Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/U_FM0z-C2HZw-2wAZh-wZujTqcU.roa
File: U_FM0z-C2HZw-2wAZh-wZujTqcU.roa (raw, json)
Hash identifier: Z7ycnVrmHZpn60e6/IpCFbetQhzTA5cGRswxtmCh5V8=
Subject key identifier: 53:F1:4C:D3:3F:82:D8:76:70:FB:6C:00:66:1F:B0:66:E8:D3:A9:C5
Certificate issuer: /CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Certificate serial: 01856DA65E437C654C178D60407017F5D8A3
Authority key identifier: A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/U_FM0z-C2HZw-2wAZh-wZujTqcU.roa
Signing time: Sun 01 Jan 2023 14:04:57 +0000
ROA not before: Sun 01 Jan 2023 14:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61977
IP address blocks: 2a13:1500::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 10 Aug 2023 00:04:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:5e:43:7c:65:4c:17:8d:60:40:70:17:f5:d8:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Validity
Not Before: Jan 1 14:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53f14cd33f82d87670fb6c00661fb066e8d3a9c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6e:52:38:4d:01:e7:27:4c:e5:9c:f6:0a:32:
1e:b8:e8:ea:46:2f:23:64:43:83:e2:9a:52:00:a5:
22:0e:d8:31:f3:16:28:a6:f4:ed:5e:1f:60:f6:97:
53:eb:51:df:cb:68:aa:1b:08:b6:ad:29:0c:0b:28:
82:fd:c2:06:cd:0b:79:3e:64:84:b8:b1:f6:11:2c:
b7:b4:2e:f2:8a:42:6e:0a:3d:4b:ca:35:cb:4b:11:
3f:a9:48:de:e6:1a:d5:f6:f7:ba:6e:e5:7f:57:80:
f1:32:80:4a:de:e1:3c:95:3f:86:59:dc:29:0f:66:
41:3e:e7:dc:59:c1:ef:5c:42:f2:c0:fd:ec:5c:8b:
7b:39:13:03:d3:7a:dd:38:9e:19:b8:cc:b4:a8:34:
cf:9a:80:56:d8:e9:53:48:8c:21:69:61:5b:aa:4a:
75:32:b6:b1:4d:16:ce:92:27:0e:b3:b7:d1:64:2b:
a2:b5:e7:b0:31:94:a5:3f:13:e9:53:0a:06:6b:4b:
56:9b:18:de:b8:52:b3:9e:ec:fd:53:3e:79:d7:ba:
04:13:1e:43:82:2a:35:ad:fb:d8:d4:c4:cd:d7:43:
2a:93:52:94:ed:ed:a4:4a:07:0f:7d:f6:15:9e:ef:
ba:f2:a3:42:14:71:bf:11:f7:9e:b0:e7:fc:4d:dc:
9e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F1:4C:D3:3F:82:D8:76:70:FB:6C:00:66:1F:B0:66:E8:D3:A9:C5
X509v3 Authority Key Identifier:
keyid:A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/U_FM0z-C2HZw-2wAZh-wZujTqcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1500::/29
Signature Algorithm: sha256WithRSAEncryption
55:46:4c:3d:92:d0:e9:20:6e:14:ec:5a:ab:ba:53:c3:08:0a:
fa:ea:1e:25:a4:33:dd:34:08:40:79:07:c4:5d:b1:5e:1e:5c:
53:d7:9a:06:f5:63:ec:ac:53:5c:3f:b4:69:d4:e0:26:26:7a:
46:63:01:86:45:98:49:08:0e:ee:10:99:e0:4a:fc:e0:7c:99:
35:6f:76:36:d9:c7:0b:43:2e:e3:c5:07:bc:93:b8:65:49:f2:
6e:53:d4:c0:71:b6:08:88:ea:53:ff:bd:6c:e7:9e:91:0c:4c:
0f:1f:10:3b:ad:6b:a7:9e:b1:6d:03:77:a9:9d:ce:2e:ec:59:
e0:29:7a:81:51:19:74:a8:1a:56:74:7b:ab:b8:b1:07:18:3e:
b4:74:5e:4a:c8:64:b4:42:49:11:cb:84:c9:4d:8d:ce:8c:63:
82:38:03:41:62:ac:e9:d4:9a:56:4e:09:98:24:12:c0:ae:32:
14:f7:a0:6a:8e:b1:04:a1:d2:15:17:01:06:73:b4:40:4b:12:
dc:11:c8:aa:74:ef:9b:7e:64:cf:63:3a:ae:40:99:16:dc:dd:
00:69:1d:bd:d7:73:a4:45:c9:f9:e4:e2:e8:89:a2:11:b1:38:
f4:bb:1a:a0:d3:17:ba:8d:58:9c:25:90:da:94:e0:1f:3c:80:
32:f0:c7:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:52 2024 by rpki-client on console-fra.rpki-client.org