Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/j9X7Rs68DGb_CAJBxfcRye_Bgg0.roa
File: j9X7Rs68DGb_CAJBxfcRye_Bgg0.roa (raw, json)
Hash identifier: cI619dtlrxfulFXABSuJN9lSxXliwqxEIPU2govCFwc=
Subject key identifier: 8F:D5:FB:46:CE:BC:0C:66:FF:08:02:41:C5:F7:11:C9:EF:C1:82:0D
Certificate issuer: /CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Certificate serial: 018A9333578EB99A92F2E1AA08AF31863118
Authority key identifier: A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/j9X7Rs68DGb_CAJBxfcRye_Bgg0.roa
Signing time: Thu 14 Sep 2023 10:18:50 +0000
ROA not before: Thu 14 Sep 2023 10:18:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49132
IP address blocks: 2a13:1500:2200::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:33:57:8e:b9:9a:92:f2:e1:aa:08:af:31:86:31:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Validity
Not Before: Sep 14 10:18:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fd5fb46cebc0c66ff080241c5f711c9efc1820d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:04:0d:1b:d1:aa:7a:2b:2a:06:22:9e:60:45:
0a:26:ef:c0:9f:27:0e:be:c2:5f:ab:32:b5:3a:86:
48:fb:3f:52:b1:5e:22:ac:0c:ae:4e:c0:2c:1c:f7:
98:64:bd:f8:8e:37:3f:34:42:1f:dd:f2:81:75:a0:
5d:9a:24:d8:36:03:71:ba:ea:ce:10:6d:1a:3c:48:
f2:36:c7:f4:1d:e2:cc:b5:b7:f7:ff:33:dc:10:a3:
7c:91:e4:1e:83:bd:d4:44:61:23:59:bc:a0:24:b7:
54:0d:ca:ce:9e:13:81:77:19:9b:64:64:21:c9:cc:
d0:70:8b:e4:8d:64:4b:10:ef:f2:38:06:0d:6c:6f:
05:72:75:43:e3:03:fc:f5:b3:de:31:cf:c5:aa:00:
60:18:3e:e5:d2:65:0f:31:23:df:13:a4:f2:00:31:
ab:74:6a:8b:9e:c2:d5:74:7a:d5:f2:43:b1:e4:4e:
fb:57:7b:05:a2:0b:90:06:7f:85:c1:70:40:9a:b8:
10:64:9f:65:53:90:41:81:51:38:44:44:b1:10:01:
5c:76:74:94:61:59:e0:ef:0b:7a:8f:e0:ad:f7:c1:
62:da:ff:48:d4:de:2a:3a:c6:b2:de:e1:1d:c2:3b:
e5:76:5a:b6:f6:e7:44:0c:e2:83:19:cb:03:3d:66:
ef:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:D5:FB:46:CE:BC:0C:66:FF:08:02:41:C5:F7:11:C9:EF:C1:82:0D
X509v3 Authority Key Identifier:
keyid:A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/j9X7Rs68DGb_CAJBxfcRye_Bgg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1500:2200::/40
Signature Algorithm: sha256WithRSAEncryption
28:e3:a7:fb:2c:c7:5a:93:2a:23:a5:1b:51:9d:e3:6c:5d:3b:
c8:a9:18:dc:1a:c8:8b:1c:67:45:fa:39:39:6c:1b:f3:2b:b7:
a7:f8:6f:51:37:bd:74:c2:d2:1c:50:0a:88:d4:b6:0d:fc:23:
0c:72:81:30:07:86:7b:2c:c7:db:c3:f4:ae:a8:60:4c:3c:51:
81:7e:6f:57:f0:2a:fd:b3:b9:7d:3b:34:c3:db:5d:a1:21:e6:
e7:b9:09:df:5a:09:21:85:a3:fe:08:5e:78:59:b6:89:d4:6d:
ee:fa:f9:1a:3b:30:f9:d4:98:a8:eb:de:24:82:bc:81:6b:0d:
80:8d:6a:4d:40:89:1c:5d:5b:0a:e4:32:1c:b9:2d:73:64:82:
37:a7:06:6f:d6:37:24:58:0e:b9:3f:97:71:16:4d:2e:81:10:
cd:c8:54:25:2b:5c:4a:90:48:de:80:1a:5d:19:ab:98:24:60:
9a:5a:27:60:bb:8d:b6:06:4d:6f:4f:ac:c9:31:9f:b8:15:eb:
36:de:1b:6e:9d:0b:65:d8:e0:22:6f:95:61:dc:05:09:5f:d7:
fd:33:78:c4:bb:bd:e1:ae:1b:7b:f1:1a:43:00:1b:78:72:76:
1d:35:07:7c:05:10:38:ec:28:1a:6e:ac:fe:77:e6:d6:db:08:
cd:a7:d1:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:28 2024 by rpki-client on console-ams.rpki-client.org