Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/JkRkzIhdBBtR9Qmph5D55br0gs4.roa
File: JkRkzIhdBBtR9Qmph5D55br0gs4.roa (raw, json)
Hash identifier: ByyMQunX8nlbkWRL7ayzGfCfjsfBAjdzSBYn/WCK7+Y=
Subject key identifier: 26:44:64:CC:88:5D:04:1B:51:F5:09:A9:87:90:F9:E5:BA:F4:82:CE
Certificate issuer: /CN=572bc93f1580fc95274d983940f3efaede304ae5
Certificate serial: 0186171EA3E3DFAD3FB5A0AC369D98AA6BEC
Authority key identifier: 57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/JkRkzIhdBBtR9Qmph5D55br0gs4.roa
Signing time: Fri 03 Feb 2023 11:52:09 +0000
ROA not before: Fri 03 Feb 2023 11:52:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200887
IP address blocks: 2a13:1584::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 13 Feb 2023 11:22:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:17:1e:a3:e3:df:ad:3f:b5:a0:ac:36:9d:98:aa:6b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572bc93f1580fc95274d983940f3efaede304ae5
Validity
Not Before: Feb 3 11:52:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=264464cc885d041b51f509a98790f9e5baf482ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ac:a4:f2:1f:58:4d:87:22:de:d8:5d:d6:29:
31:a9:48:1c:01:b5:32:57:07:79:82:fe:30:0e:1b:
f0:b3:2c:a3:24:9f:33:0b:3b:03:d1:cd:c5:b3:22:
13:27:60:e7:d1:9a:1e:ce:4a:4c:6f:09:fa:6d:47:
cc:71:bf:9c:77:04:6c:74:2f:ce:14:0e:4a:94:ee:
fd:46:51:2d:b2:01:21:8e:0a:c9:ca:95:b6:6a:b4:
47:2c:c3:75:a2:2a:e3:ac:71:83:96:56:67:67:65:
06:a0:60:4f:90:3d:36:5b:14:99:5f:d1:d5:ce:6f:
b5:ba:0b:45:60:c8:37:ae:8e:a9:45:24:54:43:bb:
3a:da:ce:a8:f9:03:5e:e8:38:7f:a0:fb:8a:a5:4a:
52:e8:5d:f8:57:25:70:13:68:09:c4:24:7c:bb:f9:
39:dd:2b:78:d2:f8:2c:4c:0f:43:f1:21:e8:5a:d7:
7e:8a:c3:b8:7a:2f:7f:fc:69:64:47:82:25:ce:2a:
f3:96:e5:f0:04:5a:73:d8:03:33:9f:1a:f4:17:e6:
c5:ac:0c:99:0f:5a:c8:10:27:61:ee:de:61:76:dc:
ab:49:78:6d:bc:94:fb:4e:fc:51:fb:07:dd:41:0b:
f6:15:4f:55:e7:c7:4a:b9:76:4a:94:a4:3e:e5:eb:
8d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:44:64:CC:88:5D:04:1B:51:F5:09:A9:87:90:F9:E5:BA:F4:82:CE
X509v3 Authority Key Identifier:
keyid:57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/JkRkzIhdBBtR9Qmph5D55br0gs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/VyvJPxWA_JUnTZg5QPPvrt4wSuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1584::/30
Signature Algorithm: sha256WithRSAEncryption
8c:27:54:49:0b:94:8f:40:a0:47:d2:f2:3e:47:c7:46:52:4b:
34:b6:b2:95:80:3e:6a:e5:6b:a5:26:67:b2:d4:b6:55:81:3d:
11:6c:3d:58:39:94:71:c7:e7:e4:9e:95:90:3b:20:65:bd:84:
cf:03:53:76:fd:ab:53:13:1c:a4:ad:d8:d0:fe:0f:04:a8:31:
b9:da:8b:82:1c:4c:43:76:9e:f2:55:60:70:35:35:33:ff:29:
ec:cc:7a:c1:dd:d8:b2:d8:ab:90:c2:f6:fd:a4:92:46:9b:93:
66:79:a0:0c:7e:ee:75:fe:9c:71:31:c5:d4:ad:4d:8c:41:6e:
61:df:1d:1a:e9:3c:8c:8b:65:a3:13:b5:99:bc:18:df:cb:08:
4a:46:01:5e:ec:a0:b7:61:2e:dc:b3:42:52:eb:6c:b4:1d:3b:
96:70:2d:77:a5:b6:2e:bb:d1:ee:70:7c:35:99:b4:ec:4a:73:
7b:58:c8:79:9a:67:d5:a9:ea:90:a9:f4:d5:a4:e2:9d:6a:75:
a5:38:2a:0a:34:5d:f0:1e:05:cd:2a:ee:6a:48:cd:9e:52:60:
eb:f2:62:47:fb:6f:29:bb:b9:3b:31:ca:2f:d7:2a:b3:72:fd:
b9:0e:df:da:17:cc:ad:c7:2b:c4:dc:e2:20:93:82:a1:28:86:
f0:85:2c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org