Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/5yoCiMiiolisui7mraJ6__xKIEI.roa
File: 5yoCiMiiolisui7mraJ6__xKIEI.roa (raw, json)
Hash identifier: 5w3arr5hUlRrLViwFIjaRthSJ6bA0xgShXqZ8hHydaM=
Subject key identifier: E7:2A:02:88:C8:A2:A2:58:AC:BA:2E:E6:AD:A2:7A:FF:FC:4A:20:42
Certificate issuer: /CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Certificate serial: 0188B0B8D5EB14CD4D166E1E3D2AD61B557A
Authority key identifier: B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/5yoCiMiiolisui7mraJ6__xKIEI.roa
Signing time: Mon 12 Jun 2023 17:48:03 +0000
ROA not before: Mon 12 Jun 2023 17:48:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 2a12:de43::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 28 Sep 2023 16:11:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b0:b8:d5:eb:14:cd:4d:16:6e:1e:3d:2a:d6:1b:55:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Validity
Not Before: Jun 12 17:48:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e72a0288c8a2a258acba2ee6ada27afffc4a2042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b4:60:ea:68:a5:91:e3:93:84:df:21:90:07:
d3:fd:0e:73:39:6f:82:ca:2f:d5:57:50:8a:73:00:
5d:e7:e3:fa:2e:d2:51:ec:e7:c1:01:0c:4f:b1:c4:
23:a2:2e:23:c2:11:1b:e3:0e:1f:45:f4:fd:71:f7:
5b:80:d6:20:b1:c7:5b:9c:7a:6c:3d:3d:20:26:0e:
e0:7c:82:39:41:89:54:cf:ff:e4:64:a3:20:6d:96:
42:aa:36:12:a7:8b:88:06:08:f2:93:d7:9f:62:65:
06:07:04:b6:ba:c1:76:dc:18:71:35:a6:3e:ee:9e:
a8:61:ee:63:43:65:1c:fa:09:8a:cb:cf:e9:0f:9e:
87:06:29:af:5e:f1:d1:ab:21:f7:ce:bd:37:36:ea:
41:f7:bf:88:34:ff:3a:15:2f:eb:de:4c:f3:a2:48:
3c:f2:74:30:fe:40:71:62:6e:0e:58:dd:45:26:10:
b8:83:07:1c:43:d6:ad:95:dc:51:a2:ea:87:53:a5:
fd:30:9c:9e:67:0e:16:ad:a9:fb:9f:17:f7:55:c1:
19:43:24:46:21:3f:56:6c:ae:35:5e:0e:b1:4a:a2:
eb:bd:4f:6f:42:d7:8a:fd:51:f6:57:27:dc:ef:0f:
3d:a5:75:a1:2c:04:fd:85:1b:6e:ee:cd:a6:a5:ac:
0d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2A:02:88:C8:A2:A2:58:AC:BA:2E:E6:AD:A2:7A:FF:FC:4A:20:42
X509v3 Authority Key Identifier:
keyid:B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/5yoCiMiiolisui7mraJ6__xKIEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/uebEGisE_Nj46VcY-n0uEsxErB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:de43::/32
Signature Algorithm: sha256WithRSAEncryption
43:52:51:fe:bc:32:24:88:47:5c:8c:fb:18:53:7e:21:5d:d2:
64:55:cb:83:66:c1:38:e9:83:7d:d9:57:a0:59:1c:b5:06:0a:
38:8e:51:39:2e:0f:ca:e2:42:f1:51:b2:19:92:99:43:38:d1:
64:d2:cc:41:c6:78:38:b3:20:6e:cd:9e:18:be:3d:e1:14:77:
6b:3d:cb:dd:96:67:a4:20:43:fa:ab:87:0a:dc:92:64:d5:93:
d7:df:16:77:54:ca:54:31:b9:8a:5c:83:d2:ba:a5:58:93:14:
82:dc:0b:c2:76:3d:73:54:b0:97:15:46:5d:bc:5a:88:3a:dc:
70:ab:10:4c:35:ba:7f:02:07:d6:c9:0e:e9:b8:36:ad:87:30:
90:20:62:d1:26:12:53:fe:82:ba:a5:c7:5d:b4:da:1c:1e:cc:
16:fc:02:c5:21:06:f4:bf:38:3f:cd:d7:84:fe:1d:11:11:b1:
90:d4:54:f5:d9:b2:1e:12:4e:b1:58:d3:19:c3:48:8f:2c:91:
e0:58:07:e6:92:35:2b:57:f3:af:09:7b:5a:3f:69:ca:f7:ed:
16:bf:30:89:b5:70:8e:2f:9e:a4:45:46:00:dc:18:ac:88:cb:
8f:ed:e1:0c:4e:4c:af:ba:9f:ee:4d:3d:58:57:ce:9c:2f:b7:
ff:b4:02:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:01 2024 by rpki-client on console-ams.rpki-client.org