Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/U8patmuxDG94NKTCKEVc5sJK-H0.roa
File: U8patmuxDG94NKTCKEVc5sJK-H0.roa (raw, json)
Hash identifier: ByB2N9zXu93bNQvdeaefObYfgiNQtpmH9Q6szWemT1Y=
Subject key identifier: 53:CA:5A:B6:6B:B1:0C:6F:78:34:A4:C2:28:45:5C:E6:C2:4A:F8:7D
Certificate issuer: /CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Certificate serial: 0188DA491C2CAB798287ACF0CA5EC212DEE2
Authority key identifier: DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/U8patmuxDG94NKTCKEVc5sJK-H0.roa
Signing time: Tue 20 Jun 2023 19:30:04 +0000
ROA not before: Tue 20 Jun 2023 19:30:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:7c40:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:da:49:1c:2c:ab:79:82:87:ac:f0:ca:5e:c2:12:de:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Validity
Not Before: Jun 20 19:30:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53ca5ab66bb10c6f7834a4c228455ce6c24af87d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:03:d5:c2:a7:74:e5:46:c5:c2:38:b0:97:23:
19:e1:13:71:52:75:a8:e3:b8:2c:19:6e:17:00:5e:
f0:16:3d:1a:15:7e:ec:db:f1:76:f6:7a:8c:1e:77:
1f:b4:17:a5:f2:eb:8f:07:5c:42:ea:ee:b5:7e:1e:
c0:8f:02:bb:81:41:25:6d:2c:63:54:7e:b8:ae:cd:
71:f6:7d:af:e1:8b:d7:29:fc:4d:c5:7f:2b:bd:bd:
89:c4:9b:ea:97:89:51:02:8c:7e:e5:4a:f6:13:a4:
8a:b6:89:81:37:1f:04:95:aa:cb:46:b9:27:0e:a7:
25:af:e4:ab:f6:97:60:86:0d:c6:07:20:0b:29:84:
b2:53:f7:f9:0d:fa:ab:73:82:54:aa:a6:df:db:8a:
77:3e:dd:bd:67:ea:73:c2:8e:0d:38:e3:ec:15:c2:
14:18:35:82:84:e3:50:98:8e:7a:33:ff:a8:a2:08:
62:c3:6c:e5:f5:75:ab:1e:3d:ab:6c:08:5d:ff:32:
8c:7a:d7:d6:a5:fd:10:4c:6a:e0:04:97:42:d0:ba:
3c:af:62:09:a0:0c:22:ff:35:cf:3e:26:e1:3c:a7:
2e:f3:16:70:bd:0f:ce:df:5d:0e:e3:63:fb:ef:a9:
78:84:2f:68:8f:94:3e:8d:b0:77:38:92:63:43:8c:
a1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CA:5A:B6:6B:B1:0C:6F:78:34:A4:C2:28:45:5C:E6:C2:4A:F8:7D
X509v3 Authority Key Identifier:
keyid:DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/U8patmuxDG94NKTCKEVc5sJK-H0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/3QEJONnvchWPyYvUXecbCxqf9yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7c40:1::/48
Signature Algorithm: sha256WithRSAEncryption
76:d9:28:3e:19:34:42:c9:99:f0:7d:44:45:71:70:85:cf:ca:
81:20:97:23:03:9b:91:25:19:50:d9:be:97:a5:aa:d1:38:f0:
4d:25:cc:9a:ad:49:bd:5a:62:62:46:dc:2e:8c:4c:2b:ce:9f:
42:d9:2d:85:64:56:80:bb:44:ed:54:82:b8:29:b1:de:f6:80:
4e:28:42:91:7d:ad:d3:a2:e8:04:89:15:b5:22:09:3d:03:8b:
72:06:7d:60:87:97:17:cb:03:4a:e7:72:6f:0d:6b:b0:19:da:
66:26:e6:a0:be:d1:01:dd:29:95:cf:6e:ea:d7:d4:9c:3b:e1:
b7:f9:04:6c:8d:46:e7:c0:d2:03:63:25:d3:ae:8e:a7:4e:e4:
62:8c:e2:fd:42:8d:b1:75:e9:e6:f9:ca:55:e5:ad:13:59:c9:
54:d3:aa:79:9c:ad:a7:12:98:67:2a:39:5c:bb:c3:4f:bd:5f:
60:fd:71:4e:ad:87:1f:39:d6:fa:cb:14:27:5f:43:a1:69:cb:
1d:6b:a6:a6:f2:a8:1a:4f:47:73:e7:80:ed:3c:cb:53:6d:14:
13:d3:e3:c8:e4:21:88:05:1c:49:71:7a:dc:4b:81:21:4a:66:
58:97:3a:7a:56:56:2c:bb:da:15:ae:6c:44:03:c7:f7:7e:a8:
c1:19:14:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:23 2023 by rpki-client on console-fra.rpki-client.org