Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/1-2wTQ8qNx9yLmnS4nTPvlLO4DvQ.roa
File: 1-2wTQ8qNx9yLmnS4nTPvlLO4DvQ.roa (raw, json)
Hash identifier: xaE7UNz+MPdZLEUFNbrMmhvhLnoSxlQ37Irs1ZzWwWc=
Subject key identifier: FB:6C:13:43:CA:8D:C7:DC:8B:9A:74:B8:9D:33:EF:94:B3:B8:0E:F4
Certificate issuer: /CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Certificate serial: 018A98FBC012E5B22EC2492DADAEA5A2EF8D
Authority key identifier: FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/1-2wTQ8qNx9yLmnS4nTPvlLO4DvQ.roa
Signing time: Fri 15 Sep 2023 13:15:50 +0000
ROA not before: Fri 15 Sep 2023 13:15:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216296
IP address blocks: 2a13:a5c5::/32 maxlen: 48
2a13:a5c7:1400::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:fb:c0:12:e5:b2:2e:c2:49:2d:ad:ae:a5:a2:ef:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Validity
Not Before: Sep 15 13:15:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb6c1343ca8dc7dc8b9a74b89d33ef94b3b80ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c7:76:55:d0:57:4d:e6:49:4f:91:83:c7:09:
d1:8d:9b:2a:79:db:2e:b7:d2:db:cb:27:e0:aa:cf:
60:4a:96:d2:c7:8e:c5:b3:ef:58:c2:32:1b:78:af:
9c:76:01:43:71:2c:e4:f9:4e:51:a3:0d:ce:ff:33:
97:25:e1:11:2b:e8:45:c4:69:76:a4:ac:58:a7:97:
7a:9b:fe:47:53:23:a6:59:92:23:c0:bc:09:43:7c:
f3:27:cf:d4:20:24:7c:95:e7:ba:9d:55:e6:32:4f:
83:c8:80:39:51:2c:f0:47:39:7d:6a:ab:ed:3f:63:
45:22:f5:57:c9:7a:61:b0:c0:a4:ed:55:54:eb:ab:
da:22:ba:e4:c7:d2:9a:ac:4e:96:a3:24:f8:94:43:
d1:a8:03:76:ee:1b:85:4b:9f:89:55:ec:dc:36:c9:
2d:df:12:3f:54:5b:8e:ae:1e:3b:1d:02:b7:be:db:
65:4f:21:48:f5:10:b5:6b:7f:cd:a9:68:4b:88:a4:
9a:c7:db:38:cd:89:d8:c5:d7:b1:60:df:ca:55:55:
06:3e:98:cb:13:84:0a:14:6c:a5:a8:2f:e0:c6:c9:
4e:25:df:af:80:dc:be:4a:93:a1:70:e8:56:00:b0:
60:84:c7:ea:8c:e8:7f:2d:ab:32:1b:3a:21:6e:17:
9b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:6C:13:43:CA:8D:C7:DC:8B:9A:74:B8:9D:33:EF:94:B3:B8:0E:F4
X509v3 Authority Key Identifier:
keyid:FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/1-2wTQ8qNx9yLmnS4nTPvlLO4DvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a5c5::/32
2a13:a5c7:1400::/40
Signature Algorithm: sha256WithRSAEncryption
2f:af:7b:19:45:18:c4:bc:a1:37:6a:14:ab:0e:ad:40:fd:d6:
7e:c9:28:16:4c:2c:f7:62:72:bc:51:9b:ee:30:ec:b3:74:5f:
24:1a:e7:a0:6c:8f:10:ed:48:7e:78:c1:93:72:e0:5b:0d:a7:
38:46:ff:5d:88:08:e8:2c:5b:cf:a3:9d:a6:4a:10:d6:9e:3f:
c9:4a:d8:2e:62:65:a4:a9:da:ce:9b:9a:1b:d7:59:dd:03:78:
2b:ac:b6:dd:cc:83:60:08:ed:11:72:ec:3b:07:45:96:6f:33:
a2:db:52:c1:2e:b8:9a:36:78:4b:5d:e8:31:70:70:05:0d:6e:
45:11:f1:ce:0b:a1:d2:c4:7d:21:18:68:c6:0e:11:77:5f:e1:
87:68:5a:ab:31:58:88:bd:94:bc:40:e2:59:fc:93:d9:ad:25:
ed:e1:05:5e:82:24:29:9b:82:5d:70:f2:a2:ba:fc:d1:0a:57:
24:0a:4d:29:e5:e5:19:9c:01:4a:3b:ec:cd:b7:2c:65:b8:46:
3f:3d:95:a1:de:19:f1:68:e6:53:dc:a9:fc:8c:a2:cb:b9:46:
3d:8d:5a:a5:e3:4e:ce:65:c3:4c:7c:51:7a:d6:e1:a1:4f:13:
32:4e:50:c4:7e:ed:6b:79:7f:91:48:fc:1f:79:76:f1:d2:04:
b0:5b:f2:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:00 2024 by rpki-client on console-fra.rpki-client.org