Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/vqTwxsJzaIsWBm1ReLapWCW6xws.roa
File: vqTwxsJzaIsWBm1ReLapWCW6xws.roa (raw, json)
Hash identifier: Sd0WSMdAdCIGGW5m/PYNMFX9DLk8R3XRMNlT2ZWzcKo=
Subject key identifier: BE:A4:F0:C6:C2:73:68:8B:16:06:6D:51:78:B6:A9:58:25:BA:C7:0B
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 0192326F9E6374EAD52CE709CF8CB679A151
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/vqTwxsJzaIsWBm1ReLapWCW6xws.roa
Signing time: Fri 27 Sep 2024 07:43:48 +0000
ROA not before: Fri 27 Sep 2024 07:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214998
IP address blocks: 2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 07 Oct 2024 17:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:32:6f:9e:63:74:ea:d5:2c:e7:09:cf:8c:b6:79:a1:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: Sep 27 07:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bea4f0c6c273688b16066d5178b6a95825bac70b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cf:1a:c9:04:81:c6:1d:dd:ec:da:22:93:b0:
49:2a:7b:2c:78:34:3b:91:a8:cf:04:b0:2c:9f:72:
79:0f:57:0a:9c:bf:59:50:4f:e9:9b:bd:03:08:16:
7b:30:90:c0:e7:6b:a7:f4:3d:49:d5:c6:91:99:a2:
7e:8c:75:a1:5a:5b:e6:7e:08:fd:9f:01:0b:f8:b3:
14:93:78:81:21:c0:d7:04:46:c7:ec:63:ba:1c:e6:
f0:61:ea:f4:94:7c:8f:90:d0:3d:b6:38:85:18:47:
5d:4a:5b:ec:a5:0b:a8:9f:cd:d4:0c:97:25:ad:7f:
8b:a9:87:e1:cb:b8:c5:6d:bb:1a:f8:b1:8c:2c:67:
0d:db:6f:47:d1:ef:ea:c5:0e:f0:5c:5c:7c:c8:f1:
36:ea:51:a3:39:7f:95:9d:8e:9e:c7:53:c4:bf:26:
08:1a:1a:d3:4f:7f:bb:df:de:12:30:7b:1a:eb:ec:
b7:cc:9a:d3:01:ed:a7:0f:85:a9:30:ab:0e:cf:8a:
a5:57:aa:0a:99:89:74:ab:83:fc:5c:f5:70:1c:c2:
94:ff:db:33:47:40:ec:82:fc:ac:12:99:05:69:93:
77:1b:71:d1:6a:44:d0:3c:a2:14:2a:cd:7f:0b:60:
10:c7:55:7f:63:bd:c4:8d:88:7c:8b:a2:ce:79:d3:
17:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A4:F0:C6:C2:73:68:8B:16:06:6D:51:78:B6:A9:58:25:BA:C7:0B
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/vqTwxsJzaIsWBm1ReLapWCW6xws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
01:9e:43:de:04:db:ac:ae:3a:8e:82:ac:c9:25:26:01:70:37:
fb:1c:8d:fe:82:6b:aa:b4:1c:ac:54:85:ed:e0:0c:30:52:69:
bf:ff:2b:79:aa:21:9b:c2:b4:b9:06:ac:51:1c:26:5d:a3:b7:
5e:52:a3:79:df:01:7e:98:2e:8a:32:3c:2a:76:43:70:20:74:
cf:c4:30:53:90:c9:dd:77:d6:03:e0:95:01:a7:0a:b2:31:18:
c6:d2:7b:d5:0a:8b:0a:01:6d:8c:3f:49:b3:9e:5e:77:db:fc:
a5:20:1c:d7:c0:45:b2:c8:ca:f4:cf:3e:fe:05:e3:e7:a1:b7:
23:82:e0:1f:7e:ea:e9:4b:cc:39:df:39:53:ff:f0:1a:29:44:
4e:da:83:09:e1:f7:cb:19:b8:5c:a9:6c:f5:f1:c8:f8:1f:d4:
9e:63:bb:ab:c5:2b:d1:fa:b7:b5:14:a6:30:58:09:d9:c2:2b:
a4:7d:7a:53:9e:62:72:db:6b:53:a6:b6:a0:d6:ec:d2:d4:2e:
01:de:79:70:68:72:75:b5:18:c6:e3:77:a2:f8:89:b8:d0:2c:
49:55:1a:53:74:61:61:67:80:14:1e:12:8b:5c:e3:29:e7:d9:
24:80:79:70:f8:1d:c2:b1:55:fd:9b:4c:92:23:97:e2:4f:f7:
df:25:1a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 23:07:56 2024 by rpki-client on console-ams.rpki-client.org