Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/CwwPBb9syxEvPBE_B22k57h7FJY.roa
File: CwwPBb9syxEvPBE_B22k57h7FJY.roa (raw, json)
Hash identifier: ylN3EPO+V6JgMoJCf8gmVui7f8XOPYyxj0kB82LTtdI=
Subject key identifier: 0B:0C:0F:05:BF:6C:CB:11:2F:3C:11:3F:07:6D:A4:E7:B8:7B:14:96
Certificate issuer: /CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Certificate serial: 01856DA65D0384843AD13658AD3CF923C7CA
Authority key identifier: A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/CwwPBb9syxEvPBE_B22k57h7FJY.roa
Signing time: Sun 01 Jan 2023 14:04:57 +0000
ROA not before: Sun 01 Jan 2023 14:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57450
IP address blocks: 2a13:1500:3b0::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:5d:03:84:84:3a:d1:36:58:ad:3c:f9:23:c7:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Validity
Not Before: Jan 1 14:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b0c0f05bf6ccb112f3c113f076da4e7b87b1496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:15:ed:58:26:ab:04:47:18:fe:a0:4e:66:66:
04:a7:bf:e3:ee:f8:d9:4a:ae:a5:a2:a9:40:63:7d:
7c:24:f2:38:e9:ab:6e:fe:08:08:f9:79:d7:98:84:
2c:53:9f:ab:f5:eb:40:20:a4:95:b9:1b:1e:ac:6f:
a4:cd:e4:48:df:68:ee:7b:65:d5:f0:56:77:26:94:
8f:af:4b:9d:04:13:0b:5a:20:93:a9:0a:5b:39:4a:
88:7e:1e:8c:b1:b3:68:7a:c7:53:4a:24:78:ee:e2:
19:c9:2f:c2:91:76:f8:1b:6a:96:9c:79:05:b0:97:
ad:fe:df:fe:00:92:41:30:d3:43:a5:b9:b2:e5:86:
7a:08:c7:3d:7a:7e:b5:a6:c6:7c:5c:64:fc:d2:76:
f4:be:a7:61:fd:24:eb:d5:bc:7d:0d:3f:94:f4:6b:
9f:54:fa:4e:6e:ed:c8:6a:44:40:1c:54:a9:29:9f:
ed:20:ff:3d:4e:bf:73:85:d0:9a:36:59:38:ac:fa:
4f:44:07:35:be:5d:f4:ed:3f:e0:df:b3:6e:4f:74:
69:cd:6b:ad:e6:2b:97:21:2a:85:d5:59:43:a1:08:
33:4a:83:05:15:b7:3e:ee:1a:fa:b1:1e:dd:89:7f:
29:25:c4:06:99:c3:f7:bd:f0:e6:6d:07:e6:ae:1d:
99:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:0C:0F:05:BF:6C:CB:11:2F:3C:11:3F:07:6D:A4:E7:B8:7B:14:96
X509v3 Authority Key Identifier:
keyid:A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/CwwPBb9syxEvPBE_B22k57h7FJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1500:3b0::/44
Signature Algorithm: sha256WithRSAEncryption
a9:22:92:a1:9b:25:71:dc:95:bf:31:74:ef:22:6b:d8:4a:1d:
19:a6:f1:22:e9:d5:75:93:e5:e1:b7:86:b5:55:3f:dc:2e:28:
f5:ed:38:ec:5c:a9:50:b5:53:51:39:ff:4b:90:a2:43:df:a6:
34:af:58:ac:b3:78:9c:df:63:11:fa:f0:05:63:99:5f:22:40:
cd:27:96:51:c6:9d:d5:42:97:0b:0f:b9:cb:96:19:de:bf:8a:
15:be:03:f4:99:1a:41:a2:cd:ed:5a:5f:36:b6:78:39:c9:6e:
00:48:bd:e5:1c:0a:b0:e3:43:83:1c:6d:b5:8c:48:37:99:79:
19:9a:de:de:72:1e:77:8e:46:a7:93:9f:0d:e8:3f:32:55:a9:
5a:98:a6:4a:ff:5f:7d:09:87:e0:6f:43:14:fb:88:71:e3:07:
82:5f:c4:01:c0:74:e1:8a:1b:5c:2a:d6:36:0d:fd:78:5b:14:
28:49:da:79:65:db:68:c5:99:a5:e2:49:b0:e1:6a:70:9b:8c:
2b:8b:f1:59:9e:7d:62:ce:d3:4b:b6:8c:6f:58:ee:84:55:32:
e4:8a:4d:90:b1:64:c0:b3:eb:ff:1b:30:f9:46:9e:db:27:21:
9b:1e:d1:12:28:97:de:22:4d:ac:6b:f8:80:60:32:22:f7:85:
e5:af:3a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:52 2024 by rpki-client on console-fra.rpki-client.org