Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/MWwzq0iANbEgarIDQLso3kl3LPI.roa
File: MWwzq0iANbEgarIDQLso3kl3LPI.roa (raw, json)
Hash identifier: zugAf3393lJgSCE0mMHwt8kHRF0XG6UFiLi60kLs9SA=
Subject key identifier: 31:6C:33:AB:48:80:35:B1:20:6A:B2:03:40:BB:28:DE:49:77:2C:F2
Certificate issuer: /CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Certificate serial: 0189DF2F7C4EE7D0D148B1BB13D462FB3FEE
Authority key identifier: FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/MWwzq0iANbEgarIDQLso3kl3LPI.roa
Signing time: Thu 10 Aug 2023 11:22:58 +0000
ROA not before: Thu 10 Aug 2023 11:22:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208747
IP address blocks: 2a13:a5c7:1100::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:df:2f:7c:4e:e7:d0:d1:48:b1:bb:13:d4:62:fb:3f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Validity
Not Before: Aug 10 11:22:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=316c33ab488035b1206ab20340bb28de49772cf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:25:5f:93:5f:d2:df:e6:0b:2b:c7:98:62:6a:
70:27:0d:3e:29:4d:c1:85:5f:3d:2c:77:7c:6e:b5:
0c:2b:b0:a3:4a:b9:af:8f:4d:2c:56:a5:00:5a:2f:
5b:d4:1a:4f:8e:63:98:c4:2a:28:43:6b:d8:cb:0e:
18:60:16:5b:75:66:c0:b2:ef:19:98:0a:5a:84:26:
23:86:e7:59:1f:e9:c7:fc:18:b4:d0:5c:e3:f2:63:
e6:2f:a5:a3:ae:42:bc:96:ac:2e:cb:84:8f:b9:a9:
cc:78:d3:4f:42:d8:b2:83:a6:e3:35:46:5a:34:9c:
1c:79:ac:a4:1e:10:e5:08:d5:27:a4:2e:c4:4e:13:
db:1c:08:bf:21:bc:ce:06:dc:38:85:24:31:ac:1b:
31:af:b7:c1:c3:f4:32:a8:da:f6:af:ab:e2:a2:8f:
7a:51:85:a0:3a:da:9f:5f:b0:19:26:61:48:5a:7c:
c7:9a:52:ae:18:14:69:85:7c:cf:c7:03:d8:5e:4b:
56:c1:7a:7f:e2:bb:24:4c:1e:d6:a0:6d:40:58:aa:
42:11:09:82:61:b2:6f:63:fa:eb:84:be:ec:e0:19:
30:83:14:b0:6a:75:96:cd:c3:37:00:50:c4:f2:94:
af:49:93:ce:49:1d:59:bc:b8:80:ac:e0:e7:d8:c6:
90:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:6C:33:AB:48:80:35:B1:20:6A:B2:03:40:BB:28:DE:49:77:2C:F2
X509v3 Authority Key Identifier:
keyid:FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/MWwzq0iANbEgarIDQLso3kl3LPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a5c7:1100::/40
Signature Algorithm: sha256WithRSAEncryption
a3:de:7a:c6:07:63:18:0d:1a:8a:f5:a1:46:c9:66:b9:05:76:
25:dd:48:55:e5:85:f7:7a:9f:d4:3c:70:db:c7:e9:c5:77:f1:
2f:30:0a:39:c8:e0:06:2c:b8:89:f0:e1:6a:ee:2a:d8:ee:e7:
5c:2d:73:cf:6e:ce:42:f0:2a:5e:a0:a6:93:8e:e6:25:17:60:
f7:11:4a:74:f4:39:61:fe:da:1f:da:88:ef:91:45:b7:08:f7:
a7:36:86:d6:11:5c:7f:41:61:2c:24:fd:56:b7:25:d6:ce:c4:
38:81:8b:29:ea:38:6f:14:6a:84:fe:58:55:0b:d1:51:7d:7f:
e6:19:55:84:49:7b:2d:bf:92:28:76:a7:bd:c5:97:1c:ff:01:
fc:8c:9a:eb:0a:c5:48:1f:59:50:33:f6:e6:f8:ff:58:c9:87:
16:df:ff:ad:88:0c:44:79:60:f6:f7:86:cf:f8:03:3c:be:cf:
10:35:c1:ec:39:67:65:a4:2b:aa:b8:f4:d5:00:a7:5a:e8:e6:
f9:95:12:00:31:d8:5b:60:65:31:2b:92:24:3c:3b:6f:a2:d3:
f3:3a:9f:b6:da:fe:d2:09:c6:60:a5:00:3f:05:46:77:0e:a7:
c5:94:2d:d6:47:d6:e2:14:4e:7e:35:c3:1e:8a:9e:07:88:0d:
d5:bf:6b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:33 2024 by rpki-client on console-fra.rpki-client.org