Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/OyknN8qBHDkJ_u383wNhCc3hUQg.roa
File: OyknN8qBHDkJ_u383wNhCc3hUQg.roa (raw, json)
Hash identifier: WRz+GvZQxK7hVpMEQ0Nlkb5a7H6wBtBPPtOPDTwyuu4=
Subject key identifier: 3B:29:27:37:CA:81:1C:39:09:FE:ED:FC:DF:03:61:09:CD:E1:51:08
Certificate issuer: /CN=1732f334d8abb68ef822546d8f6f8e81563c6fd9
Certificate serial: 018CC4934C177943DD771B0236EC922A5033
Authority key identifier: 17:32:F3:34:D8:AB:B6:8E:F8:22:54:6D:8F:6F:8E:81:56:3C:6F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FzLzNNirto74IlRtj2-OgVY8b9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/OyknN8qBHDkJ_u383wNhCc3hUQg.roa
Signing time: Mon 01 Jan 2024 10:30:36 +0000
ROA not before: Mon 01 Jan 2024 10:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53358
IP address blocks: 2a13:1d40::/30 maxlen: 30
2a13:1d44::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 18 Mar 2024 10:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:4c:17:79:43:dd:77:1b:02:36:ec:92:2a:50:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1732f334d8abb68ef822546d8f6f8e81563c6fd9
Validity
Not Before: Jan 1 10:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b292737ca811c3909feedfcdf036109cde15108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f9:1d:f4:13:f8:d9:3e:ad:48:78:fe:e6:a9:
36:35:dd:df:d9:26:aa:96:cd:57:cd:12:89:98:8c:
ac:77:d8:34:e2:8f:54:10:35:ec:56:33:94:7e:59:
76:11:ab:21:5c:d9:70:9d:e3:90:e5:6e:11:7c:f9:
21:3f:c2:2f:21:9d:d6:6a:5f:9d:d7:9f:47:4a:8d:
ec:bc:7c:d6:74:2e:f3:98:27:f8:cf:65:e2:bf:c6:
5a:40:f5:74:26:e6:1f:51:d2:18:8f:0f:b8:9b:a6:
04:d9:27:25:86:f8:14:4a:72:91:f2:b2:2d:57:40:
45:ac:0e:a1:21:fd:94:27:c7:72:f8:51:f7:a7:f3:
15:3a:4e:c3:c0:62:64:ed:95:ab:0a:52:eb:eb:a4:
03:1d:8b:f6:af:8a:15:cd:90:eb:48:bf:5a:c1:74:
9e:15:89:97:24:8c:37:21:12:a8:c3:da:c6:56:36:
2d:a6:7f:eb:19:64:81:ec:30:92:02:8d:ba:99:42:
45:c5:16:ff:b2:e8:ae:0d:e4:ef:5d:8d:c8:c1:89:
69:29:14:67:78:0c:f0:46:26:ae:8e:49:34:d0:d4:
15:65:46:17:5c:a4:5e:8f:90:df:62:d8:cf:d9:c7:
f8:03:71:d1:70:4f:32:ca:15:0f:69:1e:3f:0a:34:
c6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:29:27:37:CA:81:1C:39:09:FE:ED:FC:DF:03:61:09:CD:E1:51:08
X509v3 Authority Key Identifier:
keyid:17:32:F3:34:D8:AB:B6:8E:F8:22:54:6D:8F:6F:8E:81:56:3C:6F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FzLzNNirto74IlRtj2-OgVY8b9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/OyknN8qBHDkJ_u383wNhCc3hUQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/FzLzNNirto74IlRtj2-OgVY8b9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1d40::/29
Signature Algorithm: sha256WithRSAEncryption
55:ea:1d:eb:05:08:61:66:be:55:1a:d4:cc:6e:60:45:16:64:
ad:c3:7b:bf:99:05:c4:fc:d7:b4:e6:ac:0d:aa:c2:9e:65:c6:
cd:65:b4:0a:14:66:19:54:75:e7:9b:ba:20:b1:7e:b6:9d:10:
6c:c4:ac:ae:df:f1:5b:17:11:d5:c6:8e:d8:c6:6c:9c:32:96:
5b:48:14:a2:eb:d8:a7:c7:fe:a0:0e:3b:3e:e3:2b:34:9c:aa:
fa:18:4f:56:12:f4:c1:72:9e:c6:79:56:30:13:b3:94:4c:bf:
a8:8b:f3:ce:b1:1b:5b:8e:37:61:9f:20:cf:bc:aa:39:9d:fc:
6f:67:2b:93:88:88:9a:ba:ad:00:e9:49:71:57:24:02:c1:46:
4d:e0:68:aa:3d:3c:79:ee:a7:3a:57:dc:4d:7b:98:88:f5:45:
1e:6b:ae:f6:9f:8c:f6:2f:f1:9e:66:cf:5c:b4:1a:54:92:ae:
9b:51:0d:d3:fb:22:c5:5f:21:36:6b:54:8e:f2:74:70:c7:82:
eb:9b:cc:4a:a0:8e:c7:3f:4f:1d:b8:f7:9b:7d:e2:75:1c:21:
9d:c2:18:2e:64:7a:43:d2:18:fb:bf:22:da:4e:e3:49:aa:ed:
03:9b:fb:43:2b:99:a7:3d:df:e1:ba:53:ea:a7:c5:55:28:ca:
7f:4c:7d:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:19 2024 by rpki-client on console-ams.rpki-client.org