Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/faZ9Ycsva7A-scF4v-sdApNiyFQ.roa
File: faZ9Ycsva7A-scF4v-sdApNiyFQ.roa (raw, json)
Hash identifier: 6jHbaL032PWMg8DAn/qPPggvzFixyyiVvXADZ3bsPsw=
Subject key identifier: 7D:A6:7D:61:CB:2F:6B:B0:3E:B1:C1:78:BF:EB:1D:02:93:62:C8:54
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0191B37DA9ADBF8E2E178B0ED49BC70A6F6D
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/faZ9Ycsva7A-scF4v-sdApNiyFQ.roa
Signing time: Mon 02 Sep 2024 16:07:22 +0000
ROA not before: Mon 02 Sep 2024 16:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21738
IP address blocks: 2a13:b4c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 18 Sep 2024 20:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b3:7d:a9:ad:bf:8e:2e:17:8b:0e:d4:9b:c7:0a:6f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Sep 2 16:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7da67d61cb2f6bb03eb1c178bfeb1d029362c854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f2:a6:98:66:7b:8d:6f:4a:86:8b:0c:2d:7d:
e4:ad:2a:a6:3d:cc:f6:fe:31:ca:4e:1e:f5:67:e4:
33:27:a2:fe:61:53:82:97:e3:f1:99:7b:8c:83:6e:
fb:e9:d1:56:31:f3:46:f9:b2:e0:c4:85:44:52:c4:
9d:11:46:9f:c0:12:73:45:34:f6:4c:bd:47:f6:eb:
c1:55:b3:09:a7:b5:c4:40:ec:86:f9:31:90:17:94:
58:36:0d:b1:8c:cb:81:95:86:8e:f9:fc:30:47:09:
21:1e:e0:46:06:34:fd:50:99:85:ae:a5:fc:61:f3:
42:f6:03:b9:79:40:8e:4f:64:0a:a4:5e:74:d6:70:
5f:d0:1b:60:ce:be:9c:ee:25:fe:65:41:86:a3:42:
c6:51:7c:bc:51:e5:92:54:9d:7d:31:eb:94:c1:57:
14:64:2c:64:82:e8:dd:96:e4:91:13:48:db:a3:66:
9a:37:5c:29:67:e9:1c:a6:35:cc:10:c1:d7:20:1a:
75:22:d9:ef:24:89:86:53:6b:74:e5:2e:e4:7d:21:
7d:40:45:eb:62:be:25:3b:26:dc:f5:67:36:35:1d:
93:36:7c:4c:59:28:fd:f8:6b:00:7f:6f:85:59:26:
a6:b8:55:f8:f9:77:f3:86:4a:ce:b8:ea:31:7b:4e:
5e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A6:7D:61:CB:2F:6B:B0:3E:B1:C1:78:BF:EB:1D:02:93:62:C8:54
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/faZ9Ycsva7A-scF4v-sdApNiyFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b4c0::/29
Signature Algorithm: sha256WithRSAEncryption
64:ea:ab:39:c3:42:98:d8:20:32:a0:5a:65:a9:b9:0d:68:3d:
75:15:ed:0d:b9:c9:25:cc:ab:26:67:d2:a7:b3:5f:f2:cc:21:
c6:48:8e:d9:fb:40:70:c3:6e:6d:9a:e6:5a:a1:a5:a0:e1:1b:
a5:ea:28:8f:70:68:67:38:1b:61:9c:78:4e:68:e4:42:fe:99:
04:7a:e2:49:7e:97:0b:24:40:33:82:78:b1:0a:a5:41:8b:79:
93:64:b0:8f:03:bc:98:87:c8:c7:e4:8d:2e:e2:9f:67:56:4f:
57:e5:88:68:35:f3:47:49:0d:81:c4:b9:62:64:08:08:e7:a3:
d9:83:0e:9e:b2:4c:3e:56:32:de:83:20:09:b7:e6:9e:cb:6a:
4a:c8:fe:31:95:cc:42:30:f0:9c:b7:43:eb:a1:87:b2:e4:33:
89:31:2c:85:77:ef:e8:62:1a:b9:a5:e2:26:c4:93:fc:dc:a4:
5c:3f:f7:01:79:12:d4:5d:14:23:7f:bd:0c:2b:4e:c3:41:b4:
2e:01:88:5f:f7:58:87:4e:24:5b:12:ec:80:f7:e2:61:c8:48:
06:70:21:52:2e:84:25:74:48:3b:2d:40:00:73:48:81:09:27:
8b:a6:f2:95:e8:f0:97:8c:ea:0f:94:06:75:b3:c0:26:11:5b:
82:d6:ee:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 23:46:09 2024 by rpki-client on console-ams.rpki-client.org