Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/6uf-zo7fQ1EHtmvsj-BI18P-tF0.roa
File: 6uf-zo7fQ1EHtmvsj-BI18P-tF0.roa (raw, json)
Hash identifier: xfxxbDf/Q/yee7N1RgjpF4fGzw4Zs51EiHQhkUGtfso=
Subject key identifier: EA:E7:FE:CE:8E:DF:43:51:07:B6:6B:EC:8F:E0:48:D7:C3:FE:B4:5D
Certificate issuer: /CN=382e533033b3ce95e4972bf2382ddac293c2dc01
Certificate serial: 0186B1A75BB023F00E4E9046987ADA4C9CFF
Authority key identifier: 38:2E:53:30:33:B3:CE:95:E4:97:2B:F2:38:2D:DA:C2:93:C2:DC:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC5TMDOzzpXklyvyOC3awpPC3AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/6uf-zo7fQ1EHtmvsj-BI18P-tF0.roa
Signing time: Sun 05 Mar 2023 12:03:00 +0000
ROA not before: Sun 05 Mar 2023 12:03:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201148
IP address blocks: 2a13:3f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 15 Dec 2023 09:56:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b1:a7:5b:b0:23:f0:0e:4e:90:46:98:7a:da:4c:9c:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382e533033b3ce95e4972bf2382ddac293c2dc01
Validity
Not Before: Mar 5 12:03:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eae7fece8edf435107b66bec8fe048d7c3feb45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:70:30:92:ff:57:6e:75:77:1b:ec:f9:f3:c1:
5c:88:a0:7b:af:38:fb:d3:f0:4e:e9:9b:b4:8f:05:
b9:95:c6:0c:11:c9:6b:e8:03:83:b4:53:4e:8e:62:
85:97:28:2f:f5:96:7c:52:f5:a2:00:82:b7:4a:24:
79:93:01:6c:9f:4c:2a:57:d8:86:7b:55:62:fc:99:
fb:ac:40:53:5b:73:f2:b0:9e:28:19:fd:4d:86:a9:
39:12:4b:18:0b:2d:38:ef:e1:b9:31:e2:14:5a:19:
69:96:77:50:11:00:f5:bf:a3:a9:be:8e:04:a8:d2:
95:7c:d6:12:fe:0d:74:e3:bd:32:a6:1e:ee:06:a1:
02:72:ca:c1:8a:61:39:d5:50:e8:b3:a2:bc:01:55:
13:9e:32:03:72:83:bc:5c:c3:99:3e:f1:89:93:ad:
f9:e1:f4:36:ba:80:16:fd:bd:0d:0a:29:8e:21:21:
38:d2:38:9b:af:c0:db:e7:3a:c7:d0:36:c7:65:9d:
72:2e:fb:82:b6:2e:03:91:9f:d6:90:05:90:b3:5e:
88:94:5c:a5:3c:4c:ab:65:98:e9:3c:ae:11:6d:52:
eb:7d:e3:28:a7:d1:0a:e8:11:89:ff:4c:9a:f6:41:
87:ea:65:06:73:bb:1d:00:d4:52:91:76:bc:94:5d:
e4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E7:FE:CE:8E:DF:43:51:07:B6:6B:EC:8F:E0:48:D7:C3:FE:B4:5D
X509v3 Authority Key Identifier:
keyid:38:2E:53:30:33:B3:CE:95:E4:97:2B:F2:38:2D:DA:C2:93:C2:DC:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC5TMDOzzpXklyvyOC3awpPC3AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/6uf-zo7fQ1EHtmvsj-BI18P-tF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3f40::/29
Signature Algorithm: sha256WithRSAEncryption
4a:dc:95:93:92:b7:76:2b:89:ee:07:e4:0e:b4:c9:73:f9:a6:
d0:8c:d8:51:a2:6c:4a:62:9f:91:83:16:62:fd:f6:d5:8a:5a:
6f:97:e2:6b:f9:b8:80:77:2b:32:d4:26:f3:a6:45:83:96:b6:
1f:d2:f8:9c:29:02:35:df:4c:b3:bd:04:ca:d3:25:96:9d:d3:
c9:73:9c:0d:61:35:c6:fd:c3:1d:7e:47:cd:76:8c:04:38:46:
a7:47:ba:f8:5a:18:50:67:9a:0d:c7:a8:f0:0a:84:76:0f:43:
63:f8:df:04:e7:49:be:ad:fb:58:d6:61:0a:06:a4:78:65:a2:
06:0f:65:06:38:e7:bb:40:99:34:af:2a:23:5a:a3:87:1c:ba:
1b:0f:b6:65:70:ca:2d:09:2b:cf:df:76:e4:c6:08:32:13:07:
8d:64:22:74:0a:b5:ba:f3:28:6f:57:1a:02:44:08:ee:5a:2c:
78:d8:b1:eb:b0:8d:3d:d2:91:d8:01:dc:d1:c7:73:88:d9:b0:
8e:5e:26:12:bf:07:b5:6f:b2:2b:0d:bf:8a:07:59:35:21:3a:
43:3e:dc:f1:aa:19:85:e3:51:5f:74:66:78:a4:8b:90:2f:09:
bc:83:c6:d4:0b:5d:17:6a:2b:a7:eb:3d:0d:29:55:09:1d:f9:
a7:fc:e3:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:29 2024 by rpki-client on console-fra.rpki-client.org