Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/466aab-a470-4344-a367-547be4cfa457/1/v3uJlMY1kaRPYKjctz3nmX1ZA5E.roa
File: v3uJlMY1kaRPYKjctz3nmX1ZA5E.roa (raw, json)
Hash identifier: L/zo8WA2LXqlLCokKSnGSaZ4mPz3ajaPBV6MhywW4Z0=
Subject key identifier: BF:7B:89:94:C6:35:91:A4:4F:60:A8:DC:B7:3D:E7:99:7D:59:03:91
Certificate issuer: /CN=75b795066150a1c367dabccf69c970ab0c723215
Certificate serial: 0185ACA61E08178555014398B21E997D1066
Authority key identifier: 75:B7:95:06:61:50:A1:C3:67:DA:BC:CF:69:C9:70:AB:0C:72:32:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbeVBmFQocNn2rzPaclwqwxyMhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/466aab-a470-4344-a367-547be4cfa457/1/v3uJlMY1kaRPYKjctz3nmX1ZA5E.roa
Signing time: Fri 13 Jan 2023 19:40:45 +0000
ROA not before: Fri 13 Jan 2023 19:40:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58192
IP address blocks: 2a13:5e40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ac:a6:1e:08:17:85:55:01:43:98:b2:1e:99:7d:10:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75b795066150a1c367dabccf69c970ab0c723215
Validity
Not Before: Jan 13 19:40:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf7b8994c63591a44f60a8dcb73de7997d590391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:44:70:73:c7:6e:33:23:95:89:64:d0:c6:1f:
a5:86:6b:e2:d3:b7:63:de:11:b8:9f:62:dc:70:2d:
6e:19:5d:1e:bd:55:89:df:9c:9a:41:a1:5d:d8:8d:
34:0d:b7:07:0e:21:70:9d:cf:57:fc:5e:1a:c6:6b:
67:23:93:b7:92:3d:9d:fd:93:27:e2:e6:4c:25:b2:
98:10:65:ff:68:ec:21:fe:63:ed:ea:87:f9:96:7e:
35:e7:dc:73:96:51:70:bd:8d:fb:e3:a4:1a:6e:cd:
8e:13:ed:36:f8:30:b9:c8:5f:ec:4c:ec:f9:0f:76:
dc:42:73:06:3f:c1:06:a2:3c:cc:e4:1b:62:c1:74:
c2:31:e9:06:c6:5f:a6:80:50:14:44:7b:2d:91:4b:
d0:1a:fe:20:98:76:d2:e0:dd:c0:0f:c3:7f:ab:85:
1c:c3:7b:f3:7c:a1:8b:46:3d:86:ac:28:3a:cd:b0:
2b:69:1e:0c:ef:95:04:d1:22:66:3c:71:34:e0:31:
aa:99:7d:61:57:f4:08:48:35:73:e1:c6:f4:02:56:
57:cc:cf:c1:4a:4e:2f:3f:48:15:9f:23:2d:f1:d2:
f8:c6:04:c4:d4:be:3f:3e:4d:17:11:66:5f:45:0b:
06:24:ad:81:1f:74:23:98:04:84:8f:f9:63:f4:7b:
d4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7B:89:94:C6:35:91:A4:4F:60:A8:DC:B7:3D:E7:99:7D:59:03:91
X509v3 Authority Key Identifier:
keyid:75:B7:95:06:61:50:A1:C3:67:DA:BC:CF:69:C9:70:AB:0C:72:32:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbeVBmFQocNn2rzPaclwqwxyMhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/466aab-a470-4344-a367-547be4cfa457/1/v3uJlMY1kaRPYKjctz3nmX1ZA5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/466aab-a470-4344-a367-547be4cfa457/1/dbeVBmFQocNn2rzPaclwqwxyMhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5e40::/29
Signature Algorithm: sha256WithRSAEncryption
d2:0f:6b:ff:00:a6:67:d4:b7:db:18:a3:97:8c:67:af:2c:b0:
05:af:26:8b:81:69:f2:96:b4:fc:81:54:02:86:f3:0b:d0:87:
85:b5:45:14:34:18:b8:40:f9:fe:9c:0b:fa:93:3d:f2:e8:e1:
0b:b6:7d:0a:36:79:9c:eb:82:50:1b:6a:98:64:36:18:cc:7a:
da:0a:d7:18:5f:50:e0:4f:bf:ac:f7:88:b4:4e:19:3c:70:ae:
78:ff:fd:76:25:45:e0:7e:34:78:26:a4:91:6a:c4:d5:a7:12:
19:c1:1c:73:75:7c:b2:f2:5d:dc:15:24:79:d8:ea:e5:2b:83:
01:48:a0:4f:c7:dc:d2:a0:b7:14:c0:73:82:9d:12:ed:31:cb:
12:e6:ec:d1:74:da:e5:4b:29:64:7f:82:fa:5f:aa:69:3d:83:
b9:26:40:9d:dd:80:2c:d5:d5:47:1e:1d:05:09:29:e5:80:f4:
de:7a:79:9f:7c:6e:a5:ee:3b:0b:47:10:df:20:74:7e:ff:16:
8b:ac:fa:e5:ae:31:11:53:58:ac:a7:1d:66:0c:26:ae:d7:9a:
b1:eb:8c:f7:6b:46:14:ad:60:32:8c:f8:b4:a1:88:9f:b2:40:
36:38:f0:3d:58:d5:2b:ec:e4:e9:ef:7c:65:30:52:21:f9:b0:
af:3b:f3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:40 2024 by rpki-client on console-fra.rpki-client.org