Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2dLay-pSxBJ8mSfCq2RD5_H79OQ.roa
File: 2dLay-pSxBJ8mSfCq2RD5_H79OQ.roa (raw, json)
Hash identifier: K8nrqvqsxoflo9GW5KhkODPXdam6iib1HREhbqCBTvA=
Subject key identifier: D9:D2:DA:CB:EA:52:C4:12:7C:99:27:C2:AB:64:43:E7:F1:FB:F4:E4
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 018F4CE6FB0CF8B950C4FDA33BB199528011
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2dLay-pSxBJ8mSfCq2RD5_H79OQ.roa
Signing time: Mon 06 May 2024 07:55:56 +0000
ROA not before: Mon 06 May 2024 07:55:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214998
IP address blocks: 2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 07 May 2024 09:43:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:e6:fb:0c:f8:b9:50:c4:fd:a3:3b:b1:99:52:80:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: May 6 07:55:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d9d2dacbea52c4127c9927c2ab6443e7f1fbf4e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cd:27:2b:85:e9:d3:11:09:6a:36:e9:40:a1:
09:3c:58:43:cb:82:77:70:0e:28:df:d0:10:b1:5f:
4f:21:6f:a7:76:af:3f:6e:9b:1f:53:36:80:7c:e6:
80:d2:99:da:78:95:ab:59:89:df:6e:fd:57:5d:e0:
0c:ef:31:6e:69:c7:38:a7:14:02:21:e0:af:51:c5:
da:b5:6b:7e:fe:72:fd:d5:c6:16:ff:c0:05:78:a1:
8d:c4:d8:61:24:23:33:6d:39:53:78:d7:2d:92:8b:
4d:39:48:0c:eb:20:57:97:52:60:39:ba:05:91:ed:
f4:00:b6:8b:71:91:4e:54:e7:b5:10:8b:a8:79:5d:
1f:8c:17:bf:02:a6:54:cb:3a:19:ec:3d:05:9f:77:
5f:73:02:c1:33:17:26:33:17:32:0b:60:56:63:5e:
be:5c:99:63:20:cc:3b:50:c3:21:eb:fe:31:b4:43:
f2:06:9c:8f:d6:22:be:6d:70:50:54:83:f5:53:1e:
45:33:de:44:68:6c:23:a6:e6:28:9f:30:43:d9:4d:
45:5a:cc:7f:e0:f2:3d:0b:d6:ce:fe:f1:b8:50:ad:
56:e7:ef:52:aa:c4:43:b2:82:b6:19:7e:ed:ac:c9:
ca:a0:8f:84:7b:10:85:f9:71:a8:4f:fc:76:5f:f7:
5c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D2:DA:CB:EA:52:C4:12:7C:99:27:C2:AB:64:43:E7:F1:FB:F4:E4
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2dLay-pSxBJ8mSfCq2RD5_H79OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
c8:b3:66:f4:30:21:05:78:17:8b:1f:f2:7b:84:7f:f9:1d:42:
9e:16:de:34:a6:64:ff:07:5d:84:2c:b7:e7:6b:ea:69:d9:c4:
71:e5:20:cb:17:20:17:a3:f5:71:45:ba:58:81:58:8c:42:18:
4e:d6:c0:96:3f:b9:0e:7f:e6:21:9e:5f:aa:6c:d4:69:34:27:
4b:98:6e:89:89:73:5b:46:2a:b5:86:2f:c8:01:87:63:ac:7d:
70:3a:57:b1:99:db:49:90:f5:4a:cc:3f:2e:32:f8:cb:33:90:
29:93:b1:91:16:13:0f:cf:c9:30:00:23:4b:d7:e6:87:b9:80:
d3:36:a8:1e:3e:89:e3:c1:31:42:17:13:7b:7d:8f:3a:e1:37:
1a:51:3b:88:83:10:29:38:de:02:33:c8:f0:e5:5a:8a:af:52:
dc:c1:93:5a:26:c3:e4:8b:bb:63:5a:52:cb:3c:02:53:56:1e:
6f:cc:0b:c2:84:6a:11:cb:dd:db:8f:98:35:b9:3b:e7:f6:0f:
57:79:cb:70:25:18:aa:46:21:70:30:93:48:87:59:b7:87:50:
85:a1:92:fd:4f:7f:02:f6:f0:95:48:8f:64:df:07:1d:0a:d4:
08:46:7a:d8:74:f0:f5:33:dd:fe:d1:a9:97:87:c0:6d:d1:3d:
49:45:0e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:00 2024 by rpki-client on console-fra.rpki-client.org