Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/ddPx23ovALD0Za2vQerQUQMIXsg.roa
File: ddPx23ovALD0Za2vQerQUQMIXsg.roa (raw, json)
Hash identifier: NL0yW+9QYkrcT73vvbivbx5Bkkw+YtUyW1L/7z6+xNg=
Subject key identifier: 75:D3:F1:DB:7A:2F:00:B0:F4:65:AD:AF:41:EA:D0:51:03:08:5E:C8
Certificate issuer: /CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Certificate serial: 01897DC060A8534AD1495B07B290BBBEBD40
Authority key identifier: 6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/ddPx23ovALD0Za2vQerQUQMIXsg.roa
Signing time: Sat 22 Jul 2023 13:18:26 +0000
ROA not before: Sat 22 Jul 2023 13:18:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197646
IP address blocks: 2a13:b487:4e00::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7d:c0:60:a8:53:4a:d1:49:5b:07:b2:90:bb:be:bd:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Validity
Not Before: Jul 22 13:18:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75d3f1db7a2f00b0f465adaf41ead05103085ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:89:94:11:08:54:55:00:8e:5f:57:31:f2:8c:
78:06:cf:ad:f4:21:e0:aa:62:2c:f0:f8:91:24:93:
93:cc:e5:7d:9e:07:bb:8c:95:ce:81:f9:7a:b5:40:
3f:a9:48:c1:16:f1:38:fc:5c:ba:2b:ce:38:32:b1:
e7:23:10:65:c7:e7:04:7e:96:93:ea:d2:ad:1c:01:
ca:09:25:e5:72:84:14:ac:ae:84:54:de:4f:f0:60:
4c:8b:82:59:93:3c:09:8d:27:54:bd:c4:3f:0a:e1:
2b:c7:b3:ae:2a:67:90:2f:f9:c9:3a:ee:fd:15:85:
9f:28:fd:6a:ce:e9:f6:1a:66:47:54:1e:45:06:b8:
c9:3c:cc:03:bb:0d:8e:70:7e:25:2c:5d:e4:17:38:
f1:35:90:04:d4:24:97:11:34:3f:54:c1:60:cc:d3:
00:47:6e:96:78:43:3e:4b:b8:b7:61:b8:f6:72:0a:
62:28:bf:bc:39:1f:f0:8d:b0:f6:90:9e:b5:ac:dc:
db:ba:3b:b5:83:57:80:f6:20:78:42:07:7b:5e:f6:
aa:1f:fd:f1:6c:22:89:b3:72:16:5f:d4:14:7f:4c:
1d:b1:0f:84:ad:6d:76:3a:cb:d4:e9:b2:df:5b:32:
5a:c8:35:c8:83:53:13:ca:46:ee:fa:41:a4:4d:8f:
6b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D3:F1:DB:7A:2F:00:B0:F4:65:AD:AF:41:EA:D0:51:03:08:5E:C8
X509v3 Authority Key Identifier:
keyid:6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/ddPx23ovALD0Za2vQerQUQMIXsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b487:4e00::/40
Signature Algorithm: sha256WithRSAEncryption
5c:ba:7e:42:70:0a:cf:da:6d:af:e5:d9:b2:49:98:5f:b0:34:
6d:24:6c:9d:00:02:9b:b3:a4:9c:e0:8e:32:08:c8:e3:16:8d:
55:d9:5c:e7:6b:0a:b6:a1:0f:05:18:a3:a8:51:b8:74:69:8f:
3e:7d:b4:19:3e:a9:91:c1:5b:ee:66:7b:64:aa:ea:ff:e2:02:
30:f6:3e:b6:23:93:3e:cf:b6:6f:62:a0:d0:f1:59:38:56:41:
96:86:78:8c:d2:f9:e9:65:59:4a:4f:d6:b4:1c:8b:66:ae:96:
7d:6c:08:24:9b:be:32:9e:7f:71:5c:79:19:fa:5a:e1:22:6c:
29:5e:5e:b6:a6:c2:fa:ce:ef:38:2d:9e:54:97:d0:00:d0:7f:
87:d0:26:e0:a7:f9:34:e2:a6:64:dd:c7:57:7d:fe:86:e5:4e:
dc:60:fd:eb:b9:09:5e:d0:c4:0b:e5:d5:b2:51:d5:89:3a:c0:
6a:e9:fe:83:e3:b0:3d:a8:57:b7:e1:3a:d3:47:3a:dc:ed:27:
1a:7a:09:b4:1a:93:ea:ba:a4:f8:74:e4:3d:93:f4:3a:26:d0:
2c:8a:93:6e:ba:86:81:14:2f:1e:a7:b2:e4:18:18:eb:02:6c:
f4:bd:df:5c:b5:0b:fc:9e:dc:f9:0d:54:01:75:b5:f5:5f:37:
03:9e:4d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:58 2024 by rpki-client on console-fra.rpki-client.org