Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/aG5rultyep-FvCgVyS6kj_JKuX4.roa
File: aG5rultyep-FvCgVyS6kj_JKuX4.roa (raw, json)
Hash identifier: mGD2R4M8c8+yld+1k0U4s2+lWk57jk8MM8onFR1Nnr8=
Subject key identifier: 68:6E:6B:BA:5B:72:7A:9F:85:BC:28:15:C9:2E:A4:8F:F2:4A:B9:7E
Certificate issuer: /CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Certificate serial: 0186BFAEFAB1105B675AA3DFDF36BFB64FDE
Authority key identifier: 6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/aG5rultyep-FvCgVyS6kj_JKuX4.roa
Signing time: Wed 08 Mar 2023 05:26:00 +0000
ROA not before: Wed 08 Mar 2023 05:26:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57406
IP address blocks: 2a13:b480::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bf:ae:fa:b1:10:5b:67:5a:a3:df:df:36:bf:b6:4f:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Validity
Not Before: Mar 8 05:26:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=686e6bba5b727a9f85bc2815c92ea48ff24ab97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e5:79:bc:c7:58:21:96:b0:0b:29:32:d7:5c:
a8:f6:69:cd:61:9c:f6:7a:22:f2:66:70:29:e4:92:
6a:5e:b5:32:6c:ae:bc:83:11:a6:b1:0f:75:13:10:
fe:54:85:f2:cf:d1:ee:e7:2b:8a:c8:2a:a7:4e:7c:
e7:2a:b1:85:db:28:45:ed:be:83:7d:36:71:d6:63:
2d:99:9c:a2:59:aa:94:8a:84:c3:a3:bb:48:62:03:
65:12:f7:a0:f1:2a:fa:3a:55:2c:e9:ac:20:e4:40:
ce:7e:e4:fa:6d:ad:fe:6b:f9:b6:4d:26:95:3d:6e:
3b:bc:40:bd:2d:1b:60:c1:4d:d9:75:e9:19:2a:ae:
6a:43:96:c5:00:28:27:a8:b4:33:9c:0d:b9:60:df:
a3:25:94:be:40:28:6b:99:e0:a6:2d:35:c5:ab:b7:
50:80:76:17:0d:a7:4f:12:8a:f9:fa:2c:55:2e:af:
23:ef:53:ce:45:06:c7:f4:a5:e8:1d:fa:13:e1:8d:
a0:a4:c8:fa:75:4b:02:62:66:94:39:6a:d0:65:12:
42:74:cc:92:98:d8:a4:77:ba:7b:bf:17:5d:b4:68:
ba:75:a5:31:f7:4b:9a:bc:6b:1c:08:73:3f:96:69:
61:fb:b7:19:23:b1:92:a9:bb:ae:c3:e9:c2:bb:38:
2b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6E:6B:BA:5B:72:7A:9F:85:BC:28:15:C9:2E:A4:8F:F2:4A:B9:7E
X509v3 Authority Key Identifier:
keyid:6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/aG5rultyep-FvCgVyS6kj_JKuX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b480::/29
Signature Algorithm: sha256WithRSAEncryption
6e:8b:eb:d2:62:f7:8f:ea:2c:b2:e5:52:4c:91:e8:05:5c:5f:
eb:6f:0e:c4:12:9c:07:f8:21:c0:c8:b4:38:5f:d0:38:4f:da:
33:50:41:b7:d7:14:4a:23:a9:d2:38:74:5f:2c:8c:4e:a9:6d:
d7:46:de:ac:b2:53:70:a4:48:7f:04:1d:9f:3e:fc:f8:4f:b3:
5f:fc:33:4b:87:1a:6f:bd:5e:a6:4d:40:8a:87:a9:fc:f1:ee:
d1:b2:5a:d8:39:9e:0f:9d:e9:55:56:d3:d9:03:b1:d0:a4:01:
55:b6:25:a2:e7:6d:78:3f:39:4d:17:7d:cf:85:41:29:3e:a7:
e8:ed:25:44:25:80:03:4f:2e:68:cc:3a:ce:09:73:3f:9c:0f:
56:b8:3c:94:28:c6:2f:60:2f:f6:38:40:33:23:a1:6e:73:73:
9b:c0:de:8d:1d:b8:1f:c8:15:31:aa:81:97:98:06:de:bf:10:
46:b1:78:c6:e1:3f:3b:0d:ee:27:dc:0b:e9:48:34:bd:8a:6a:
f3:e5:f5:13:da:a3:f1:04:50:b6:5a:a2:7d:bf:91:e2:68:f2:
24:75:68:97:f8:e3:1d:00:f3:e1:e4:8d:74:13:24:0e:9f:ce:
62:d6:14:33:b6:c2:62:98:6d:ba:1f:cf:f7:f6:c7:44:c2:5d:
02:c3:35:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:58 2024 by rpki-client on console-fra.rpki-client.org