Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/2xTqjBsFzv8t2gwx70994bwv6uY.roa
File: 2xTqjBsFzv8t2gwx70994bwv6uY.roa (raw, json)
Hash identifier: 0YcNGka2S3hp6Vv9OGW99flPvC/pOPebfyhKfvReWzc=
Subject key identifier: DB:14:EA:8C:1B:05:CE:FF:2D:DA:0C:31:EF:4F:7D:E1:BC:2F:EA:E6
Certificate issuer: /CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Certificate serial: 018A75705BB026ECCDDB31DCB04BA0FC37A0
Authority key identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/2xTqjBsFzv8t2gwx70994bwv6uY.roa
Signing time: Fri 08 Sep 2023 15:36:52 +0000
ROA not before: Fri 08 Sep 2023 15:36:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:d040:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:75:70:5b:b0:26:ec:cd:db:31:dc:b0:4b:a0:fc:37:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Validity
Not Before: Sep 8 15:36:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db14ea8c1b05ceff2dda0c31ef4f7de1bc2feae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:54:e3:00:ee:3a:2b:5a:9d:f9:66:0b:c9:b2:
1e:cc:0b:f4:d4:3c:3b:35:8a:7f:c6:82:9f:30:eb:
b2:51:8b:13:1d:47:d7:37:e8:2b:4e:7d:b4:19:18:
dd:5b:b1:37:c3:59:4a:58:66:ff:96:61:a3:96:76:
24:8f:22:1c:1f:16:ce:9a:9c:41:e2:df:ff:b7:39:
1f:20:6b:79:d3:08:5a:f1:d8:ef:26:3b:0f:53:a0:
eb:70:98:b9:2f:b2:2e:61:b2:15:8c:d2:fd:cb:7b:
20:e3:80:f7:0d:b3:f8:2e:4a:92:f7:86:19:e2:12:
7c:63:2c:07:ee:17:6a:32:a8:d7:b4:84:7d:8c:df:
cc:a9:38:ac:b2:e0:af:5d:17:f9:0f:b3:72:1c:6f:
c1:7e:15:e0:9d:35:4d:99:bc:53:0b:48:ac:1f:8f:
9b:f4:11:2f:fb:74:f4:60:30:35:41:60:2a:b0:98:
36:e6:16:37:ff:c4:69:50:ae:23:e2:30:92:45:8a:
1c:52:53:b8:49:ad:56:d7:f8:94:20:a9:1a:cb:aa:
07:09:da:8d:2c:c0:17:dd:c8:43:11:23:7a:0e:e0:
92:5d:15:9f:87:88:7e:f6:9b:0f:2f:0b:25:d3:f0:
b9:00:b4:d7:4e:af:02:1d:76:1a:9e:38:c5:0c:ce:
0b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:14:EA:8C:1B:05:CE:FF:2D:DA:0C:31:EF:4F:7D:E1:BC:2F:EA:E6
X509v3 Authority Key Identifier:
keyid:6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/2xTqjBsFzv8t2gwx70994bwv6uY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d040:1::/48
Signature Algorithm: sha256WithRSAEncryption
18:d2:9b:26:02:37:5f:a3:37:59:f8:2c:ec:f0:e2:83:47:f5:
dc:b5:64:54:f3:5d:ce:e4:8b:84:c8:57:cd:62:44:d3:27:f5:
6b:68:27:14:33:12:7e:aa:87:48:7d:51:7e:ae:1b:81:12:56:
0b:bd:05:b3:64:82:af:de:bf:27:4c:c0:46:38:60:b6:01:36:
6d:7d:09:2d:a3:ec:68:09:f9:28:d8:6c:50:28:ff:42:23:5b:
1c:69:a5:06:9a:33:42:3a:9b:ed:43:cb:ba:94:26:17:20:9d:
70:5f:c3:52:e1:14:4b:a6:f2:10:6d:ed:32:4b:75:6f:2f:c8:
20:f0:f8:e1:71:ae:1b:92:bc:fa:ba:df:f3:ae:80:6d:69:92:
c1:10:6b:fd:02:89:bf:c2:7c:1f:22:8d:6f:7b:ed:e4:0a:91:
6a:b7:fb:ad:5a:e8:7f:70:cc:e9:3b:c4:65:17:ab:e4:2b:08:
8a:f6:0b:10:56:13:ea:47:05:8c:92:b9:08:94:3e:95:f6:e5:
1b:d3:4d:84:3d:16:f5:1b:e5:a5:34:12:61:fc:df:98:17:49:
f2:dc:db:a0:2f:16:54:3c:7e:f4:11:42:d9:ad:37:1c:a5:10:
87:29:f9:da:65:4e:69:12:7d:24:22:5d:60:5a:29:14:e0:30:
2a:20:8b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 19 10:25:03 2023 by rpki-client on console-fra.rpki-client.org