Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/bY0sFqCiGorRvwwVsAFgw7dTdAk.roa
File: bY0sFqCiGorRvwwVsAFgw7dTdAk.roa (raw, json)
Hash identifier: luOWlfNihdCFuRQJnbOiiPSDQaLPKazIHiISKWBhK6k=
Subject key identifier: 6D:8D:2C:16:A0:A2:1A:8A:D1:BF:0C:15:B0:01:60:C3:B7:53:74:09
Certificate issuer: /CN=e69f2b69f4a95a521e18fb33e6793f467e031bc1
Certificate serial: 0187C7093346058D44AA013D80393A1EF97E
Authority key identifier: E6:9F:2B:69:F4:A9:5A:52:1E:18:FB:33:E6:79:3F:46:7E:03:1B:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5p8rafSpWlIeGPsz5nk_Rn4DG8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/bY0sFqCiGorRvwwVsAFgw7dTdAk.roa
Signing time: Fri 28 Apr 2023 08:44:41 +0000
ROA not before: Fri 28 Apr 2023 08:44:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210644
IP address blocks: 2a12:5940::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:09:33:46:05:8d:44:aa:01:3d:80:39:3a:1e:f9:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e69f2b69f4a95a521e18fb33e6793f467e031bc1
Validity
Not Before: Apr 28 08:44:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d8d2c16a0a21a8ad1bf0c15b00160c3b7537409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:55:8c:88:3b:cd:38:c7:c9:d6:ff:28:46:d3:
99:55:ec:38:cc:87:c1:eb:db:d5:9d:87:bf:a6:21:
2f:6d:95:e7:b0:20:ee:37:36:f5:f2:0c:a3:b9:f5:
78:5f:cb:85:fd:38:10:ee:fb:da:08:47:a3:68:9d:
05:9e:dc:58:2d:50:9f:9c:48:fd:73:4f:5c:be:45:
14:a8:06:a2:7b:3b:98:9d:a9:15:21:21:44:36:9d:
7f:08:9f:3c:c0:c4:5c:28:87:1c:db:92:79:80:bc:
2a:28:53:e7:70:8b:94:28:46:24:ab:32:9e:63:8e:
7a:7c:d6:c5:14:f1:70:72:07:b9:9b:cb:18:4c:de:
c1:20:85:91:ec:2d:c6:a0:7a:8d:8e:59:06:f2:44:
c5:5f:b4:91:7b:0a:46:4e:65:4a:28:1e:7d:70:c9:
36:e5:31:12:db:7e:50:a1:89:7e:09:d0:be:3f:a0:
b7:cf:48:b7:d8:8c:ae:e0:8f:a7:f3:60:63:1c:02:
4c:12:5b:2d:84:10:d8:bd:42:cd:af:27:97:7b:3c:
6a:59:ce:63:e6:c1:3c:e7:31:0a:46:2b:01:c1:d4:
c0:6f:be:9d:72:3c:c5:22:76:09:9e:68:ba:91:eb:
50:0f:31:ce:4e:16:9a:12:12:ec:bd:48:ca:7c:f4:
8c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:8D:2C:16:A0:A2:1A:8A:D1:BF:0C:15:B0:01:60:C3:B7:53:74:09
X509v3 Authority Key Identifier:
keyid:E6:9F:2B:69:F4:A9:5A:52:1E:18:FB:33:E6:79:3F:46:7E:03:1B:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5p8rafSpWlIeGPsz5nk_Rn4DG8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/bY0sFqCiGorRvwwVsAFgw7dTdAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/5p8rafSpWlIeGPsz5nk_Rn4DG8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:5940::/32
Signature Algorithm: sha256WithRSAEncryption
aa:e5:24:66:cf:95:3a:b1:49:fb:83:03:1e:89:a9:ca:3a:01:
f3:6a:01:75:2c:06:e0:45:82:47:e1:14:5a:b6:09:2e:41:f5:
9c:4f:08:86:73:d4:97:71:fd:d7:e6:06:02:e3:2b:76:03:8f:
a3:79:76:17:f9:b6:19:62:1e:99:69:27:25:a5:29:1a:7b:02:
5e:18:53:d7:2b:0a:80:c4:11:7c:a0:3d:e2:ac:12:7a:89:b0:
87:49:27:4c:28:60:43:6a:7f:52:63:e3:e1:75:f1:13:19:f5:
71:04:77:fd:ba:66:3e:e7:55:66:e4:3d:66:05:a5:5e:20:50:
df:3b:e9:06:f4:58:b7:42:50:06:35:81:88:dd:ac:09:7d:27:
49:c5:e2:bf:c0:97:3c:4c:e2:0e:49:f2:19:30:a4:7b:74:88:
08:ea:be:36:d3:88:39:76:c2:ec:8a:aa:d0:0e:4d:b7:32:cd:
6e:2c:52:3c:d2:2f:e6:04:bc:0d:9e:1d:43:c5:72:67:48:a2:
6f:09:ee:fc:c9:a0:ca:dd:a1:32:20:81:97:e2:5e:69:79:9b:
ff:4a:75:14:da:fc:fa:b5:db:bc:18:70:ad:93:33:8a:77:65:
64:52:f9:32:0d:9e:be:1f:0c:eb:d2:90:49:f1:42:7a:f4:a0:
6d:df:65:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:06 2023 by rpki-client on console-fra.rpki-client.org