Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/xShAL7Uj3FXIna06zvSYBkw-kQk.roa
File: xShAL7Uj3FXIna06zvSYBkw-kQk.roa (raw, json)
Hash identifier: KmFeG5vgJuA5hdleTczZ6N8QF3ll8kR4rjEy3BLS1cc=
Subject key identifier: C5:28:40:2F:B5:23:DC:55:C8:9D:AD:3A:CE:F4:98:06:4C:3E:91:09
Certificate issuer: /CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Certificate serial: 01856DE65BE7D3843420E7CE15C92BFB0C23
Authority key identifier: B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/xShAL7Uj3FXIna06zvSYBkw-kQk.roa
Signing time: Sun 01 Jan 2023 15:14:51 +0000
ROA not before: Sun 01 Jan 2023 15:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 2a12:de40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 07 May 2023 14:29:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:5b:e7:d3:84:34:20:e7:ce:15:c9:2b:fb:0c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Validity
Not Before: Jan 1 15:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c528402fb523dc55c89dad3acef498064c3e9109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:79:71:0d:c4:b8:b7:77:b4:8f:d1:5c:25:98:
20:11:3d:df:31:6d:d8:c6:67:d2:46:71:a4:44:ff:
f8:9c:de:b4:db:5f:c1:4c:31:71:e3:b8:63:1d:38:
b7:8f:f5:98:67:61:44:3f:b4:a5:60:5b:38:0f:66:
95:53:0b:1c:b3:ab:a0:9c:60:ce:76:a8:b4:1b:ca:
73:00:27:b3:ab:93:15:e3:70:e6:6b:b5:ba:9a:34:
49:d5:39:9e:46:ff:3b:aa:b2:f8:58:75:e8:ae:c6:
c3:f1:89:c6:27:a6:95:57:60:37:10:2e:27:36:3f:
63:66:03:38:fe:e4:88:42:6c:a8:b7:2d:88:96:98:
0d:b0:f8:59:7c:b0:4c:6f:6c:ac:dc:24:08:bf:7f:
97:cf:01:87:1c:3f:33:1e:8e:2b:6f:e4:a5:ef:c2:
32:81:9e:eb:98:92:21:49:3c:27:61:df:c1:e0:4b:
d4:94:22:7f:d7:a5:d7:6f:75:11:49:f1:63:68:fd:
41:8e:87:fb:f4:65:c8:16:d9:c0:8e:38:21:a3:52:
2f:e0:81:63:c7:56:99:ff:a6:2f:ad:37:07:a4:a6:
3e:8d:70:ca:28:24:ff:f3:25:d8:8a:69:ef:47:a9:
4c:43:dd:ae:3d:9b:14:6f:be:46:95:28:d6:2e:5a:
8f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:28:40:2F:B5:23:DC:55:C8:9D:AD:3A:CE:F4:98:06:4C:3E:91:09
X509v3 Authority Key Identifier:
keyid:B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/xShAL7Uj3FXIna06zvSYBkw-kQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/uebEGisE_Nj46VcY-n0uEsxErB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:de40::/29
Signature Algorithm: sha256WithRSAEncryption
19:d1:21:bd:32:7a:34:4a:57:8f:b3:63:93:3d:ba:e2:98:a3:
df:43:35:21:15:a8:dd:d1:92:b9:2c:6d:6a:3b:05:3c:8d:46:
ca:77:44:95:8a:63:90:2c:13:2c:46:9c:fd:70:6c:eb:00:70:
c5:05:2f:62:29:b4:07:2c:0b:4f:71:4a:c3:2b:21:f6:e4:a4:
2a:98:fa:56:a2:eb:67:37:eb:55:74:47:a4:d2:d0:38:64:19:
7d:10:83:65:ad:7b:a3:75:c9:66:06:aa:5b:d9:df:c4:fb:0c:
12:46:4a:1c:4e:d2:30:5b:7a:e4:18:65:6b:12:69:f3:24:c7:
4f:a8:bb:13:db:ea:20:a5:21:2c:34:ea:aa:a6:8c:a9:22:e4:
4d:c5:c6:bc:01:89:fa:28:19:70:b0:3d:cd:99:34:25:06:c9:
d7:22:0d:be:f1:fc:f0:26:fb:23:aa:0c:e8:64:d2:30:28:93:
6d:13:a1:8e:a8:56:85:65:e0:9a:52:ae:f7:b5:9d:e6:24:2e:
fb:41:be:a2:89:23:b1:ad:61:6f:4c:9a:c9:42:2e:06:05:b9:
d3:30:52:17:78:af:65:ac:01:88:00:3c:c9:72:71:ae:8d:c1:
c5:74:62:75:ab:d0:8a:ce:33:ed:a0:d1:23:b1:6c:23:38:9c:
63:e2:de:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:01 2024 by rpki-client on console-ams.rpki-client.org