Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/ePJWegwhvs4pOGd16_TKRJZTc9Y.roa
File: ePJWegwhvs4pOGd16_TKRJZTc9Y.roa (raw, json)
Hash identifier: z2bcJrxQtoVJ3n+Lfp2bY2c/mDEIqY6GHFqz8pcXMyA=
Subject key identifier: 78:F2:56:7A:0C:21:BE:CE:29:38:67:75:EB:F4:CA:44:96:53:73:D6
Certificate issuer: /CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Certificate serial: 018BE72C9916A96AA08BE94C8A6020F64020
Authority key identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/ePJWegwhvs4pOGd16_TKRJZTc9Y.roa
Signing time: Sun 19 Nov 2023 10:42:21 +0000
ROA not before: Sun 19 Nov 2023 10:42:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 131631
IP address blocks: 2a13:d040:2::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e7:2c:99:16:a9:6a:a0:8b:e9:4c:8a:60:20:f6:40:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Validity
Not Before: Nov 19 10:42:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78f2567a0c21bece29386775ebf4ca44965373d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:21:53:4e:54:d2:59:d8:68:11:66:7a:bd:69:
32:93:d8:02:e3:e3:a9:25:e9:1a:a1:1b:cf:2c:cc:
62:24:9b:6e:4e:2a:b6:49:78:4d:d2:e5:2f:02:80:
04:ca:58:db:84:ee:54:5a:1b:d9:d2:e1:fa:6c:34:
7b:d4:a3:e1:18:74:9a:31:74:b0:fc:2c:67:d9:b8:
19:c1:d0:28:26:bf:e0:40:e1:90:75:6f:02:c4:15:
14:db:be:9c:e7:67:5c:82:bd:91:8f:08:64:a2:8c:
9e:61:f4:c4:40:60:03:74:86:62:77:53:9c:b0:d9:
38:47:f0:99:84:7f:6b:71:9a:3b:f5:c7:37:10:ba:
15:6e:5a:fc:b5:c0:79:05:ce:65:47:59:ad:e7:ae:
84:a7:36:fc:2a:e0:d1:b8:bd:56:94:d9:8a:75:ca:
e9:2a:0e:a6:cd:3e:39:e6:c8:85:92:ae:0c:81:b2:
ca:61:34:60:f6:74:15:ab:fb:d7:9a:5e:e8:ed:e5:
c3:5e:55:f7:87:ac:ac:20:ef:d9:9d:5e:7b:d1:09:
fb:eb:7e:26:ad:ad:fe:2d:a6:17:84:69:59:c7:b0:
fe:d6:8e:48:57:36:d5:94:68:73:7b:fb:93:57:eb:
85:77:e0:55:8f:4a:c9:7b:4d:91:53:74:46:61:ea:
2a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F2:56:7A:0C:21:BE:CE:29:38:67:75:EB:F4:CA:44:96:53:73:D6
X509v3 Authority Key Identifier:
keyid:6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/ePJWegwhvs4pOGd16_TKRJZTc9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d040:2::/48
Signature Algorithm: sha256WithRSAEncryption
71:83:ef:5c:95:1d:1e:f3:10:0b:88:e5:d1:6a:5b:d9:07:31:
fd:63:ae:88:3b:78:0d:6e:5a:5d:38:54:ee:0d:e0:69:8a:14:
93:43:4d:7a:09:a3:e6:e7:4f:65:ef:76:53:7f:14:88:cb:22:
e6:72:09:87:12:f9:b2:6c:0f:b5:64:d8:f7:14:f5:46:a0:ab:
d7:cb:a2:a1:d2:3e:92:71:0c:72:e2:56:c1:00:72:e7:86:db:
6b:3f:cd:87:61:7a:d9:6d:87:56:bf:94:48:1e:bf:5c:9f:29:
7c:09:37:c6:cd:67:74:ea:1b:4a:c6:64:24:72:19:2b:16:be:
57:36:cc:74:9e:30:65:de:0f:06:b0:6c:e2:2a:5b:9c:df:a4:
52:9b:d6:4b:56:4b:e5:3f:12:95:48:e6:58:eb:49:1c:03:bd:
cf:b5:de:b0:23:0f:0c:4e:c5:97:b7:a5:ca:9b:6c:de:d0:b0:
e7:8c:91:e8:ae:40:37:86:ca:98:e8:1f:90:ab:88:b6:3a:48:
5a:a7:a0:7a:31:eb:3d:67:12:10:f5:12:4a:80:4f:68:c8:b2:
52:55:f3:b0:0a:87:8e:58:3e:d1:4b:5f:40:cc:77:60:18:74:
80:b6:98:f6:d6:5e:15:92:f1:b7:fb:45:5f:fa:19:75:a5:70:
de:98:ed:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:26 2024 by rpki-client on console-ams.rpki-client.org