Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/HEy2invRzmqIsyRCsgp2SoTyaS0.roa
File: HEy2invRzmqIsyRCsgp2SoTyaS0.roa (raw, json)
Hash identifier: uJEILXmCHtpuLYJnndeabAFT/30g6CSBRFRCeNWHgMo=
Subject key identifier: 1C:4C:B6:8A:7B:D1:CE:6A:88:B3:24:42:B2:0A:76:4A:84:F2:69:2D
Certificate issuer: /CN=1732f334d8abb68ef822546d8f6f8e81563c6fd9
Certificate serial: 018A7F0C61A76609F305C3D4382DAB4B9A28
Authority key identifier: 17:32:F3:34:D8:AB:B6:8E:F8:22:54:6D:8F:6F:8E:81:56:3C:6F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FzLzNNirto74IlRtj2-OgVY8b9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/HEy2invRzmqIsyRCsgp2SoTyaS0.roa
Signing time: Sun 10 Sep 2023 12:23:52 +0000
ROA not before: Sun 10 Sep 2023 12:23:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60939
IP address blocks: 2a13:1d40::/30 maxlen: 30
2a13:1d44::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:7f:0c:61:a7:66:09:f3:05:c3:d4:38:2d:ab:4b:9a:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1732f334d8abb68ef822546d8f6f8e81563c6fd9
Validity
Not Before: Sep 10 12:23:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c4cb68a7bd1ce6a88b32442b20a764a84f2692d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:65:6f:c3:c5:02:33:9c:37:e1:05:77:34:49:
a5:68:80:39:e3:e2:55:55:1e:4b:d2:3c:61:58:cf:
17:e2:fc:e2:53:a4:ef:76:c8:66:23:44:07:96:70:
50:dc:e0:b1:77:63:05:55:07:32:7d:bf:1e:84:b5:
67:71:44:1b:2c:f4:80:5e:58:27:3a:d2:ab:8d:cc:
65:bd:9f:75:fa:6c:49:06:2a:4f:50:35:76:41:58:
35:4f:60:06:71:01:fb:cb:88:82:4a:4d:74:d3:30:
92:20:dc:a7:f1:b9:c9:5d:e9:15:46:1a:6c:47:ed:
56:f9:f7:f4:f6:e8:86:d5:e2:1e:75:ad:ed:c2:80:
c5:aa:ca:40:b3:32:a5:c3:c3:34:55:53:53:50:79:
3f:87:02:e4:dd:de:ae:55:69:84:11:ec:93:85:31:
89:e5:d7:50:58:ba:98:0d:8c:de:70:bd:b6:3f:78:
d9:4a:0e:b9:fc:73:6b:f8:41:14:f6:1b:90:69:39:
a4:be:28:52:7c:6e:9c:5b:96:3d:f2:0b:a2:2d:04:
e4:b1:b9:cc:6b:4a:47:f4:0a:9c:d3:d6:a9:71:28:
26:47:e2:a9:69:89:cf:fe:fe:d2:81:57:48:0b:a9:
60:51:64:b2:96:0a:85:f6:2b:26:93:8c:99:0c:f8:
e9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:4C:B6:8A:7B:D1:CE:6A:88:B3:24:42:B2:0A:76:4A:84:F2:69:2D
X509v3 Authority Key Identifier:
keyid:17:32:F3:34:D8:AB:B6:8E:F8:22:54:6D:8F:6F:8E:81:56:3C:6F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FzLzNNirto74IlRtj2-OgVY8b9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/HEy2invRzmqIsyRCsgp2SoTyaS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/FzLzNNirto74IlRtj2-OgVY8b9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1d40::/29
Signature Algorithm: sha256WithRSAEncryption
b0:80:b5:e3:56:84:b2:be:d9:b8:af:6e:d0:3e:52:0f:eb:aa:
a3:ed:f4:b5:5b:c2:f9:df:41:b7:df:29:25:5b:5c:65:eb:c1:
57:12:42:2d:90:7f:56:d8:a6:4b:91:4e:bc:be:c2:73:b6:07:
48:92:6a:89:95:ff:e0:6b:aa:bc:a9:82:97:b2:64:18:82:f1:
8f:05:68:41:37:f9:b9:07:63:3d:65:68:de:1f:57:04:0b:fe:
d9:4d:82:f3:06:6d:34:3e:dc:fe:0d:f2:05:f4:99:62:57:9f:
84:e2:d3:f6:56:9a:e4:30:f7:00:49:f6:6e:de:63:6b:ab:f6:
6c:18:cd:c3:a5:be:31:c0:12:a6:7c:a3:b9:37:b5:ad:6b:44:
ac:c3:98:82:0e:34:07:8e:f6:70:18:75:52:5a:56:f1:43:fb:
48:31:25:dd:a8:d3:64:eb:71:d1:dc:f0:17:24:d3:28:32:5f:
3c:73:9e:18:d4:2a:54:a3:52:47:42:76:97:6f:3b:1c:d1:00:
f0:b9:8b:a8:18:19:2b:10:97:2c:4e:43:86:0e:c6:74:58:ca:
8d:e4:e6:b2:a8:0b:1a:9f:63:ba:b8:cf:4e:81:05:7a:9b:b0:
0c:82:99:53:a2:a4:5a:5c:18:b1:79:c8:34:10:db:df:12:4b:
d0:73:8c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:19 2024 by rpki-client on console-ams.rpki-client.org