Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/2a5574-7b12-4da2-a064-5e1b0788923b/1/p-WIEjkvT5LYnFTkDmrc8C66iAE.roa
File: p-WIEjkvT5LYnFTkDmrc8C66iAE.roa (raw, json)
Hash identifier: +3pt51ALHATu6/FCqMKrsjVrDXm47mY21NDIWuUiFEc=
Subject key identifier: A7:E5:88:12:39:2F:4F:92:D8:9C:54:E4:0E:6A:DC:F0:2E:BA:88:01
Certificate issuer: /CN=3d6c2958145f45fad5daeeb38b75b52c09661046
Certificate serial: 018DF555F79C879C8943AF7224D70C16C3C3
Authority key identifier: 3D:6C:29:58:14:5F:45:FA:D5:DA:EE:B3:8B:75:B5:2C:09:66:10:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWwpWBRfRfrV2u6zi3W1LAlmEEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/2a5574-7b12-4da2-a064-5e1b0788923b/1/p-WIEjkvT5LYnFTkDmrc8C66iAE.roa
Signing time: Thu 29 Feb 2024 14:47:48 +0000
ROA not before: Thu 29 Feb 2024 14:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199326
IP address blocks: 2a13:7705:ff00::/40 maxlen: 40
2a13:7705:ff00::/48 maxlen: 48
2a13:7705:ff01::/48 maxlen: 48
2a13:7705:ff04::/48 maxlen: 48
2a13:7705:ff08::/48 maxlen: 48
2a13:7705:ff10::/48 maxlen: 48
2a13:7705:ff14::/48 maxlen: 48
2a13:7705:ff18::/48 maxlen: 48
2a13:7705:ff1c::/48 maxlen: 48
2a13:7705:ff20::/48 maxlen: 48
2a13:7705:ff24::/48 maxlen: 48
2a13:7705:ff28::/48 maxlen: 48
2a13:7705:ff2c::/48 maxlen: 48
2a13:7705:ff30::/48 maxlen: 48
2a13:7705:ff34::/48 maxlen: 48
2a13:7705:ff38::/48 maxlen: 48
2a13:7705:ff3c::/48 maxlen: 48
2a13:7705:ff40::/48 maxlen: 48
2a13:7705:ff44::/48 maxlen: 48
2a13:7705:ff4c::/48 maxlen: 48
2a13:7705:ff50::/48 maxlen: 48
2a13:7705:ff54::/48 maxlen: 48
2a13:7705:ff58::/48 maxlen: 48
2a13:7705:ff5c::/48 maxlen: 48
2a13:7705:ff60::/48 maxlen: 48
2a13:7705:ff64::/48 maxlen: 48
2a13:7705:ff68::/48 maxlen: 48
2a13:7705:ff6c::/48 maxlen: 48
2a13:7705:ff70::/48 maxlen: 48
2a13:7705:ff74::/48 maxlen: 48
2a13:7705:ff78::/48 maxlen: 48
2a13:7705:ff7c::/48 maxlen: 48
2a13:7705:ff80::/48 maxlen: 48
2a13:7705:ff84::/48 maxlen: 48
2a13:7705:ff88::/48 maxlen: 48
2a13:7705:ff8c::/48 maxlen: 48
2a13:7705:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 29 Feb 2024 19:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f5:55:f7:9c:87:9c:89:43:af:72:24:d7:0c:16:c3:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d6c2958145f45fad5daeeb38b75b52c09661046
Validity
Not Before: Feb 29 14:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7e58812392f4f92d89c54e40e6adcf02eba8801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:4a:d7:63:b7:43:96:e8:7c:ad:7f:32:32:43:
ed:14:e1:fb:85:5d:e4:88:03:03:77:aa:f2:b2:ac:
26:eb:1e:f4:d1:1c:3f:6c:30:62:b4:67:cf:73:54:
82:c0:32:1f:78:db:b6:b5:81:a0:35:24:01:48:be:
98:5e:a9:17:c1:e5:10:29:1e:02:f9:35:d3:a3:dd:
2e:71:70:a1:fb:04:9f:91:48:8b:ec:c5:cd:56:ee:
f3:55:66:2c:75:e0:d6:84:e2:a5:67:6c:13:21:98:
9a:fe:82:4f:9c:72:10:75:00:07:13:32:5a:28:01:
0b:1e:54:08:38:11:18:53:f0:f3:7a:f3:b0:ac:55:
74:cd:d8:7e:38:d2:51:cc:4a:6f:ec:43:03:69:74:
23:b5:db:1f:d6:90:b3:10:10:dd:19:5e:77:9b:33:
47:6c:5a:c8:be:92:66:d3:66:a5:10:05:98:bb:70:
ef:78:46:72:66:56:fc:d0:b4:0d:03:90:4c:bc:f7:
5f:f4:f8:d9:cb:df:74:0e:d2:2a:d7:32:b9:e6:b2:
44:79:20:65:8b:80:39:48:fd:f3:9b:d0:1c:5d:22:
8b:da:ad:16:f1:63:a3:18:2a:2d:ae:7e:d3:32:13:
17:e1:df:07:02:79:c4:0c:95:97:56:62:f3:44:7b:
59:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E5:88:12:39:2F:4F:92:D8:9C:54:E4:0E:6A:DC:F0:2E:BA:88:01
X509v3 Authority Key Identifier:
keyid:3D:6C:29:58:14:5F:45:FA:D5:DA:EE:B3:8B:75:B5:2C:09:66:10:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWwpWBRfRfrV2u6zi3W1LAlmEEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2a5574-7b12-4da2-a064-5e1b0788923b/1/p-WIEjkvT5LYnFTkDmrc8C66iAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2a5574-7b12-4da2-a064-5e1b0788923b/1/PWwpWBRfRfrV2u6zi3W1LAlmEEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7705:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
7a:2b:bc:85:fd:0a:48:08:05:8f:f6:01:cc:75:6e:3c:a3:41:
06:0f:92:1e:03:d0:36:d7:d7:e7:4e:4c:ce:2e:f3:85:89:76:
4d:06:92:0b:05:84:a1:f0:e1:4b:df:b5:c0:f4:80:37:e5:cf:
8a:0f:78:d4:f4:d4:59:f8:45:51:af:2f:c2:c8:d7:e6:2a:11:
b6:04:d4:1c:f8:41:fc:db:9f:c2:df:81:18:06:43:ba:6e:9e:
c5:8e:eb:11:fa:a6:71:be:5e:5f:4b:49:3b:25:6c:e1:a0:85:
95:ee:55:ff:68:a7:e1:59:43:d0:23:38:fb:d7:c4:76:f6:9f:
63:16:55:83:7a:3a:ff:16:77:2e:bb:82:76:88:e5:64:88:5a:
bc:02:b4:4a:54:d1:44:0c:df:ca:41:e5:3e:7f:89:14:7a:86:
0b:0c:ef:a2:1d:8b:9f:a7:53:9c:0c:f7:0b:c0:b2:5f:b0:70:
0d:0a:98:10:77:b3:4b:d9:bc:6a:dd:d9:1e:66:f6:fd:85:3d:
f5:bb:b5:32:5d:82:de:f7:45:db:86:b4:a4:09:8f:fc:c3:4c:
3c:7b:cc:04:d3:4b:6a:5c:5a:b3:af:a4:82:a2:f7:80:aa:36:
72:e7:f0:f8:c6:69:8f:a3:02:0b:1b:0e:f4:08:c3:36:23:4c:
14:c3:0b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 23:57:05 2024 by rpki-client on console-fra.rpki-client.org