Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/2Nbmmzd_ePFNDXoX2eLBCQsB8no.roa
File: 2Nbmmzd_ePFNDXoX2eLBCQsB8no.roa (raw, json)
Hash identifier: qWcnFaGRjauIAOql372/44PBC1lDdRgmR6eQhDO8gHQ=
Subject key identifier: D8:D6:E6:9B:37:7F:78:F1:4D:0D:7A:17:D9:E2:C1:09:0B:01:F2:7A
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 018570FBBCD228D6B11AA5C8388997228B87
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/2Nbmmzd_ePFNDXoX2eLBCQsB8no.roa
Signing time: Mon 02 Jan 2023 05:37:04 +0000
ROA not before: Mon 02 Jan 2023 05:37:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:141:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:bc:d2:28:d6:b1:1a:a5:c8:38:89:97:22:8b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Jan 2 05:37:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8d6e69b377f78f14d0d7a17d9e2c1090b01f27a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b5:03:7c:d4:b7:85:5e:a6:53:62:f6:cc:bb:
80:1b:d9:ce:9a:57:2e:f2:d0:b2:57:d1:a7:63:0c:
3d:2d:ff:f0:de:05:d7:2f:f3:ab:44:11:ec:98:ef:
5e:39:c0:ed:df:10:b8:6c:fe:85:1a:e3:83:2a:71:
8b:d8:7b:16:91:ae:13:7f:ca:cd:6c:e3:8a:ad:c3:
8c:9e:04:7b:60:5d:43:6c:c7:74:9a:58:7c:3a:9e:
9b:40:ce:d5:b0:6d:a0:36:cd:6a:29:24:90:f7:c0:
b5:ee:1f:b4:42:ab:84:51:3a:13:67:31:58:8c:25:
b8:94:30:6b:98:35:db:60:40:0a:db:39:18:f5:51:
66:42:db:49:29:b0:73:cc:9c:25:5d:d0:ee:56:62:
57:d6:0c:18:92:d7:42:b7:e8:ae:7a:ab:ca:70:68:
b4:d5:5d:19:51:9d:75:c9:e8:6e:f9:6b:da:f5:01:
1f:09:ad:98:85:b5:9a:af:c8:58:62:66:6a:cd:6f:
da:01:3d:56:29:a1:55:e0:a7:1c:e1:8e:f8:9a:bb:
4d:14:13:bb:4b:b7:2b:b3:9d:d3:66:4d:08:23:cd:
a4:c3:92:b8:08:95:58:c5:64:ba:27:b5:d5:0e:59:
fd:a9:f2:ce:ab:39:89:e0:c6:82:e4:4a:2d:21:cb:
8b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D6:E6:9B:37:7F:78:F1:4D:0D:7A:17:D9:E2:C1:09:0B:01:F2:7A
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/2Nbmmzd_ePFNDXoX2eLBCQsB8no.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:141:3::/48
Signature Algorithm: sha256WithRSAEncryption
20:69:38:bc:22:7c:18:97:6f:10:61:c2:2e:b9:58:bf:a2:c8:
e0:a2:55:69:0b:a1:e7:45:e3:09:a3:30:88:9d:2f:a1:aa:6d:
51:e3:4c:66:e2:cb:1e:36:2e:b4:64:80:d1:b7:81:34:fd:a9:
e8:e8:02:51:cc:1b:56:c0:6f:a2:0a:bc:18:3c:8e:94:ca:06:
f9:fc:72:29:b0:a1:e8:dc:9b:95:ab:8d:99:f1:9d:05:e4:66:
c6:8a:c5:10:c7:91:ec:77:05:b1:89:b2:f4:42:09:f9:b7:4b:
2f:02:34:f9:77:6b:c6:e7:3b:a1:56:a9:b9:ad:94:cd:ba:80:
90:06:d4:d7:ef:b2:80:98:ef:ca:1b:10:2a:1b:b5:22:7e:e0:
84:c0:b2:fe:c6:ce:7d:5f:07:25:b4:e5:62:99:e6:55:d1:75:
41:45:2c:c7:20:da:b4:60:af:3d:83:a6:9a:dc:90:3e:ca:00:
47:45:dc:72:ac:b8:ae:75:c8:81:c3:e8:bc:f8:6e:96:bf:42:
87:e5:5d:5a:b2:ec:4b:b8:4e:0b:5e:5e:47:3f:e0:7f:f3:66:
68:c7:3e:57:ee:69:0a:00:3a:e7:1e:29:fe:ec:95:fc:51:e8:
eb:cb:77:ff:d8:7c:c4:18:7e:fe:f3:76:06:dd:64:7f:da:b1:
eb:be:7b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:24 2024 by rpki-client on console-ams.rpki-client.org