Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/s0ezi4WFWbthYagMAFHMO8lsR94.roa
File: s0ezi4WFWbthYagMAFHMO8lsR94.roa (raw, json)
Hash identifier: nBNNmiRb1cVucvk3Lxk5vohQJr7cbW/TKb7xpgcVsSs=
Subject key identifier: B3:47:B3:8B:85:85:59:BB:61:61:A8:0C:00:51:CC:3B:C9:6C:47:DE
Certificate issuer: /CN=70bf553042f1a43827dc034500bbd1068a7297ca
Certificate serial: 018AD024A5890CD5B6223E244881E7D89371
Authority key identifier: 70:BF:55:30:42:F1:A4:38:27:DC:03:45:00:BB:D1:06:8A:72:97:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cL9VMELxpDgn3ANFALvRBopyl8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/s0ezi4WFWbthYagMAFHMO8lsR94.roa
Signing time: Tue 26 Sep 2023 06:19:37 +0000
ROA not before: Tue 26 Sep 2023 06:19:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 141039
IP address blocks: 2a13:240:4100::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:24:a5:89:0c:d5:b6:22:3e:24:48:81:e7:d8:93:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70bf553042f1a43827dc034500bbd1068a7297ca
Validity
Not Before: Sep 26 06:19:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b347b38b858559bb6161a80c0051cc3bc96c47de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4d:4b:6a:14:c8:71:ca:9d:4f:80:7a:2b:2c:
80:b1:77:c3:0c:43:de:02:1c:98:bb:7e:3d:e2:8d:
8d:05:7b:07:6a:3e:28:46:08:3e:3e:26:28:41:3d:
e7:35:35:c9:a3:f2:5f:ab:cc:95:bb:30:0b:08:b7:
5c:e2:b9:a8:94:99:00:b2:9c:22:2d:73:24:4e:23:
05:db:d5:53:e1:3d:7b:2f:bf:94:94:7f:dd:a7:84:
41:a6:33:ef:23:e8:fb:cc:c2:84:ce:3d:06:83:f4:
5f:b4:8e:7e:71:51:33:e3:d5:72:f3:16:20:04:65:
cd:82:cf:a6:68:99:9c:e9:f7:cd:b0:71:cc:09:86:
c1:d8:4a:bb:70:94:cf:90:ec:6f:7c:ef:60:27:ef:
c2:0d:65:ed:89:41:4f:06:33:b5:4c:69:c2:53:ad:
45:4e:80:94:0e:df:c8:77:32:98:43:24:3b:cf:4e:
ed:f1:2b:c3:f1:bf:61:67:75:5e:59:a8:50:31:70:
07:e2:d1:56:3a:dd:79:b3:f2:f2:b4:a3:61:a9:0d:
d3:47:c8:bf:52:4c:f6:87:6a:4a:76:9c:41:66:b6:
cc:bb:86:79:2a:2b:69:86:bc:ca:a3:0d:65:76:64:
91:39:f4:ad:9f:a0:90:52:d8:8c:c1:db:f6:35:f4:
7c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:47:B3:8B:85:85:59:BB:61:61:A8:0C:00:51:CC:3B:C9:6C:47:DE
X509v3 Authority Key Identifier:
keyid:70:BF:55:30:42:F1:A4:38:27:DC:03:45:00:BB:D1:06:8A:72:97:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cL9VMELxpDgn3ANFALvRBopyl8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/s0ezi4WFWbthYagMAFHMO8lsR94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/cL9VMELxpDgn3ANFALvRBopyl8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:240:4100::/40
Signature Algorithm: sha256WithRSAEncryption
ad:3c:00:b1:ac:57:d0:85:9d:c9:10:28:23:62:55:3a:33:38:
04:ca:1a:62:be:92:d1:de:da:2d:31:ef:ba:2a:9d:b7:90:1c:
3a:fb:5a:22:81:2c:80:58:cc:e3:fd:e5:4a:30:b0:a4:64:15:
00:db:82:09:7d:b8:8b:0b:68:49:a5:ff:6a:27:f8:2f:bc:84:
a2:45:71:99:9d:75:8e:2f:b0:c1:f8:5f:5c:17:43:2b:8f:1f:
90:f5:54:19:09:82:47:a2:8a:55:63:9c:20:42:f7:3e:76:22:
a1:7f:ee:83:63:fd:38:d0:43:e9:a8:d8:b8:34:3f:6b:4b:3a:
1b:d5:c2:72:06:a1:bb:eb:ad:af:52:18:29:18:0c:db:a7:8e:
be:5e:a0:c0:a5:24:d3:7b:59:1b:80:be:c4:33:1f:c2:8a:09:
25:b2:9d:34:75:ff:5b:33:15:90:69:e4:ce:83:51:be:02:15:
5b:13:56:6b:33:8c:33:21:c8:61:cb:77:94:c2:4d:ea:16:da:
f9:72:28:b2:e6:73:d3:05:c1:c4:3f:f9:cc:7e:17:c0:7d:a0:
e9:2a:6c:e9:5c:9c:70:c9:92:fb:bd:10:97:40:bc:09:68:61:
94:66:e2:17:4f:ca:6f:d9:a3:f4:c6:90:7e:50:7e:83:43:e6:
91:70:a3:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:07 2024 by rpki-client on console-ams.rpki-client.org