Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/tpF9o5rzs97TCfwZ33_zVBz8ydk.roa
File: tpF9o5rzs97TCfwZ33_zVBz8ydk.roa (raw, json)
Hash identifier: dZrtdlffG8v5qmlm31rh7gUP+rvqMJtgYEPrLrNGUrc=
Subject key identifier: B6:91:7D:A3:9A:F3:B3:DE:D3:09:FC:19:DF:7F:F3:54:1C:FC:C9:D9
Certificate issuer: /CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Certificate serial: 018AAC94196970B728D5A9E54CF12A2AFBDF
Authority key identifier: D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/tpF9o5rzs97TCfwZ33_zVBz8ydk.roa
Signing time: Tue 19 Sep 2023 08:35:01 +0000
ROA not before: Tue 19 Sep 2023 08:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216325
IP address blocks: 2a13:d940::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:94:19:69:70:b7:28:d5:a9:e5:4c:f1:2a:2a:fb:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Validity
Not Before: Sep 19 08:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6917da39af3b3ded309fc19df7ff3541cfcc9d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7b:ab:8f:df:f8:24:18:14:1a:e8:ba:3e:03:
7a:7b:88:2d:5b:72:6f:20:de:ef:e0:27:52:36:71:
1d:f9:17:1c:ba:ad:ff:ec:cb:b1:fa:eb:50:7b:df:
ce:9c:5e:a3:53:1f:ca:f3:b6:ac:27:98:ba:03:09:
0f:43:30:e2:09:4e:5c:8b:9a:6d:47:be:45:eb:79:
86:34:74:f8:e3:f3:09:ea:f2:a0:88:a0:bc:3a:98:
2f:3d:3d:62:af:0b:44:95:45:8e:ac:75:22:6a:9d:
6d:64:be:d7:43:72:e8:32:f7:e8:7b:23:f4:c8:00:
2a:6e:f9:f1:9b:8f:ce:72:e0:18:5c:cb:3b:84:f9:
2a:73:7c:8e:1f:34:46:3e:94:a3:3d:bb:a1:32:28:
2c:de:20:78:52:52:cf:8d:9e:96:50:51:9a:3c:3d:
0e:7a:d1:d5:1e:49:34:05:c8:34:8c:d6:5a:0d:c9:
da:9c:00:3e:bd:7a:c6:78:72:d5:d6:ca:23:cb:0c:
ab:38:47:cd:48:47:ae:82:6d:ae:86:2a:88:7b:93:
50:bd:a3:98:6a:40:0b:03:b7:a6:20:92:90:78:bd:
47:d3:c1:86:28:12:22:6e:aa:d9:0e:55:10:a4:75:
f3:4f:cd:9f:f3:e6:e9:90:e5:54:d6:3d:66:b7:b5:
80:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:91:7D:A3:9A:F3:B3:DE:D3:09:FC:19:DF:7F:F3:54:1C:FC:C9:D9
X509v3 Authority Key Identifier:
keyid:D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/tpF9o5rzs97TCfwZ33_zVBz8ydk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d940::/29
Signature Algorithm: sha256WithRSAEncryption
80:d7:8f:d3:f6:db:77:be:bf:c4:28:3a:2c:d3:0d:94:a8:0f:
c7:a9:12:71:92:13:b0:91:dc:d1:d3:23:cc:98:dc:e7:a4:a3:
08:d4:4c:e9:70:c2:a7:11:4d:0f:d3:6d:e6:71:6f:63:a0:a1:
38:8e:2e:32:95:9e:d5:c5:50:51:b0:fd:4e:a4:0b:26:cf:47:
d2:9c:a4:fa:0a:b1:50:11:f0:0b:34:2d:96:2a:12:51:ba:e8:
9a:f5:1a:f3:6e:34:72:0b:e7:aa:06:5a:5d:8d:66:82:32:01:
a8:20:02:19:da:0e:b0:ea:fd:45:cd:e4:ec:02:ca:2a:ac:6c:
e0:d6:1a:88:b7:ce:9f:44:24:33:2b:9c:c8:2f:82:04:f2:ca:
ee:63:4d:7e:fa:1d:9d:e2:4f:29:c7:65:25:81:17:da:85:57:
39:13:9b:4f:f0:ee:f4:7c:4a:58:62:98:40:b5:d5:ee:8c:94:
ff:0b:9e:8b:3c:5d:13:27:ba:3e:a7:a5:19:58:f2:3e:16:ed:
1f:f9:0e:b1:96:40:3b:9e:68:36:0a:9b:1e:0f:e8:35:da:ac:
73:75:24:5c:8b:46:0b:19:0b:60:0f:ac:59:d4:df:6a:e1:e6:
d0:b7:fb:37:da:8e:9a:52:db:32:e8:27:60:95:c2:17:00:e9:
ec:b3:82:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:30 2024 by rpki-client on console-ams.rpki-client.org