87:cf:5b:3b:
cb:df:cc:d4:7f:dc:d9:6f:00:5a:42:b1:0a:40:2f:b8:cc:10:
a5:6b:34:1a:d5:2d:18:cc:98:d1:4b:fc:3c:ef:53:74:fc:31:
1c:1a:0c:2f:99:7b:53:94:83:1e:57:16:13:fd:3e:24:f6:b3:
dd:21:b4:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:55 2024 by rpki-client on console-fra.rpki-client.org