Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/8GhTZafNKDEw-ePh_u8NtqweHTg.roa
File: 8GhTZafNKDEw-ePh_u8NtqweHTg.roa (raw, json)
Hash identifier: pPLGvJjAyLX/phxAUTo7+ER63l/gJlO6nyft1KkXlU8=
Subject key identifier: F0:68:53:65:A7:CD:28:31:30:F9:E3:E1:FE:EF:0D:B6:AC:1E:1D:38
Certificate issuer: /CN=722325ecf368c9148a7c41281d607fa6d804a0c9
Certificate serial: 0186BD7759E75AFEA83172F94FC47614E8E9
Authority key identifier: 72:23:25:EC:F3:68:C9:14:8A:7C:41:28:1D:60:7F:A6:D8:04:A0:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciMl7PNoyRSKfEEoHWB_ptgEoMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/8GhTZafNKDEw-ePh_u8NtqweHTg.roa
Signing time: Tue 07 Mar 2023 19:06:00 +0000
ROA not before: Tue 07 Mar 2023 19:06:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211335
IP address blocks: 2a13:e300::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bd:77:59:e7:5a:fe:a8:31:72:f9:4f:c4:76:14:e8:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722325ecf368c9148a7c41281d607fa6d804a0c9
Validity
Not Before: Mar 7 19:06:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0685365a7cd283130f9e3e1feef0db6ac1e1d38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a4:46:3b:f3:df:70:b8:1b:ba:bd:b3:3e:d9:
9a:d4:13:0d:81:cd:d5:a0:a0:cb:c5:df:fb:5e:91:
a3:23:a9:13:e1:1f:f1:45:8e:67:d8:3b:33:f4:1a:
61:7c:7c:03:10:65:1c:68:2a:48:c7:12:dc:5b:41:
3b:15:bd:65:69:c3:f8:5c:f8:03:de:e4:db:f9:55:
d7:7f:3b:e6:0d:84:24:b4:30:39:ce:df:8c:f0:84:
79:87:85:21:be:5b:86:67:4e:20:4f:65:70:67:14:
40:4a:a4:cc:f1:0b:19:85:49:65:b1:77:6a:2f:45:
aa:be:a9:de:7e:81:e6:36:9f:8e:85:58:00:e0:89:
8e:f8:ba:be:14:26:95:66:2e:89:e9:ea:f7:3a:48:
e6:6c:ee:8d:fd:a8:fb:65:be:34:73:b1:f8:57:60:
60:ef:3f:80:d8:17:3b:94:53:e3:4f:a3:a3:d4:e3:
44:82:e8:ca:70:8c:3b:6b:6b:23:1c:06:a9:3f:14:
e2:d3:7a:36:60:17:27:17:62:1e:a1:b8:17:a0:cb:
2a:41:49:e9:3a:a8:f8:47:f0:90:52:b9:63:ae:56:
d3:75:64:9d:44:7c:5d:aa:11:49:ba:16:c8:af:8a:
d6:31:4c:92:65:43:46:65:37:18:41:2a:4a:27:d2:
49:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:68:53:65:A7:CD:28:31:30:F9:E3:E1:FE:EF:0D:B6:AC:1E:1D:38
X509v3 Authority Key Identifier:
keyid:72:23:25:EC:F3:68:C9:14:8A:7C:41:28:1D:60:7F:A6:D8:04:A0:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciMl7PNoyRSKfEEoHWB_ptgEoMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/8GhTZafNKDEw-ePh_u8NtqweHTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/ciMl7PNoyRSKfEEoHWB_ptgEoMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:e300::/29
Signature Algorithm: sha256WithRSAEncryption
43:9a:4a:09:9a:29:46:0d:45:1b:cb:66:33:22:f0:a9:90:66:
57:7f:21:54:01:91:4a:ca:3f:f5:bf:ea:0b:dd:13:1e:b5:72:
27:63:cc:f3:6f:0b:11:73:eb:ac:75:0c:ee:56:b3:5f:77:e4:
ed:00:03:81:b2:5e:b4:f6:fe:1e:3e:f1:d0:cf:8e:bc:ff:21:
8f:37:14:bb:12:8c:54:11:48:01:f7:82:ce:e9:b7:fb:60:f5:
a0:bc:4e:4a:47:9b:f7:5f:84:06:f0:f4:97:8f:90:37:dd:10:
79:b4:d1:78:16:5f:9c:bd:ea:f7:3d:61:a5:94:67:a9:7c:30:
d2:51:55:14:9e:fc:29:02:28:a8:94:79:96:64:f0:c1:81:91:
27:94:c1:ba:85:d1:a3:a7:21:1a:d5:51:03:5b:96:ea:e0:6a:
75:7a:b1:7f:cf:cb:4a:00:ac:e2:5a:46:e1:8e:e2:9a:96:a2:
01:ae:28:cd:e2:94:37:7a:48:18:ea:99:e5:9e:31:76:1b:83:
30:25:39:18:a4:ab:5f:62:9a:25:0f:64:1e:a4:28:0a:ff:07:
b7:12:e5:ae:0d:00:27:74:ea:5b:6f:de:37:7a:67:e2:a3:95:
a4:8d:9f:a9:b3:9b:c8:07:11:18:d4:71:ce:74:85:2b:ae:db:
63:bb:21:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:42 2024 by rpki-client on console-fra.rpki-client.org