Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/zVkWI0PyPWa_6GqdGwcDei3YoLA.roa
File: zVkWI0PyPWa_6GqdGwcDei3YoLA.roa (raw, json)
Hash identifier: klB9O2LpvXSoiyti0yFKfyoXW9QhOZNqwsK3lyGAIdU=
Subject key identifier: CD:59:16:23:43:F2:3D:66:BF:E8:6A:9D:1B:07:03:7A:2D:D8:A0:B0
Certificate issuer: /CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Certificate serial: 0189DCC1D89FCEE21B9A20A4FDC81447424D
Authority key identifier: A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/zVkWI0PyPWa_6GqdGwcDei3YoLA.roa
Signing time: Thu 10 Aug 2023 00:03:58 +0000
ROA not before: Thu 10 Aug 2023 00:03:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48925
IP address blocks: 2a13:1500:3a00::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:dc:c1:d8:9f:ce:e2:1b:9a:20:a4:fd:c8:14:47:42:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Validity
Not Before: Aug 10 00:03:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd59162343f23d66bfe86a9d1b07037a2dd8a0b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:52:69:e8:61:88:a1:5b:06:08:35:aa:7d:fe:
49:8f:d0:69:94:05:c9:dd:0c:5c:b0:0b:56:27:64:
af:2d:ee:61:59:15:a9:d4:d9:19:d6:98:4e:b1:c0:
93:ad:f5:aa:ad:b4:c7:b9:e9:0a:36:9b:1b:2a:f0:
d0:f7:2f:02:41:af:e4:03:35:db:f5:e9:58:89:74:
52:58:fe:12:12:d7:83:91:13:bf:8f:1a:fa:cd:8f:
88:10:52:83:0e:4f:3c:c6:e3:29:58:ae:8f:0a:a0:
03:1d:e9:6e:26:0d:13:75:7d:da:c1:eb:a0:a5:79:
43:43:a0:36:9c:25:85:c1:61:82:52:84:97:ef:00:
47:ea:23:79:93:d5:11:4c:8e:74:71:e5:67:5e:ee:
29:4e:66:04:b8:c1:31:84:72:7b:46:5b:c7:f3:c2:
c8:e0:ce:83:34:9e:b3:7b:74:3e:c0:5a:9a:70:1f:
24:62:dd:c0:e0:73:16:da:25:38:43:53:3d:1f:0e:
24:10:8a:5d:30:01:8e:38:06:33:5a:90:8e:e6:e6:
2c:dd:9c:52:ef:4b:09:9a:fa:40:ef:8c:e2:ea:05:
ba:10:7f:62:0b:c8:7d:0f:a5:ac:9e:d4:d6:25:51:
31:63:9d:0b:4a:7d:b5:c0:21:2f:9c:36:b1:6a:c9:
b1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:59:16:23:43:F2:3D:66:BF:E8:6A:9D:1B:07:03:7A:2D:D8:A0:B0
X509v3 Authority Key Identifier:
keyid:A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/zVkWI0PyPWa_6GqdGwcDei3YoLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1500:3a00::/40
Signature Algorithm: sha256WithRSAEncryption
53:ae:d8:99:2f:f2:0f:a3:b7:95:03:9e:94:b9:a3:c5:a8:ba:
af:d0:40:9d:5d:bd:74:b3:71:03:23:98:53:d3:73:4d:b8:62:
0d:9a:93:c6:cf:3b:81:ee:d5:6e:e2:a4:ac:f8:7e:7d:10:f5:
00:4d:79:c6:6e:8a:3a:8d:15:c9:92:35:53:e9:32:c4:88:76:
34:fa:8d:a3:a7:21:c1:10:06:be:47:6c:08:71:50:52:6a:c2:
7e:8d:1b:3a:fe:35:31:5c:b4:12:37:30:d0:d7:c8:35:96:47:
9c:02:0f:99:d0:4b:fb:1a:ad:e7:4e:fd:8b:ae:34:84:36:04:
34:57:64:1f:ce:f9:6b:c4:25:9b:c5:53:22:bb:14:56:59:7b:
ef:d6:a4:22:ab:db:6d:85:df:1a:e9:b7:e6:64:8f:07:58:bb:
0a:6d:53:b7:dc:34:62:f6:07:bc:c0:a8:2c:22:61:de:61:8c:
b7:52:f3:8c:89:5f:47:c7:4b:1e:ba:06:00:50:8b:96:45:f4:
80:49:00:50:8f:60:bf:32:b0:76:57:71:3e:42:29:ee:3f:69:
15:78:bc:a6:73:50:c5:bf:c4:26:10:ad:3f:ba:e4:57:92:68:
63:6f:3a:e4:ab:62:93:b3:74:e2:a1:bb:4c:57:95:9a:b4:af:
77:0d:a9:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:52 2024 by rpki-client on console-fra.rpki-client.org