Route Origin Authorization
$ rpki-client -vvf rpki.netiface.net/repo/Apricot/1/326131333a646638373a623430613a3a2f34382d3438203d3e203630383538.roa
File: 326131333a646638373a623430613a3a2f34382d3438203d3e203630383538.roa (raw, json)
Hash identifier: l29/F1zi+qDm/nMMxuU1K3mJXRoBRJbbtYEYeDd2Pl8=
Subject key identifier: 31:50:9E:21:32:F7:14:F4:BF:FE:4C:B7:7E:6A:FD:81:55:C0:AC:0F
Certificate issuer: /CN=2A1A6172DA4C339FD787467E26F92A11E75DBBB3
Certificate serial: 12F9981F09E90B5098F472628D6D084C4C6445F0
Authority key identifier: 2A:1A:61:72:DA:4C:33:9F:D7:87:46:7E:26:F9:2A:11:E7:5D:BB:B3
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/2A1A6172DA4C339FD787467E26F92A11E75DBBB3.cer
Subject info access: rsync://rpki.netiface.net/repo/Apricot/1/326131333a646638373a623430613a3a2f34382d3438203d3e203630383538.roa
Signing time: Sun 07 Jan 2024 17:10:58 +0000
ROA not before: Sun 07 Jan 2024 17:05:58 +0000
ROA not after: Sun 05 Jan 2025 17:10:58 +0000
asID: 60858
IP address blocks: 2a13:df87:b40a::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 13 Jan 2024 20:49:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:f9:98:1f:09:e9:0b:50:98:f4:72:62:8d:6d:08:4c:4c:64:45:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A1A6172DA4C339FD787467E26F92A11E75DBBB3
Validity
Not Before: Jan 7 17:05:58 2024 GMT
Not After : Jan 5 17:10:58 2025 GMT
Subject: CN=31509E2132F714F4BFFE4CB77E6AFD8155C0AC0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:ae:57:ec:09:bb:bd:e3:3e:ac:3a:00:2d:
21:7a:9d:41:5d:3f:f2:35:67:eb:42:e5:71:11:9b:
78:81:65:8e:1d:fd:94:d9:88:3a:46:04:24:fb:55:
e3:1f:ba:ee:69:00:cc:d0:4e:16:98:0a:d3:4d:be:
b9:f3:b2:a2:81:33:3c:46:17:01:ec:95:35:b4:b9:
30:92:08:4f:dc:4d:a7:27:cb:5a:63:6a:24:41:c9:
a5:9c:52:98:aa:a1:96:df:4e:16:29:c5:05:e1:e8:
0b:b1:62:f8:8c:57:13:0c:b2:77:df:3a:40:d1:b6:
ad:77:ea:e5:b7:17:87:3b:0d:ae:5e:4f:64:af:8a:
2a:f1:84:ee:4c:72:27:cd:e7:d0:2b:77:94:b2:9d:
0e:5d:d4:cc:5a:a4:9c:9b:14:ad:d5:36:fc:a6:fc:
09:02:a8:19:16:0b:48:2a:91:82:76:e3:01:2a:a2:
3f:fb:e4:a9:06:6e:a7:2e:84:df:82:00:50:79:71:
70:c2:75:30:eb:af:d4:95:9a:8c:79:80:7b:b7:dc:
6f:03:b1:18:44:bc:ee:12:3a:f7:a5:d2:11:78:b0:
3c:0d:01:c8:e2:46:0b:20:9c:61:6f:c7:b1:ea:14:
3a:6b:15:cf:f7:d8:b3:cf:b5:59:e7:ca:c2:0a:09:
69:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:50:9E:21:32:F7:14:F4:BF:FE:4C:B7:7E:6A:FD:81:55:C0:AC:0F
X509v3 Authority Key Identifier:
keyid:2A:1A:61:72:DA:4C:33:9F:D7:87:46:7E:26:F9:2A:11:E7:5D:BB:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.netiface.net/repo/Apricot/1/2A1A6172DA4C339FD787467E26F92A11E75DBBB3.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/2A1A6172DA4C339FD787467E26F92A11E75DBBB3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.netiface.net/repo/Apricot/1/326131333a646638373a623430613a3a2f34382d3438203d3e203630383538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df87:b40a::/48
Signature Algorithm: sha256WithRSAEncryption
8c:f8:00:61:bd:cd:ce:f9:20:1d:ea:1d:92:d4:39:5d:1e:85:
8f:3e:b4:dd:3b:ee:cf:8b:0d:44:0c:89:a4:d4:c5:39:a4:09:
78:ab:0e:e3:66:74:b0:67:67:56:9f:11:b2:08:ec:ca:e1:a6:
67:de:49:f0:0c:ba:5f:f9:c4:de:f5:49:e4:b9:46:69:ea:fa:
01:11:15:3e:dd:05:16:ad:0c:2a:36:22:b5:f4:0e:a4:a3:d9:
58:ec:f3:56:ef:13:f4:07:66:13:0f:d9:2c:cd:76:49:e8:ff:
b0:80:81:1e:eb:16:4a:b7:81:ac:78:ff:ed:86:a7:c8:fb:4a:
00:0c:57:6a:1b:57:6d:d4:c8:9e:53:3f:7c:32:72:97:71:94:
86:6c:83:40:de:5a:e5:f1:a8:8e:7b:0f:c2:9a:65:ed:05:79:
e2:15:21:31:19:c8:d8:fc:64:8c:5d:9d:95:04:aa:ec:cc:ea:
91:d8:13:ec:75:14:df:40:d2:48:85:bd:1c:f6:8a:50:60:52:
74:fd:60:fb:4f:97:f8:7f:ba:95:8a:b3:1d:12:9b:60:f4:e7:
8a:d6:77:04:b8:2d:1f:fb:d3:9f:a7:4d:cc:ae:0d:f9:bb:3f:
78:99:aa:6e:a3:97:3c:fd:f8:1a:51:40:4a:16:db:e4:a4:a8:
48:33:22:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jan 13 23:33:12 2024 by rpki-client on console-ams.rpki-client.org