Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/2a5574-7b12-4da2-a064-5e1b0788923b/1/CL9Y1buGUqQtce-FNOgZOS99r1c.roa
File: CL9Y1buGUqQtce-FNOgZOS99r1c.roa (raw, json)
Hash identifier: D0ptGGoOH42W2I4Exmc1+ZrYivPwTTlLJ0vF4jOTtP8=
Subject key identifier: 08:BF:58:D5:BB:86:52:A4:2D:71:EF:85:34:E8:19:39:2F:7D:AF:57
Certificate issuer: /CN=3d6c2958145f45fad5daeeb38b75b52c09661046
Certificate serial: 018EED6BC2F566FC612CCEBCD3C76C570496
Authority key identifier: 3D:6C:29:58:14:5F:45:FA:D5:DA:EE:B3:8B:75:B5:2C:09:66:10:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWwpWBRfRfrV2u6zi3W1LAlmEEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/2a5574-7b12-4da2-a064-5e1b0788923b/1/CL9Y1buGUqQtce-FNOgZOS99r1c.roa
Signing time: Wed 17 Apr 2024 18:57:26 +0000
ROA not before: Wed 17 Apr 2024 18:57:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199326
IP address blocks: 2a13:7700::/29 maxlen: 29
2a13:7705::/48 maxlen: 48
2a13:7705:a::/48 maxlen: 48
2a13:7705:10::/48 maxlen: 48
2a13:7705:80::/48 maxlen: 48
2a13:7705:90::/48 maxlen: 48
2a13:7705:ff00::/40 maxlen: 40
2a13:7705:ff00::/48 maxlen: 48
2a13:7705:ff01::/48 maxlen: 48
2a13:7705:ff04::/48 maxlen: 48
2a13:7705:ff08::/48 maxlen: 48
2a13:7705:ff10::/48 maxlen: 48
2a13:7705:ff14::/48 maxlen: 48
2a13:7705:ff18::/48 maxlen: 48
2a13:7705:ff1c::/48 maxlen: 48
2a13:7705:ff20::/48 maxlen: 48
2a13:7705:ff24::/48 maxlen: 48
2a13:7705:ff28::/48 maxlen: 48
2a13:7705:ff2c::/48 maxlen: 48
2a13:7705:ff30::/48 maxlen: 48
2a13:7705:ff34::/48 maxlen: 48
2a13:7705:ff38::/48 maxlen: 48
2a13:7705:ff3c::/48 maxlen: 48
2a13:7705:ff40::/48 maxlen: 48
2a13:7705:ff44::/48 maxlen: 48
2a13:7705:ff4c::/48 maxlen: 48
2a13:7705:ff50::/48 maxlen: 48
2a13:7705:ff54::/48 maxlen: 48
2a13:7705:ff58::/48 maxlen: 48
2a13:7705:ff5c::/48 maxlen: 48
2a13:7705:ff60::/48 maxlen: 48
2a13:7705:ff64::/48 maxlen: 48
2a13:7705:ff68::/48 maxlen: 48
2a13:7705:ff6c::/48 maxlen: 48
2a13:7705:ff70::/48 maxlen: 48
2a13:7705:ff74::/48 maxlen: 48
2a13:7705:ff78::/48 maxlen: 48
2a13:7705:ff7c::/48 maxlen: 48
2a13:7705:ff80::/48 maxlen: 48
2a13:7705:ff84::/48 maxlen: 48
2a13:7705:ff88::/48 maxlen: 48
2a13:7705:ff8c::/48 maxlen: 48
2a13:7705:ff90::/48 maxlen: 48
2a13:7705:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 19 Apr 2024 04:34:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ed:6b:c2:f5:66:fc:61:2c:ce:bc:d3:c7:6c:57:04:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d6c2958145f45fad5daeeb38b75b52c09661046
Validity
Not Before: Apr 17 18:57:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08bf58d5bb8652a42d71ef8534e819392f7daf57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bf:ef:f9:f4:aa:a1:12:24:84:37:0b:e1:6a:
d6:2f:9d:44:ab:42:27:21:c4:10:ab:d9:96:2e:ca:
ef:6b:74:98:1d:4d:dc:d4:28:4d:1a:8a:03:48:3c:
ca:8d:92:cd:71:7d:e3:6a:68:ff:6b:17:7d:b1:f4:
34:78:31:b5:6f:33:60:16:ca:c0:5f:96:c7:3e:f9:
f7:36:b7:b0:e5:57:49:d3:64:d8:ef:4f:2b:5b:2b:
ee:d0:51:7a:dc:a2:fa:82:30:94:99:40:d6:e9:08:
22:4e:00:b1:48:72:91:59:a4:75:6c:33:fb:29:87:
87:d9:11:64:51:1d:6f:72:07:17:23:69:fd:db:4e:
70:c5:62:03:08:d9:e1:30:8e:19:2a:af:7f:de:b1:
62:a8:7a:82:87:d7:25:b7:61:ba:63:9e:dc:80:fd:
d4:96:42:61:cd:ca:f7:4c:47:32:25:e3:f5:82:ce:
c0:58:ef:7a:82:59:dd:33:fe:0a:72:40:a2:0d:9d:
b2:b4:c4:95:4e:d4:da:24:a7:6d:00:4f:4d:82:9c:
76:59:b4:93:3f:e2:cf:e4:37:20:42:2e:55:e7:67:
fd:f6:2b:a2:ce:59:f6:e0:8e:98:2d:df:b3:84:9c:
d1:c9:fe:24:19:0d:bb:66:43:a7:f4:30:97:4a:47:
20:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BF:58:D5:BB:86:52:A4:2D:71:EF:85:34:E8:19:39:2F:7D:AF:57
X509v3 Authority Key Identifier:
keyid:3D:6C:29:58:14:5F:45:FA:D5:DA:EE:B3:8B:75:B5:2C:09:66:10:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWwpWBRfRfrV2u6zi3W1LAlmEEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2a5574-7b12-4da2-a064-5e1b0788923b/1/CL9Y1buGUqQtce-FNOgZOS99r1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2a5574-7b12-4da2-a064-5e1b0788923b/1/PWwpWBRfRfrV2u6zi3W1LAlmEEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7700::/29
Signature Algorithm: sha256WithRSAEncryption
38:e9:00:e0:40:e2:73:99:7e:8c:5c:c3:84:0a:f1:80:ea:62:
c7:7f:eb:4b:99:80:4e:0a:90:8f:15:63:49:9c:9b:7e:4a:23:
71:4a:12:a1:4b:44:2d:da:ef:77:85:fb:76:d2:b6:df:2d:37:
23:5d:6a:d8:00:b6:51:91:52:a6:6a:80:f1:6a:34:e7:15:ee:
68:88:25:06:69:97:fb:da:c6:43:e9:b0:2e:c7:d2:77:b2:9d:
32:92:bc:76:84:84:74:b8:80:40:46:19:3f:8a:36:e3:78:1a:
3b:24:cf:b7:03:67:07:44:14:04:d3:1f:6d:0b:9d:b4:d3:97:
dd:eb:6d:1d:df:75:c5:cf:23:92:87:04:fa:bc:db:87:dd:b7:
a9:60:03:e8:15:f0:37:d2:3a:ac:6b:ab:7c:08:a2:c5:99:2a:
8e:d7:c9:fc:53:de:a0:5c:5e:53:a5:a6:bf:cc:11:ad:ae:5b:
fb:28:2a:2e:3f:b7:13:11:30:31:2f:11:6a:c5:cf:da:19:b8:
18:91:25:bd:8a:a4:3f:83:71:1e:53:0a:e5:77:52:6d:1f:4b:
36:6a:2c:f4:23:66:74:eb:7c:a0:66:07:de:8f:73:5d:83:f6:
fe:47:8c:eb:90:e0:db:32:55:33:24:b7:9a:51:34:78:02:6c:
1b:9b:29:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:35 2024 by rpki-client on console-fra.rpki-client.org