Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/LswXb2fHI7u6VFDtzYG8dsuUnGA.roa
File: LswXb2fHI7u6VFDtzYG8dsuUnGA.roa (raw, json)
Hash identifier: 233vLu1B016Y9DHBD+CdLloQy9/uNI3UBYTpl2BtE+E=
Subject key identifier: 2E:CC:17:6F:67:C7:23:BB:BA:54:50:ED:CD:81:BC:76:CB:94:9C:60
Certificate issuer: /CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Certificate serial: 01856F26BEF2136A3E3C23AE4F0D99A7BD77
Authority key identifier: A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/LswXb2fHI7u6VFDtzYG8dsuUnGA.roa
Signing time: Sun 01 Jan 2023 21:04:48 +0000
ROA not before: Sun 01 Jan 2023 21:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60271
IP address blocks: 2a13:75c1:1000::/36 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:be:f2:13:6a:3e:3c:23:ae:4f:0d:99:a7:bd:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Validity
Not Before: Jan 1 21:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ecc176f67c723bbba5450edcd81bc76cb949c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:35:38:28:ef:f6:7a:d4:74:0b:0d:a2:92:c4:
26:3c:a9:0b:41:b3:78:5c:68:7a:da:b7:b0:c7:ba:
1a:db:be:7a:c8:e4:08:fa:14:a5:01:c4:0e:9e:0c:
d4:0d:35:62:11:f0:15:e8:8c:79:17:07:f6:f8:a7:
fc:fc:04:a4:a1:10:07:ad:e5:dd:6b:42:d1:ff:e4:
fa:d9:83:df:77:19:bd:6f:eb:14:c0:d6:f9:01:65:
d9:57:a6:42:b0:d6:67:df:8a:95:4d:49:5a:94:c2:
9e:32:d1:4d:e4:75:53:f2:83:74:b6:d4:28:3e:5b:
9a:c7:98:d2:79:83:d3:cf:c3:70:77:5f:a3:0a:d0:
94:ad:a7:2d:dc:2b:eb:d7:ee:5e:e5:89:63:4f:50:
5b:7d:d4:73:07:a1:ba:63:6a:84:7c:f9:ed:0a:00:
a4:97:42:b5:14:7f:ea:8f:38:d9:23:6d:9e:93:67:
43:7c:b8:99:06:b8:63:4e:04:13:4c:f0:ad:6e:e4:
c7:18:a0:ca:c0:fd:6f:78:ee:4a:dd:f4:95:05:69:
fd:55:7b:71:34:e3:e7:3e:1d:25:53:2a:00:00:d6:
23:a5:86:a9:6e:ec:ad:56:34:f7:5c:a5:b4:28:73:
aa:da:4a:8f:2c:ad:37:5f:93:24:28:7f:a1:96:6b:
92:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:CC:17:6F:67:C7:23:BB:BA:54:50:ED:CD:81:BC:76:CB:94:9C:60
X509v3 Authority Key Identifier:
keyid:A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/LswXb2fHI7u6VFDtzYG8dsuUnGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:75c1:1000::/36
Signature Algorithm: sha256WithRSAEncryption
89:fc:1c:86:2f:0e:f8:3b:81:96:7e:00:d5:36:5e:4a:0b:cc:
30:42:0b:4b:07:21:97:dc:0f:4a:ef:41:5b:88:97:cf:e7:34:
d9:08:a6:0b:00:40:47:52:5e:f9:67:77:66:f4:2d:01:d9:7d:
ed:c8:b5:75:d4:be:b0:30:19:05:54:6a:c6:63:2b:03:3b:f2:
d4:c9:18:27:f2:a7:74:0c:a0:ed:3a:33:05:4d:33:13:01:06:
15:84:4e:eb:67:8b:6c:98:93:bf:9f:3a:00:c1:b6:3e:a6:3d:
5d:17:bd:a4:5a:f7:5c:fb:cb:76:2f:f0:b9:3c:a0:e0:b5:9a:
83:71:8e:bc:5e:3b:dd:ff:21:e1:d5:37:55:b5:94:b6:93:88:
d6:d8:ba:c9:82:68:70:94:03:6e:a8:6a:37:c8:16:ad:88:c7:
61:6b:76:ef:88:35:bf:08:eb:2f:41:47:2a:b0:de:8f:eb:4b:
15:0b:c3:2c:78:27:36:a6:d6:45:34:15:62:34:c2:2b:10:39:
e4:fe:1e:e6:57:1e:48:29:f0:0d:d9:44:c1:9f:35:4b:c7:93:
29:15:7b:23:96:95:fe:f4:32:b5:de:85:ff:ac:07:81:e0:b8:
52:1d:38:83:34:8c:1c:8e:29:df:22:f0:6d:32:b2:ed:39:13:
85:e6:c6:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:25 2024 by rpki-client on console-fra.rpki-client.org