Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/KmuztQ_vT5wgSjUziH4wjNsbvfQ.roa
File: KmuztQ_vT5wgSjUziH4wjNsbvfQ.roa (raw, json)
Hash identifier: y+gVy5nnCs/vQX4yNq66EFYKo7nGyR+PEcARei/E46E=
Subject key identifier: 2A:6B:B3:B5:0F:EF:4F:9C:20:4A:35:33:88:7E:30:8C:DB:1B:BD:F4
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018A6D9FF5A9B0F595C6BBC959EA244BD59D
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/KmuztQ_vT5wgSjUziH4wjNsbvfQ.roa
Signing time: Thu 07 Sep 2023 03:11:54 +0000
ROA not before: Thu 07 Sep 2023 03:11:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44812
IP address blocks: 2a12:a346::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 19 Sep 2023 04:22:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6d:9f:f5:a9:b0:f5:95:c6:bb:c9:59:ea:24:4b:d5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Sep 7 03:11:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a6bb3b50fef4f9c204a3533887e308cdb1bbdf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8c:0d:d8:55:d5:23:9f:60:da:22:77:3c:0a:
f4:6e:fc:08:bc:a4:82:b7:9e:8a:fe:2a:e6:4c:1b:
28:d1:e1:03:7a:36:36:5a:19:29:0c:a8:18:98:cf:
06:88:51:36:54:ce:30:e1:a8:ea:7a:58:57:42:62:
74:31:4e:b3:ad:db:68:b2:d7:79:24:97:5c:b7:1c:
b1:7c:53:5f:fe:d2:95:5f:1f:f2:25:cb:3a:c3:7e:
7c:9d:46:57:fd:cb:c2:f1:5f:20:75:03:bd:e2:95:
4a:53:bf:c0:af:16:9f:e3:ef:e9:2a:74:df:6b:bd:
23:85:fd:b7:4b:05:d0:35:15:6d:dc:37:84:6d:b6:
35:bc:52:f9:37:16:86:75:72:2b:5c:f8:f4:cb:43:
55:80:6a:53:c5:b9:1c:7e:93:0d:ff:e1:98:dc:5a:
63:a7:97:fb:f5:14:63:4f:ec:59:f8:95:0b:50:d7:
a6:86:38:a5:5c:de:5a:f0:29:e1:6c:a0:e7:ad:6a:
c7:33:64:27:dc:60:de:e8:b6:6f:6e:61:31:17:d3:
7b:12:14:2f:e6:bb:a3:37:1b:9d:d9:60:ee:36:1b:
f2:ac:f4:09:8c:d4:5f:6b:09:96:c9:88:75:6e:04:
ef:e7:f9:d9:b3:15:3c:04:ef:3a:6a:9b:5b:7e:f9:
bf:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:6B:B3:B5:0F:EF:4F:9C:20:4A:35:33:88:7E:30:8C:DB:1B:BD:F4
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/KmuztQ_vT5wgSjUziH4wjNsbvfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:a346::/32
Signature Algorithm: sha256WithRSAEncryption
01:3c:7c:25:e3:73:42:0e:b8:b0:6a:e5:f0:47:65:93:4a:74:
d8:f9:25:0f:9f:61:79:10:97:e8:dc:af:e0:8c:86:fe:43:e7:
7c:9f:3c:1e:50:f6:98:6b:0d:08:c0:1a:cd:c5:ad:55:c0:ae:
71:a7:08:5c:1e:8f:85:74:59:fe:ae:0e:cf:f4:a7:0b:ab:ea:
d7:65:8f:f0:6a:ee:6c:99:1e:69:19:aa:34:f1:ce:a5:22:ca:
de:5d:01:70:d6:de:68:c7:b6:77:9d:2b:ce:7d:b6:45:7e:99:
ae:cb:60:f0:68:95:40:79:25:11:5c:72:89:1c:d6:26:8d:86:
65:7d:a5:1a:94:bf:43:92:b4:eb:0f:45:ff:e3:df:15:29:ad:
5d:d2:eb:54:0b:99:70:b7:57:67:86:4e:c3:62:8d:30:7e:b5:
57:6f:50:37:b6:a9:95:c4:ad:56:a0:dc:ce:f6:26:d8:b4:85:
ba:18:c7:95:61:f6:8b:b1:90:8a:58:e4:be:f5:39:39:c6:f8:
78:d3:fd:87:63:d2:08:85:1a:8b:08:4d:e6:7a:e9:8a:85:dd:
02:a9:5b:c7:ae:5c:3c:82:d7:e2:5e:c5:6e:aa:30:8d:a7:b8:
ff:70:a5:97:d7:93:92:2c:3e:8b:0e:3e:c2:a4:5a:4b:3f:42:
c1:37:eb:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org