Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/850txxwz9O00G8ypc5EuuyQj2t8.roa
File: 850txxwz9O00G8ypc5EuuyQj2t8.roa (raw, json)
Hash identifier: EZuwwB8VH2ZCXlCARatCfMQ2XQaWznz3E07XZw+oheo=
Subject key identifier: F3:9D:2D:C7:1C:33:F4:ED:34:1B:CC:A9:73:91:2E:BB:24:23:DA:DF
Certificate issuer: /CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Certificate serial: 0186C14A0D73CB5825062397D0C716A98395
Authority key identifier: 6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/850txxwz9O00G8ypc5EuuyQj2t8.roa
Signing time: Wed 08 Mar 2023 12:55:00 +0000
ROA not before: Wed 08 Mar 2023 12:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199683
IP address blocks: 2a13:b487:1400::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c1:4a:0d:73:cb:58:25:06:23:97:d0:c7:16:a9:83:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Validity
Not Before: Mar 8 12:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f39d2dc71c33f4ed341bcca973912ebb2423dadf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2c:73:dc:49:52:9f:0c:68:68:64:8d:44:67:
d3:03:0f:9c:67:af:65:63:2f:b1:c2:5f:cc:8e:0c:
d9:3a:6e:14:7a:35:2d:54:b3:80:bd:73:47:c7:27:
3b:71:3e:a2:59:12:77:f0:fa:dc:c1:52:75:1b:a8:
dc:9d:ad:ac:dc:39:f4:c0:de:38:a7:cb:e5:16:b8:
6b:88:29:86:ac:e3:96:ea:1b:a5:6f:02:5d:e2:fc:
e3:55:a8:c4:cd:fc:e2:98:99:c0:51:8a:ef:db:92:
58:82:4b:c6:b4:06:75:d3:c1:40:02:6f:1a:53:1d:
70:06:40:9f:7f:7a:31:a6:13:f7:66:23:f2:b4:d3:
bf:98:3b:9d:32:5c:a4:80:90:65:95:7f:eb:03:a3:
9d:8a:d9:f3:54:2c:ee:12:54:4d:e2:c6:1f:3b:09:
6f:5f:a6:b7:54:b0:6e:70:6c:bd:4f:a3:bb:e5:e6:
7c:53:5e:d5:6c:ab:c7:92:bf:a6:8d:99:f2:60:6d:
d8:9e:6e:e7:25:9f:83:3a:bc:f0:07:0d:64:23:a5:
4d:8a:fb:fd:23:ea:18:8e:1b:a2:e8:de:dc:8b:93:
e4:90:ad:a0:c8:07:25:05:3f:41:c0:ac:14:9f:b3:
d2:a5:20:f4:90:0d:7c:ee:04:18:16:5d:a0:24:21:
c7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:9D:2D:C7:1C:33:F4:ED:34:1B:CC:A9:73:91:2E:BB:24:23:DA:DF
X509v3 Authority Key Identifier:
keyid:6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/850txxwz9O00G8ypc5EuuyQj2t8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b487:1400::/40
Signature Algorithm: sha256WithRSAEncryption
2d:61:dd:ea:08:e5:12:c1:a5:bf:5c:74:bf:89:e0:80:1c:c6:
46:2c:ee:79:41:98:9f:0f:83:4a:19:95:bf:3e:2c:28:73:cc:
19:7a:19:67:6d:79:1d:81:38:81:24:e9:45:8e:3e:d7:ba:1a:
56:6d:ae:65:67:a8:f2:d2:e0:4d:7b:46:7c:ae:55:0c:de:7c:
8e:7d:aa:72:12:93:cd:51:51:0b:8d:3b:b1:06:39:26:dc:4c:
5e:12:27:11:9c:e6:e3:97:40:c1:ec:a1:f7:49:53:8e:1c:8a:
e1:47:80:ff:4c:4c:2a:48:28:a3:ff:18:2c:d2:d8:8d:6c:57:
ee:73:13:d6:28:cb:18:e8:14:a7:e8:02:2e:2f:31:1b:1e:2d:
ed:91:d1:e9:ae:c6:16:9d:68:ce:4e:77:d5:8e:cc:ac:b5:40:
00:e3:d7:ce:99:93:dc:70:73:8a:ff:77:d6:f7:c5:61:5d:ae:
a2:1d:f5:92:1c:86:08:c7:8e:ad:5b:a3:f6:7d:c0:2a:b0:03:
61:b4:75:f5:c6:0f:36:f3:fa:66:25:9f:3f:e9:da:76:82:6f:
7b:d7:aa:46:09:e1:7e:72:8e:be:62:7d:b7:98:87:3a:16:2b:
09:69:f0:6b:e0:94:d7:60:e3:58:74:32:55:e0:df:a2:a8:a2:
25:96:93:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:58 2024 by rpki-client on console-fra.rpki-client.org