Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/1-IDf_S4eG993NWZ6OIsTkNHEw4E.roa
File: 1-IDf_S4eG993NWZ6OIsTkNHEw4E.roa (raw, json)
Hash identifier: /aTB9yhITs/R8s7hoZ/WQUZc9/7Bfi4RgKBJMSYcLrg=
Subject key identifier: F8:80:DF:FD:2E:1E:1B:DF:77:35:66:7A:38:8B:13:90:D1:C4:C3:81
Certificate issuer: /CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Certificate serial: 018A3A62AAF98B235D135AB0E52FF6DDE459
Authority key identifier: FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/1-IDf_S4eG993NWZ6OIsTkNHEw4E.roa
Signing time: Mon 28 Aug 2023 04:24:19 +0000
ROA not before: Mon 28 Aug 2023 04:24:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151187
IP address blocks: 2a13:a5c5::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3a:62:aa:f9:8b:23:5d:13:5a:b0:e5:2f:f6:dd:e4:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Validity
Not Before: Aug 28 04:24:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f880dffd2e1e1bdf7735667a388b1390d1c4c381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f2:a3:eb:d1:3e:8f:ee:aa:f2:7a:6a:82:fd:
bc:a4:43:b0:5d:4d:ec:1c:2a:98:0d:20:71:4f:e1:
c5:8b:99:13:73:3d:d5:bf:57:3d:c9:d0:4c:26:e8:
d9:02:6f:c1:27:03:6a:4f:69:5e:5f:23:90:6e:3f:
8b:f5:38:13:13:b8:d3:3c:10:31:c6:0e:00:f0:81:
82:49:52:3a:cb:1d:c1:a0:b8:e3:9f:ea:94:07:22:
de:e0:68:bf:7d:48:3a:53:10:7d:8c:52:68:a9:cd:
08:7d:5d:a3:28:9f:d5:c5:a5:74:f7:76:8e:b6:01:
5e:15:4e:7a:81:f8:00:b5:10:08:41:9c:18:e5:bc:
b3:dc:5c:6b:60:07:26:f1:49:0b:84:f4:65:d1:ff:
fa:8f:d6:b7:60:5f:a0:b8:22:7f:0f:36:2d:b1:4d:
7d:2e:90:18:12:11:c5:11:11:68:a1:58:15:7c:12:
8f:4a:26:de:42:c7:fe:0b:70:b2:29:fb:ff:bd:3c:
27:78:e0:d4:13:f2:68:c7:ee:25:64:72:00:c7:af:
30:a9:c3:b0:37:e8:40:a5:74:2c:36:c2:68:d2:b4:
9d:a6:67:9e:b6:f2:3b:c9:8a:5f:ff:ed:1f:0f:2f:
b9:db:35:bc:95:6b:5a:de:57:d3:d6:aa:2b:e1:60:
a4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:80:DF:FD:2E:1E:1B:DF:77:35:66:7A:38:8B:13:90:D1:C4:C3:81
X509v3 Authority Key Identifier:
keyid:FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/1-IDf_S4eG993NWZ6OIsTkNHEw4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a5c5::/48
Signature Algorithm: sha256WithRSAEncryption
aa:4f:4a:ec:af:7b:9f:bd:c6:55:d7:00:73:d2:8b:b3:7d:9b:
f7:db:8d:a1:65:27:25:de:b4:40:15:d2:9a:53:a7:79:66:c1:
22:95:36:69:77:65:98:f3:96:ec:1a:a2:37:f0:a4:de:d8:3e:
d9:e7:90:02:e0:9d:38:90:42:5d:26:9a:c5:af:e4:4b:39:b0:
f0:9a:c4:b8:08:c7:cc:75:78:e9:78:39:db:5e:28:d1:ca:7a:
45:c7:db:d6:99:d1:6e:22:1f:20:b1:c7:c2:89:60:30:29:66:
c4:fd:d9:d8:ce:9b:c1:81:2c:96:6a:38:76:4e:a6:e8:87:57:
77:3d:b5:a4:83:c5:dc:c7:2f:7e:09:86:18:21:dc:d1:a1:65:
ad:0d:49:6e:68:df:08:8d:25:a3:6b:25:dc:44:35:58:bb:a3:
4a:d2:73:a1:c2:72:c4:c0:c9:96:3c:86:37:d9:7b:e0:95:eb:
c3:64:05:f8:84:6f:4b:f6:5f:77:ee:44:9a:95:aa:62:fb:69:
3f:82:fa:af:1a:6c:34:c8:39:52:ad:0c:99:34:38:30:c8:f7:
11:d1:e4:42:d4:8f:29:61:49:e8:6f:8b:ea:cc:c9:0c:07:c2:
13:56:d3:1e:5c:f7:7e:18:5c:e2:d0:e5:74:5f:08:29:67:80:
62:05:09:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:00 2024 by rpki-client on console-fra.rpki-client.org