Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/0kOUkA9gX_ZOm6MTETBxAl8NR0s.roa
File: 0kOUkA9gX_ZOm6MTETBxAl8NR0s.roa (raw, json)
Hash identifier: ammAz4yMSMq8An6/B5NxyFCexsBpQFWmu52Xq2oZW0E=
Subject key identifier: D2:43:94:90:0F:60:5F:F6:4E:9B:A3:13:11:30:71:02:5F:0D:47:4B
Certificate issuer: /CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Certificate serial: 0189D5FA015709288147B8EC1543AE830419
Authority key identifier: FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/0kOUkA9gX_ZOm6MTETBxAl8NR0s.roa
Signing time: Tue 08 Aug 2023 16:27:58 +0000
ROA not before: Tue 08 Aug 2023 16:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62246
IP address blocks: 2a13:a5c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d5:fa:01:57:09:28:81:47:b8:ec:15:43:ae:83:04:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Validity
Not Before: Aug 8 16:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d24394900f605ff64e9ba313113071025f0d474b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:65:8e:a8:d3:2e:b6:bd:f6:f1:ef:a3:76:a8:
f1:70:3b:f2:e6:59:d6:c6:1f:4b:46:5f:2b:4d:71:
51:be:ac:de:a0:45:74:92:bf:6a:73:30:f6:98:4b:
59:13:80:d4:be:a0:23:4a:96:ce:ca:b7:cb:b6:8a:
30:8e:63:c2:9b:30:06:ac:b5:5d:3f:ad:9a:97:08:
0a:d5:55:a0:c8:22:7e:1d:08:b0:75:62:ad:71:ca:
1c:cc:28:6c:1a:b3:98:2d:6d:ca:81:06:3f:fb:27:
9e:13:89:c5:85:d3:76:f0:29:33:39:9e:a9:48:53:
7f:74:20:d9:5e:5a:a5:7c:01:bf:0d:5f:f3:6d:82:
bc:26:67:b3:51:14:69:c8:0a:f0:f7:1e:6b:13:03:
26:e3:7b:ed:af:03:c4:f3:64:00:66:f6:07:ad:80:
21:1e:24:8c:e9:d2:8c:53:5d:5b:85:35:52:b8:49:
a5:b5:fe:4a:a7:e0:fa:c9:cb:d2:e6:e7:88:82:20:
62:3e:f5:39:f9:95:d3:27:6d:a5:89:5c:76:0a:b3:
06:ad:ef:48:0c:ef:f6:13:07:52:55:25:94:03:44:
ec:c2:88:50:1f:19:2c:4e:37:c1:b3:8a:c4:54:df:
f7:69:54:1d:05:03:ad:11:a2:fe:aa:c1:a9:40:49:
8f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:43:94:90:0F:60:5F:F6:4E:9B:A3:13:11:30:71:02:5F:0D:47:4B
X509v3 Authority Key Identifier:
keyid:FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/0kOUkA9gX_ZOm6MTETBxAl8NR0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a5c0::/32
Signature Algorithm: sha256WithRSAEncryption
77:b0:b7:cb:ca:e4:20:a5:76:6a:33:30:b8:d4:b1:47:0d:31:
08:82:b1:b3:12:ad:0f:ea:ff:53:d1:28:59:38:18:d8:b0:e2:
d8:fc:b1:f3:4f:58:83:bf:7c:48:79:f1:3a:79:22:e7:f9:1d:
8d:0c:63:61:6f:90:ee:fc:55:bd:72:c0:19:88:52:70:52:9d:
8d:db:7d:bd:6b:bd:fa:22:c3:16:4f:6c:93:26:6e:41:db:47:
27:82:64:a9:e1:a2:e4:63:80:37:9f:ff:50:d6:f0:dd:a7:a7:
e7:a0:62:d6:55:e4:69:6e:fa:f3:d9:1d:e8:d7:39:ec:08:53:
d2:03:8d:6e:0d:6e:21:bb:09:23:8d:05:ad:c2:9c:61:18:7b:
1d:a1:dd:56:b8:92:e9:39:c5:ea:0e:dc:6b:1a:25:53:36:0a:
1d:c9:58:3d:aa:d2:00:8e:c4:58:38:bc:28:aa:2c:de:1e:fc:
30:86:b1:26:9a:fd:ac:c0:d6:94:fd:cc:8b:5c:54:c1:63:d7:
a8:67:ec:96:51:db:01:70:4f:0a:85:52:5a:67:16:dc:51:98:
59:3a:48:d5:3d:06:ee:73:dd:13:54:20:83:ef:c6:20:29:dc:
9e:db:91:ca:6e:a5:5f:4c:cf:7c:c2:30:e9:38:1b:28:5a:8c:
d2:99:8f:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:00 2024 by rpki-client on console-fra.rpki-client.org