Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/1-GJV1mkrkn_E_voz3fLEhe4gJOY.roa
File: 1-GJV1mkrkn_E_voz3fLEhe4gJOY.roa (raw, json)
Hash identifier: rA21pZT1tFMH11O/4dTpsx67XVw2vHTfQhKQ34zO384=
Subject key identifier: F8:62:55:D6:69:2B:92:7F:C4:FE:FA:33:DD:F2:C4:85:EE:20:24:E6
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 018571B0E5BE71F578D5A08A89E3B75E697A
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/1-GJV1mkrkn_E_voz3fLEhe4gJOY.roa
Signing time: Mon 02 Jan 2023 08:54:56 +0000
ROA not before: Mon 02 Jan 2023 08:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209369
IP address blocks: 2a13:5280::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 28 Apr 2023 11:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:e5:be:71:f5:78:d5:a0:8a:89:e3:b7:5e:69:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Jan 2 08:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f86255d6692b927fc4fefa33ddf2c485ee2024e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5a:25:cd:31:d8:7f:1b:15:d3:4a:f3:9c:3d:
99:22:5c:e7:8c:8c:36:45:7d:97:d7:2b:a7:0a:72:
3a:f1:1b:9c:48:0d:15:e9:81:c9:ed:b5:79:26:90:
56:5c:c3:e2:b4:90:74:cc:5b:cc:f6:17:7c:c1:4c:
52:1d:a2:e6:6b:d7:43:73:79:47:d9:6e:a1:94:ba:
c0:de:f9:82:da:c0:97:f1:bb:5c:0c:7b:2d:ea:ce:
03:40:4c:69:51:c9:a6:29:36:ee:68:88:3e:43:c6:
08:51:a6:f3:64:d5:ca:b1:75:39:de:8e:df:d3:d3:
62:01:bb:bf:20:56:c4:ea:5c:e2:06:fd:b6:c8:60:
67:95:62:2e:a6:c9:f5:e5:41:6c:ba:a3:b4:02:5a:
c1:7e:c7:83:f8:30:df:1d:54:d8:c3:86:aa:16:e8:
7b:23:4c:1b:bf:55:ef:98:6e:16:0d:ed:df:b1:dd:
16:59:dc:26:39:3c:15:8b:63:6a:18:9c:11:e1:e6:
aa:b8:97:ec:0c:01:7a:83:0c:f0:9d:2b:30:59:2b:
99:03:b7:aa:0c:41:2b:63:6d:8e:49:b7:c2:34:39:
7c:79:f4:a5:1f:74:35:0e:dd:82:43:b7:73:c8:33:
6c:3b:0b:99:09:4a:1f:39:af:5f:60:51:99:a1:65:
9c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:62:55:D6:69:2B:92:7F:C4:FE:FA:33:DD:F2:C4:85:EE:20:24:E6
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/1-GJV1mkrkn_E_voz3fLEhe4gJOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5280::/29
Signature Algorithm: sha256WithRSAEncryption
6e:2c:04:32:de:e0:57:1c:a8:ef:8c:46:1d:47:4b:1d:35:55:
4e:ac:d1:c2:82:79:9e:2f:a5:c5:88:a3:0c:3b:23:93:65:b3:
2d:04:36:f1:a2:73:07:0b:cc:40:71:77:99:7f:29:d4:b6:1f:
d1:c0:0d:54:3b:61:0d:08:b8:5b:ee:99:7b:28:7c:4b:11:cd:
4e:ea:07:7f:61:23:a5:18:f2:b2:af:89:25:10:20:a1:06:5d:
75:15:67:8e:32:c8:b2:f2:5d:53:99:83:1b:50:fa:0a:15:e0:
cb:07:a0:5b:45:49:4e:2e:f5:76:48:c5:34:af:e2:f5:d3:77:
af:ec:b5:c2:c2:9c:b1:b3:d4:bc:54:cf:93:ed:07:a5:51:ed:
e5:e1:fd:5d:da:80:b2:45:01:c7:55:92:41:52:9a:48:24:27:
e4:5f:16:b8:9d:71:8b:b0:97:3a:96:aa:99:35:70:2f:3d:41:
aa:de:f5:60:34:44:b7:0e:5d:47:84:14:2e:3c:41:6e:c7:f6:
ad:bf:59:54:ed:6a:a9:f6:6e:b3:1b:a9:d1:04:f6:c9:38:ee:
22:fd:d2:8f:85:9d:6c:23:79:f5:a7:0f:3b:b9:77:90:e5:74:
e1:b6:e8:6f:f1:7a:47:22:0d:1d:e8:bf:64:fa:fa:5b:d8:ff:
5e:c4:7c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:11 2024 by rpki-client on console-fra.rpki-client.org