Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/N4QszFOuiwx7zScL_C_f-raixJw.roa
File: N4QszFOuiwx7zScL_C_f-raixJw.roa (raw, json)
Hash identifier: nOy45+n4oQsSl7PpffxkBGRTnBzHXWZ+ffCQXt00jfc=
Subject key identifier: 37:84:2C:CC:53:AE:8B:0C:7B:CD:27:0B:FC:2F:DF:FA:B6:A2:C4:9C
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 0185707076A52A3857EB38AC6A98EF8147AC
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/N4QszFOuiwx7zScL_C_f-raixJw.roa
Signing time: Mon 02 Jan 2023 03:04:56 +0000
ROA not before: Mon 02 Jan 2023 03:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51847
IP address blocks: 2a12:e100:1::/48 maxlen: 48
2a12:e100:2::/48 maxlen: 48
2a12:e100:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 03 Apr 2023 05:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:76:a5:2a:38:57:eb:38:ac:6a:98:ef:81:47:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Jan 2 03:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37842ccc53ae8b0c7bcd270bfc2fdffab6a2c49c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ea:9c:b0:88:85:ed:e0:e6:8a:74:17:41:4f:
89:ed:5f:12:3f:b0:12:98:59:ab:71:57:e6:7a:8e:
5f:9b:c0:36:e6:df:b6:12:90:f3:35:35:58:ff:8d:
62:e9:49:d0:ec:ba:ec:58:78:7d:f8:77:80:d8:8f:
7a:30:5d:58:a1:01:8b:3e:5f:59:e6:b7:64:ad:f7:
f0:ee:ae:d0:ff:af:9c:ae:0a:b2:b5:0a:b9:5e:95:
93:72:f5:a0:8c:ce:6e:17:b2:68:17:0f:e9:63:a0:
43:d8:be:39:fa:56:4e:9f:32:33:6b:61:9f:86:91:
93:ff:f2:90:3a:1c:52:19:4a:12:7e:ed:59:d7:a2:
75:89:51:f8:7b:4a:0a:20:80:d6:01:f8:d9:55:81:
cd:63:c0:01:cb:dc:27:d7:c0:20:87:3b:51:11:0e:
37:c6:19:80:fe:10:aa:a8:c2:e0:b3:2a:b0:bb:83:
9a:09:b0:8c:0d:da:ff:c8:7a:c4:22:c0:d5:e0:57:
59:7f:a5:cf:5b:e4:cd:db:15:b1:e7:fc:f5:af:bd:
17:fd:68:82:1a:5a:2c:0b:f6:ca:59:b4:98:30:ca:
8a:40:3e:30:f2:7f:88:81:86:58:04:3e:76:f1:4f:
15:2e:5d:91:78:51:a4:0d:b7:16:eb:fe:85:e3:02:
34:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:84:2C:CC:53:AE:8B:0C:7B:CD:27:0B:FC:2F:DF:FA:B6:A2:C4:9C
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/N4QszFOuiwx7zScL_C_f-raixJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e100:1::-2a12:e100:3:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a3:74:8a:e1:d4:8f:ec:6e:1a:1c:a3:f1:4f:a4:f2:cb:17:8e:
b3:7a:24:7f:1e:00:d3:ba:7f:30:48:95:66:30:1e:25:58:33:
2c:eb:82:27:9b:ce:9b:43:c1:f2:10:07:92:ea:41:42:76:35:
df:f8:66:7a:37:7a:a7:bd:40:97:16:8a:c7:3f:fb:f0:66:f5:
99:bc:78:cd:76:eb:44:16:ed:b3:3b:a1:ea:7d:76:c5:e5:87:
29:42:a4:6f:ca:46:01:80:79:da:e0:43:20:73:33:78:19:00:
b0:d0:3a:8f:44:5a:c4:39:21:3a:24:24:6b:0a:a3:e2:80:ce:
55:42:1e:d2:0d:b3:2d:bd:c3:43:fb:9b:fd:6f:66:e3:86:94:
bf:0e:46:1c:40:71:ab:75:b5:33:23:a2:4c:7c:86:a0:e2:85:
04:4b:84:7e:cb:28:f2:dc:2c:16:2e:e6:6a:32:46:93:07:3f:
7d:3a:34:8f:b2:a2:ec:05:9f:3e:f9:35:70:ad:64:0e:54:15:
e6:9b:24:3e:36:67:f5:93:26:63:a4:80:16:ea:4f:b4:6b:cf:
d2:75:bd:a6:96:b7:79:76:fb:db:9f:f0:a4:c6:cf:af:2c:fa:
94:2b:31:85:b9:5a:07:cd:f1:52:02:cc:e3:5f:06:9f:2c:25:
19:0a:8f:ae
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:12 2024 by rpki-client on console-fra.rpki-client.org