Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/c67c3e-45c6-4c81-9738-c44ddffa69ab/1/hVnTS5By-bqic76mejIV2nSK_Zc.roa
File: hVnTS5By-bqic76mejIV2nSK_Zc.roa (raw, json)
Hash identifier: 716gDoot54+SU9WnCaaD67bGbaf4OiaWij6H3FPgyVU=
Subject key identifier: 85:59:D3:4B:90:72:F9:BA:A2:73:BE:A6:7A:32:15:DA:74:8A:FD:97
Certificate issuer: /CN=0caa8840e53bb965be5192c85b740345e7a0652c
Certificate serial: 01856ED49C4BC68780F17F46B9E2137BABFC
Authority key identifier: 0C:AA:88:40:E5:3B:B9:65:BE:51:92:C8:5B:74:03:45:E7:A0:65:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKqIQOU7uWW-UZLIW3QDReegZSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/c67c3e-45c6-4c81-9738-c44ddffa69ab/1/hVnTS5By-bqic76mejIV2nSK_Zc.roa
Signing time: Sun 01 Jan 2023 19:35:05 +0000
ROA not before: Sun 01 Jan 2023 19:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:7f00::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 22 Nov 2023 11:08:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:9c:4b:c6:87:80:f1:7f:46:b9:e2:13:7b:ab:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0caa8840e53bb965be5192c85b740345e7a0652c
Validity
Not Before: Jan 1 19:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8559d34b9072f9baa273bea67a3215da748afd97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:39:2e:67:8b:ab:2e:d4:58:e0:7c:53:dd:bb:
ee:bb:97:84:e0:a0:a6:03:af:dd:3e:1a:09:66:09:
d3:63:d2:ab:64:f7:53:71:54:23:30:80:45:e4:b1:
69:d6:e1:e1:50:40:fc:e2:02:e3:06:8c:90:c4:d0:
ad:a3:1b:53:cd:77:f0:2d:8c:0f:d2:ac:74:ab:d1:
8a:0f:5e:89:45:e3:bf:20:0e:b9:dd:58:18:72:09:
69:11:17:33:9a:0a:a6:67:27:c3:7f:24:3a:5c:78:
60:ba:d4:14:2a:6e:52:9b:4c:4f:45:cf:22:ec:23:
a4:18:1c:b3:83:e5:6a:89:63:be:4c:25:9e:da:7b:
03:b1:cd:d0:87:e9:37:ca:16:ed:ff:cd:92:a8:86:
92:e9:cd:3e:b9:5a:96:3a:42:48:59:3d:51:b5:0b:
a5:35:c1:5a:27:dd:87:d3:a1:0f:95:ee:13:d9:dd:
dc:1c:ee:ce:de:53:c6:54:b1:b5:56:2c:69:d2:8c:
95:44:4c:20:74:c1:15:40:9c:f1:80:fa:23:02:3c:
ad:4d:c3:22:bf:b4:f4:d7:b1:f4:75:9f:41:4a:0f:
2c:50:48:2f:01:07:6d:24:a5:9c:38:d1:f8:ae:89:
33:65:a8:91:a8:98:b7:8b:0b:1f:96:32:59:28:73:
6a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:59:D3:4B:90:72:F9:BA:A2:73:BE:A6:7A:32:15:DA:74:8A:FD:97
X509v3 Authority Key Identifier:
keyid:0C:AA:88:40:E5:3B:B9:65:BE:51:92:C8:5B:74:03:45:E7:A0:65:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKqIQOU7uWW-UZLIW3QDReegZSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c67c3e-45c6-4c81-9738-c44ddffa69ab/1/hVnTS5By-bqic76mejIV2nSK_Zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c67c3e-45c6-4c81-9738-c44ddffa69ab/1/DKqIQOU7uWW-UZLIW3QDReegZSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7f00::/32
Signature Algorithm: sha256WithRSAEncryption
27:98:a7:ad:b2:67:02:b9:99:b4:b6:37:29:8e:92:73:ca:0c:
e5:eb:ed:c3:5b:79:73:1f:c0:0c:f9:9e:03:63:4a:5b:78:d2:
05:9d:21:53:e0:14:0b:22:39:cb:ee:74:8f:cc:9e:b4:c7:b9:
a4:87:55:86:54:30:31:55:84:c7:3a:e8:b6:ed:88:cf:97:34:
45:3c:fe:a3:73:59:09:69:9a:ba:db:0c:35:af:72:fb:2a:b8:
aa:54:84:2b:95:87:e0:19:47:36:18:a3:12:4f:09:b7:a2:3a:
1d:2d:fa:0e:44:36:c4:e1:fa:c6:e4:e0:e9:eb:98:93:8d:c1:
4b:af:7d:d9:0e:ef:1f:aa:7b:69:1a:c6:09:06:ad:2a:ef:28:
93:57:53:9d:6a:87:6b:ab:8a:f2:f7:de:ba:cb:9c:ed:92:5b:
73:41:ed:66:14:61:20:fe:4f:84:3f:10:b7:4d:3f:cb:dd:cf:
5e:82:be:c0:be:56:37:2c:1e:ff:c6:cd:5f:5e:dc:d7:06:c1:
69:d2:fc:9c:45:13:68:0e:fb:2b:9d:76:df:6c:94:bd:0e:2b:
99:c9:02:05:78:a2:9e:6f:38:a8:35:71:f3:e6:bd:3e:62:29:
24:2c:63:e6:47:d1:25:fb:a6:41:79:97:65:c6:8f:4c:a9:be:
54:4e:68:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:27 2024 by rpki-client on console-fra.rpki-client.org