Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/tUwxMHmLUu02kcKPA6saJiolFok.roa
File: tUwxMHmLUu02kcKPA6saJiolFok.roa (raw, json)
Hash identifier: CyRqvr3xZIdA3fR/DsZPDvQGFjIJuyK9J+W1An9IisE=
Subject key identifier: B5:4C:31:30:79:8B:52:ED:36:91:C2:8F:03:AB:1A:26:2A:25:16:89
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 018F24BB51D6B5DCB01E8A4FF8A1671C8089
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/tUwxMHmLUu02kcKPA6saJiolFok.roa
Signing time: Sun 28 Apr 2024 12:43:27 +0000
ROA not before: Sun 28 Apr 2024 12:43:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215137
IP address blocks: 2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 30 Apr 2024 06:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:24:bb:51:d6:b5:dc:b0:1e:8a:4f:f8:a1:67:1c:80:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: Apr 28 12:43:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b54c3130798b52ed3691c28f03ab1a262a251689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cd:72:d4:fc:12:4a:0a:f0:78:30:ae:a2:eb:
5f:ac:11:d8:8d:11:93:b7:36:23:ba:93:89:e2:69:
39:44:4d:4f:54:c7:3f:15:2d:5c:c5:e2:2f:48:c2:
07:f1:d1:87:82:33:11:9d:47:05:34:5b:5e:4f:28:
94:d6:83:86:77:9f:dd:f2:2d:df:a6:70:0b:b5:d9:
2d:1b:64:15:b0:67:cc:4a:5a:53:65:d3:5f:25:3a:
d8:2a:e2:00:0c:03:5c:c1:84:3b:34:1b:77:18:90:
21:a2:03:69:94:08:00:d2:84:a0:2a:2e:31:98:ce:
ba:5b:41:68:f8:c6:4d:e2:a2:0d:b2:b0:8a:dd:03:
50:6f:3c:e5:41:3f:aa:0d:ec:61:c9:cc:0b:b2:01:
09:32:c7:b3:cd:c0:72:7a:3e:97:3c:51:9c:b6:45:
8c:7c:6a:e0:35:db:79:bb:ca:fa:60:1e:8f:ed:0e:
06:89:a2:31:d4:38:68:cf:bf:e0:76:91:ef:85:03:
1f:a7:62:e6:ea:5a:f6:f1:39:f8:ec:b0:8a:d2:10:
43:ba:bb:33:1c:13:9c:a5:95:08:99:11:ef:62:55:
97:c5:58:45:ba:66:72:81:75:a1:82:15:74:3c:26:
41:53:74:8f:9e:ff:b7:5c:28:4b:8e:d4:da:9c:d6:
ea:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4C:31:30:79:8B:52:ED:36:91:C2:8F:03:AB:1A:26:2A:25:16:89
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/tUwxMHmLUu02kcKPA6saJiolFok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
ad:c6:b2:73:ba:89:56:9c:08:3a:11:fa:ab:ee:b9:8a:87:82:
22:02:af:e5:87:36:92:5a:c0:48:da:c6:0e:4b:5d:cd:ba:52:
d9:29:e6:15:46:f2:c1:e1:97:a6:7f:1f:d2:f2:d3:b1:85:c6:
1b:63:d5:eb:8b:a7:2e:b4:09:56:e7:41:62:7b:4e:30:30:52:
27:56:9d:6c:61:62:b5:53:2a:c0:a9:a3:db:aa:23:95:12:42:
8a:5e:bf:92:94:fb:3c:04:bf:6e:ee:20:8a:11:a0:7c:ae:a4:
b7:6a:c4:9a:19:09:22:6e:a7:38:2f:0a:95:f7:91:3a:d0:ce:
16:72:47:70:17:fc:39:de:37:f5:e7:1c:91:f7:38:6e:e9:94:
d2:38:25:6a:4a:bf:f4:bb:5c:b8:3e:c1:cd:9a:6a:8c:67:f3:
28:3c:80:8a:d3:3f:ac:76:f9:93:a3:d9:32:ed:af:57:d6:8b:
72:e8:b8:29:07:4c:ef:14:5d:21:f0:0b:d6:8b:e0:44:61:67:
49:6a:28:68:bb:52:e4:56:0b:d4:45:d7:c3:42:f7:2b:9d:3c:
92:56:bd:1f:f8:9c:0c:4b:c3:fb:1a:7a:a3:c3:33:a4:b8:be:
3f:21:ec:65:99:69:2d:87:e0:23:64:6a:c2:4b:46:e1:25:19:
9e:b8:2b:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:05 2024 by rpki-client on console-ams.rpki-client.org