Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/iPgIOcTAZuOuNCIk6AP6Zmb2sbg.roa
File: iPgIOcTAZuOuNCIk6AP6Zmb2sbg.roa (raw, json)
Hash identifier: iXAd3NapSknsmxbECl4DmHY8+LjmrJIEz4dpBar6EiU=
Subject key identifier: 88:F8:08:39:C4:C0:66:E3:AE:34:22:24:E8:03:FA:66:66:F6:B1:B8
Certificate issuer: /CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Certificate serial: 0185704BF0ACFB9F9E89CECB38866B10BCE1
Authority key identifier: 53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/iPgIOcTAZuOuNCIk6AP6Zmb2sbg.roa
Signing time: Mon 02 Jan 2023 02:25:03 +0000
ROA not before: Mon 02 Jan 2023 02:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:5241::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 17 Aug 2023 13:08:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:f0:ac:fb:9f:9e:89:ce:cb:38:86:6b:10:bc:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Validity
Not Before: Jan 2 02:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88f80839c4c066e3ae342224e803fa6666f6b1b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f2:fe:d0:d7:06:73:01:91:79:74:9f:4d:59:
8a:e7:6f:8e:d6:b3:fd:c5:c2:02:4f:c1:5f:b1:48:
e8:13:c4:c3:2f:e5:07:6f:a5:66:ca:2c:d8:a7:e7:
d8:65:51:57:57:fd:9e:36:95:65:cd:92:24:17:df:
ea:75:92:fc:bd:db:12:d3:1b:b2:bb:11:ef:5e:33:
74:e9:2d:5d:18:45:e8:f7:a7:c1:7f:b8:60:5e:ba:
b3:8d:9a:83:80:9b:ec:ca:5a:e5:14:7c:eb:4d:84:
e4:f9:27:72:c3:52:d9:ce:fd:11:7b:da:fe:0a:b1:
b1:1d:3d:f2:44:47:99:31:8d:41:bd:f3:ae:82:d8:
08:75:d4:6a:04:96:5d:f6:da:13:56:c7:b4:89:6c:
48:d8:69:aa:f1:ac:ca:9e:1a:59:d2:6d:a4:64:6f:
ea:dc:eb:17:8d:32:e5:11:28:7c:43:0e:6e:0a:5e:
e2:fb:40:e6:9a:ef:5e:7a:26:c5:ad:ba:3b:34:32:
55:c9:22:1b:7a:9a:ed:ad:4f:67:c1:05:b0:de:52:
62:81:65:2b:33:cb:c1:8a:0c:c8:5c:66:9b:a6:62:
7c:0e:76:a7:fb:da:03:cc:3d:80:c3:5c:cc:33:ca:
9f:1e:3a:39:f8:d2:ab:9f:e7:dd:d9:8e:44:d0:2c:
90:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F8:08:39:C4:C0:66:E3:AE:34:22:24:E8:03:FA:66:66:F6:B1:B8
X509v3 Authority Key Identifier:
keyid:53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/iPgIOcTAZuOuNCIk6AP6Zmb2sbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5241::/32
Signature Algorithm: sha256WithRSAEncryption
34:cb:ea:a7:7d:cd:d1:bd:f6:9f:6b:5e:6e:39:00:da:ea:91:
06:40:cb:13:21:b0:9f:ea:82:38:d5:dd:9a:75:cb:38:77:f7:
75:77:48:c8:41:07:7c:42:73:a6:6e:14:34:cc:fa:0f:51:2c:
61:18:f6:8a:9d:c4:43:1a:62:89:60:02:7a:c3:67:69:59:d3:
89:44:8e:0c:bd:87:3f:c4:ce:36:ee:4f:c0:ac:bf:33:69:02:
de:28:92:a4:20:bf:a0:ad:55:49:61:83:ed:c3:a1:eb:92:21:
38:14:33:a1:73:29:6a:59:b0:6f:24:ed:9b:f5:5b:c9:40:29:
7a:e4:9f:35:bc:d8:9d:6c:c0:b5:66:a5:f5:6c:99:89:24:61:
e4:c7:68:71:1a:d8:84:a6:c8:74:d8:66:fb:f9:fc:d9:1a:68:
07:f5:52:a9:e8:f6:11:7a:54:2b:63:52:39:4f:85:5b:b5:65:
9b:71:1d:27:cf:b7:01:cf:a5:53:3a:7b:0c:c2:74:72:22:3e:
cb:08:34:6c:aa:2c:c7:15:00:20:6a:25:aa:d7:f3:9e:8e:3c:
c9:bf:0c:9e:1e:54:cb:03:45:d6:f9:92:30:3e:4b:f3:6d:28:
fa:ae:d5:52:79:f1:dd:86:2d:4e:b6:12:9f:dc:89:78:37:9e:
5c:a8:ca:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:34 2024 by rpki-client on console-fra.rpki-client.org