Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/UwDYxhnzR-XdlUQFtCWlJ9soxX0.roa
File: UwDYxhnzR-XdlUQFtCWlJ9soxX0.roa (raw, json)
Hash identifier: beh0IzdWD0WS4E0d6gT5DiUvXhyIm/HS0NojgG0KI84=
Subject key identifier: 53:00:D8:C6:19:F3:47:E5:DD:95:44:05:B4:25:A5:27:DB:28:C5:7D
Certificate issuer: /CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Certificate serial: 018B2F357A33B9D7A1106733C00CAE2C2D25
Authority key identifier: FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/UwDYxhnzR-XdlUQFtCWlJ9soxX0.roa
Signing time: Sat 14 Oct 2023 17:21:55 +0000
ROA not before: Sat 14 Oct 2023 17:21:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198304
IP address blocks: 2a13:a5c5:f000::/40 maxlen: 48
2a13:a5c3::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2f:35:7a:33:b9:d7:a1:10:67:33:c0:0c:ae:2c:2d:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Validity
Not Before: Oct 14 17:21:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5300d8c619f347e5dd954405b425a527db28c57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1f:2a:2e:29:65:c2:b2:af:09:b2:57:05:ac:
9f:fb:56:8f:e1:7f:31:b4:da:c4:dd:5e:dd:52:1d:
cb:f8:fa:7e:c7:f2:27:a4:87:95:28:93:42:14:08:
b7:d7:fd:97:0e:81:ba:98:b3:c8:1d:8b:6e:4c:84:
86:c8:7c:c6:89:58:5a:86:a6:c7:22:52:98:ee:9b:
4a:0b:f9:87:fa:f5:8b:17:6f:01:74:10:04:0e:db:
45:f1:8a:d5:1e:77:38:b5:ed:d9:78:de:ad:e4:2d:
6d:8c:ad:4d:53:61:78:51:12:4c:19:98:0b:5e:2a:
ab:7f:5f:3d:a6:72:e9:a3:74:2c:d8:3f:d1:3c:b2:
b2:65:ea:73:92:40:62:7c:12:61:a7:4e:1b:7f:03:
38:1a:96:8c:ec:71:72:42:91:7a:d0:c7:74:86:38:
d8:79:0c:f3:6a:fa:e6:83:9b:98:cd:50:53:db:5f:
ed:48:ab:f8:19:31:80:d0:40:8a:ed:cf:be:33:18:
b9:f3:bb:ee:c2:d4:83:af:b1:1e:84:bf:6a:2a:a4:
3d:cd:77:b4:9a:d5:f7:0c:b4:8f:be:ea:14:0b:4b:
01:52:f5:58:93:87:e7:a4:14:a9:77:cb:7c:30:c2:
e2:34:9b:f5:2e:fc:6f:25:cc:7d:6e:0c:80:62:a4:
58:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:00:D8:C6:19:F3:47:E5:DD:95:44:05:B4:25:A5:27:DB:28:C5:7D
X509v3 Authority Key Identifier:
keyid:FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/UwDYxhnzR-XdlUQFtCWlJ9soxX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a5c3::/32
2a13:a5c5:f000::/40
Signature Algorithm: sha256WithRSAEncryption
12:99:63:4b:eb:a7:10:79:ed:2d:3f:3f:d5:2d:8f:ac:22:6b:
b9:88:75:4a:d8:fd:a3:94:40:7d:d1:e7:2c:6c:23:1e:76:81:
7b:f6:98:51:d3:e2:1c:2f:07:28:d5:6c:32:48:69:31:b5:69:
cd:6c:dc:cf:d8:5c:92:fb:2e:78:9a:13:3f:40:a6:57:ff:d8:
73:3a:0c:ad:1a:42:70:77:92:1f:07:bc:65:e3:56:b1:62:ab:
3e:70:59:a7:82:03:ba:d8:10:98:39:08:52:74:f1:8f:d3:be:
c4:7a:4e:8c:11:07:ba:bf:03:dd:98:0b:14:29:73:f3:f9:e7:
e1:12:24:ed:e5:a0:36:00:d7:62:01:93:f0:8b:83:da:a3:b1:
33:8c:bb:d7:ba:7b:28:74:12:40:38:41:01:ea:3c:52:15:fb:
5e:e2:99:de:f9:a7:32:dd:f2:7e:d6:50:12:f5:a9:aa:db:68:
87:e8:55:62:93:3d:f2:d9:92:15:e4:56:f1:7f:8a:9b:49:69:
29:7b:1d:c7:cf:4b:f5:08:bf:09:77:2d:d9:34:67:1e:38:9e:
3f:9b:00:39:6f:2d:c0:15:68:29:ba:be:93:96:e8:f9:61:ae:
c3:ee:9d:e2:23:f5:bc:62:00:f4:23:d3:62:d1:a8:b0:74:d0:
4e:63:fd:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:00 2024 by rpki-client on console-fra.rpki-client.org