Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/OQFPL_7ohYdKM5N35Ykvr2N2yZk.roa
File: OQFPL_7ohYdKM5N35Ykvr2N2yZk.roa (raw, json)
Hash identifier: wvRKUY41PDa3U4+vWlzN38ecaUn/Zcwx1nCL+O1Bydk=
Subject key identifier: 39:01:4F:2F:FE:E8:85:87:4A:33:93:77:E5:89:2F:AF:63:76:C9:99
Certificate issuer: /CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Certificate serial: 018B8B02212FFAD53B1EBA761154FF39475A
Authority key identifier: FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/OQFPL_7ohYdKM5N35Ykvr2N2yZk.roa
Signing time: Wed 01 Nov 2023 13:10:54 +0000
ROA not before: Wed 01 Nov 2023 13:10:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216056
IP address blocks: 2a13:a5c7:1600::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:02:21:2f:fa:d5:3b:1e:ba:76:11:54:ff:39:47:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Validity
Not Before: Nov 1 13:10:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39014f2ffee885874a339377e5892faf6376c999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e7:eb:10:2f:98:15:84:9d:85:b2:b3:79:13:
3b:79:f6:50:a7:fd:07:88:ec:88:e6:bd:18:c0:ec:
22:58:7e:3b:61:57:85:91:49:bb:bc:2a:cf:a1:20:
ad:c4:fb:85:52:bb:c1:3c:6b:ec:5e:ca:ae:19:dc:
de:f2:23:2b:a6:69:dd:4d:ae:66:ae:9d:8d:c1:ca:
ab:3c:e9:4f:f6:c2:b3:47:fd:ee:05:84:01:ff:52:
33:04:6c:96:c4:0a:52:71:8c:26:92:80:a6:71:11:
5e:14:ca:f3:4e:27:a0:44:f3:08:2a:4f:47:25:68:
8a:01:bd:58:ce:de:3d:c9:22:9e:e5:d6:7c:48:0a:
3d:90:5c:79:cb:9d:53:33:88:b5:4b:8e:57:fc:61:
0a:af:c6:7a:58:41:a0:67:85:cc:86:46:21:13:07:
f1:a8:0b:65:d4:9d:c7:89:65:4a:ee:f9:bd:35:f7:
77:7c:c6:fb:ba:a7:9d:44:b1:38:7e:9f:87:49:41:
d6:a4:0e:f0:0a:db:a6:e3:11:97:4e:3f:e0:36:48:
af:f7:48:d3:cd:e6:43:f3:69:68:17:14:12:b3:21:
e0:90:28:33:85:63:40:8c:a1:a0:57:53:09:3b:8e:
bf:b3:7b:9f:1f:30:04:74:d9:d3:96:dd:67:32:fc:
a0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:01:4F:2F:FE:E8:85:87:4A:33:93:77:E5:89:2F:AF:63:76:C9:99
X509v3 Authority Key Identifier:
keyid:FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/OQFPL_7ohYdKM5N35Ykvr2N2yZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a5c7:1600::/40
Signature Algorithm: sha256WithRSAEncryption
46:05:ca:96:4d:80:01:85:4e:ae:ac:84:53:3c:8e:37:50:92:
13:50:f0:ab:40:7b:aa:47:cc:65:ba:d1:70:64:03:c4:59:31:
ac:c6:6b:77:1d:21:95:c6:ba:f0:77:fe:90:85:5f:97:70:c2:
a5:b0:8f:fc:ab:67:b4:68:74:77:e6:fe:83:d3:6e:af:46:b8:
38:f5:24:24:81:2f:3a:69:4d:df:f2:90:19:69:71:14:da:47:
fb:32:fd:0e:dd:bc:76:19:43:3e:e8:e2:e3:9d:1d:a0:e6:ce:
61:79:84:0a:23:99:5b:e2:ff:8d:d6:68:f7:fc:b5:1f:6c:f1:
06:99:5f:6d:3d:94:b4:18:2a:04:d4:17:dd:85:14:21:15:b5:
f8:16:20:68:3f:a3:4f:e4:56:e2:8b:32:83:a4:4e:08:9e:a0:
67:97:a8:ac:08:f7:f2:a7:a2:a0:b6:e8:26:90:1d:27:c8:17:
dc:34:31:ec:e5:69:4e:d1:95:82:69:a3:47:69:1c:4f:c6:11:
6e:04:d7:23:be:0b:3a:2e:aa:9e:97:fc:d5:ce:52:0c:af:2e:
e9:97:cb:f3:5f:29:b5:ca:1e:57:fa:ad:32:8a:01:f9:6f:0d:
ea:e2:3b:f2:5c:8a:79:bc:2d:7d:7e:4c:ad:ee:05:57:f1:3d:
a4:52:10:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:00 2024 by rpki-client on console-fra.rpki-client.org