Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/baa372-823b-4b07-9aab-cbbd01f2b91c/1/UWQ7nDgk54YPiG0_DNWhnBTS2T8.roa
File: UWQ7nDgk54YPiG0_DNWhnBTS2T8.roa (raw, json)
Hash identifier: cxWB1E0In/DCc3F8LgNR23/qiInGLujvqS4Yo+G2Yl0=
Subject key identifier: 51:64:3B:9C:38:24:E7:86:0F:88:6D:3F:0C:D5:A1:9C:14:D2:D9:3F
Certificate issuer: /CN=246f9be783d73d95ab8aa54619e60f9011c04d67
Certificate serial: 0189CA6F9780CCF70E3B499CB13A6627B964
Authority key identifier: 24:6F:9B:E7:83:D7:3D:95:AB:8A:A5:46:19:E6:0F:90:11:C0:4D:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JG-b54PXPZWriqVGGeYPkBHATWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/baa372-823b-4b07-9aab-cbbd01f2b91c/1/UWQ7nDgk54YPiG0_DNWhnBTS2T8.roa
Signing time: Sun 06 Aug 2023 10:40:58 +0000
ROA not before: Sun 06 Aug 2023 10:40:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197937
IP address blocks: 2a13:83c0::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ca:6f:97:80:cc:f7:0e:3b:49:9c:b1:3a:66:27:b9:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=246f9be783d73d95ab8aa54619e60f9011c04d67
Validity
Not Before: Aug 6 10:40:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51643b9c3824e7860f886d3f0cd5a19c14d2d93f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9e:84:87:f2:5a:d8:fd:6c:20:7a:c3:9c:bd:
e8:c9:c4:b8:ff:3c:fa:a9:c4:ce:7a:8c:21:cd:2d:
2e:88:d8:59:3a:c4:c5:50:e1:cf:16:99:a4:c8:cc:
9d:a7:83:b6:a7:04:ea:ab:85:4e:53:ab:db:1e:f2:
fc:a8:64:20:a2:0f:4f:ad:51:00:b1:bb:23:a2:af:
5d:3c:2f:c2:2d:f1:71:04:e2:4b:cd:2b:b6:b8:16:
68:60:42:11:b8:3e:4b:7c:13:6c:09:55:be:9c:a2:
d7:73:e5:b1:a9:26:cb:ec:e6:02:2d:f4:85:68:b0:
87:23:48:24:af:ee:5e:7a:81:98:f9:b0:55:84:a2:
d3:35:9a:39:f3:de:63:ad:54:fe:f7:c2:96:04:6b:
3b:00:fa:05:71:98:e8:84:e0:16:dc:12:ca:0e:bf:
2c:72:7b:ea:6a:51:db:ff:4b:0d:88:fa:52:1b:5d:
de:25:5f:6e:c4:d0:45:f9:75:67:87:7c:ae:dc:bf:
ec:bd:2f:24:ba:cf:2d:ab:df:7c:f9:bc:53:7c:5b:
1d:18:38:c7:82:50:cf:0b:82:a1:fa:8e:2c:75:94:
84:2a:43:f9:f7:52:3a:eb:f9:76:d1:0b:26:bc:06:
79:c5:be:84:76:c0:b4:b2:eb:7e:89:8d:5a:54:12:
ff:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:64:3B:9C:38:24:E7:86:0F:88:6D:3F:0C:D5:A1:9C:14:D2:D9:3F
X509v3 Authority Key Identifier:
keyid:24:6F:9B:E7:83:D7:3D:95:AB:8A:A5:46:19:E6:0F:90:11:C0:4D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JG-b54PXPZWriqVGGeYPkBHATWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/baa372-823b-4b07-9aab-cbbd01f2b91c/1/UWQ7nDgk54YPiG0_DNWhnBTS2T8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/baa372-823b-4b07-9aab-cbbd01f2b91c/1/JG-b54PXPZWriqVGGeYPkBHATWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:83c0::/29
Signature Algorithm: sha256WithRSAEncryption
73:67:ca:77:1e:f8:0d:d4:dd:44:75:53:13:b1:10:33:a7:c3:
63:51:43:c2:c6:94:ef:3d:36:f3:89:a6:1e:22:3c:92:5e:96:
85:8c:87:0f:3a:0a:a6:33:9c:4e:a5:9b:29:3b:25:f6:e0:e2:
d3:d2:4b:e7:39:7f:9f:2e:0a:55:b8:31:3d:d6:4e:be:6b:ed:
10:dc:e7:61:fb:dd:1d:cc:5c:8b:00:96:73:6a:aa:1d:a6:17:
bb:2c:99:77:ed:b9:60:64:73:01:1b:9e:d4:24:34:48:0b:c9:
8c:b7:82:9d:e8:87:fe:29:e4:8b:c1:f1:31:90:46:83:45:ed:
06:49:34:f2:a8:5d:c3:75:9f:15:b8:93:11:4c:99:05:21:b1:
18:9a:55:a8:6c:e6:ce:3b:4b:2c:80:69:65:60:c6:f9:c9:ff:
4a:93:fc:47:5c:84:ad:ca:38:ed:2a:15:87:34:d5:15:45:4f:
e0:c9:6e:0d:a4:22:5a:58:4c:2f:6f:48:62:bc:04:0e:ee:92:
19:2e:2f:59:c9:35:f6:d2:95:89:13:7a:14:77:9a:e9:91:8f:
ab:c8:49:9f:cd:ea:a4:b5:25:63:5f:fe:3f:50:45:b4:95:ef:
d5:a7:d4:13:8d:b7:a9:60:1b:05:6c:eb:14:40:1f:59:b3:67:
bb:56:1c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:24 2024 by rpki-client on console-fra.rpki-client.org