Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/Tgykta7TVCg97Et8VWvxvNCHZ7Q.roa
File: Tgykta7TVCg97Et8VWvxvNCHZ7Q.roa (raw, json)
Hash identifier: mXU23hX2QhEZtm1QVzvUDn9ufCPb+I3w5NKPW3eb8RA=
Subject key identifier: 4E:0C:A4:B5:AE:D3:54:28:3D:EC:4B:7C:55:6B:F1:BC:D0:87:67:B4
Certificate issuer: /CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Certificate serial: 018608C8A5528B90A8242653004D07E81224
Authority key identifier: AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/Tgykta7TVCg97Et8VWvxvNCHZ7Q.roa
Signing time: Tue 31 Jan 2023 17:03:32 +0000
ROA not before: Tue 31 Jan 2023 17:03:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204773
IP address blocks: 2a13:3000::/30 maxlen: 30
2a13:3004::/31 maxlen: 31
2a13:3006::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 25 Jul 2023 07:56:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:c8:a5:52:8b:90:a8:24:26:53:00:4d:07:e8:12:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Validity
Not Before: Jan 31 17:03:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e0ca4b5aed354283dec4b7c556bf1bcd08767b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:19:bb:ba:f1:a3:dd:5b:e0:52:d1:31:c7:0c:
78:80:ac:2b:ea:b0:29:d0:aa:9f:3f:81:a4:a9:90:
b6:b8:8d:76:df:c7:07:1f:08:e0:5c:0b:50:9c:f5:
5d:37:79:d4:30:fa:cf:53:1b:db:6f:7f:ef:28:27:
54:36:5c:97:9c:f6:57:f2:54:fe:a2:e7:c8:28:9e:
37:89:25:2e:3f:2f:4c:ff:7c:9c:a3:39:53:d5:fd:
9d:e3:fe:a1:60:8a:d5:a2:78:a4:22:1e:d2:40:4c:
15:27:bb:1d:2c:0d:b1:4d:64:67:61:c7:d8:1c:ea:
e8:a8:33:46:fa:90:4e:d0:1f:b7:0d:9b:b4:8b:4b:
8d:78:cd:c2:0a:09:ee:60:73:e6:d9:6c:48:e0:f2:
fd:4a:0e:3f:45:89:aa:80:54:f3:7b:b0:f8:41:be:
e4:27:8f:b3:1d:3a:d3:d0:0b:f4:f2:00:3e:6b:8d:
ec:ec:3c:24:57:9e:02:7f:ef:20:ff:08:c4:be:ab:
81:e8:7e:54:67:01:15:8e:a8:c9:65:42:4b:e1:f1:
27:cc:75:93:3d:14:8a:6c:08:a7:26:2d:b8:ca:86:
e8:fe:be:2a:bb:83:8a:da:3a:d5:58:ce:98:de:69:
b0:3b:6a:e2:c2:c4:61:f4:dd:50:1f:ee:39:0b:c6:
f8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:0C:A4:B5:AE:D3:54:28:3D:EC:4B:7C:55:6B:F1:BC:D0:87:67:B4
X509v3 Authority Key Identifier:
keyid:AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/Tgykta7TVCg97Et8VWvxvNCHZ7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3000::-2a13:3006:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8f:9f:59:b9:a5:de:59:a8:32:f6:28:b7:95:1b:b1:ac:44:51:
52:f7:30:1c:30:85:98:23:da:f6:4b:99:f3:bb:bf:be:20:ef:
81:d4:bd:cd:38:00:ac:68:55:86:ec:5b:7c:9a:4f:2e:cb:05:
b0:78:2d:69:7d:0a:66:fc:c5:f9:e5:a5:9b:a1:5c:d1:cc:ca:
cc:31:f4:70:36:19:a1:4f:f5:c7:a2:5e:88:d3:48:5f:a5:79:
57:70:92:d2:ff:62:67:f8:24:b2:49:22:b2:21:85:86:cc:fb:
aa:90:bf:b9:ca:e6:7c:b4:ef:70:a3:44:53:cc:2e:cd:9b:46:
10:71:3a:da:59:0b:47:0c:1f:35:ea:da:24:7c:85:e1:86:b6:
a8:7c:7c:4f:02:b1:7e:f2:ff:53:87:2c:66:0e:6b:7c:d2:38:
22:f8:ba:54:59:69:e1:38:49:da:0a:21:4f:11:69:e4:39:48:
f4:1b:3a:9b:6c:1c:2e:56:b1:da:19:d3:1f:51:06:41:ca:f4:
11:79:68:e2:04:79:3a:fa:a6:ad:2c:a5:e1:0c:1c:d8:33:be:
df:2b:2b:ba:f0:a9:49:42:36:11:7b:d6:60:d6:41:be:39:11:
4d:bd:81:a8:0f:b1:10:20:87:36:9a:fd:54:a7:c8:c4:f3:a0:
d7:4f:68:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:26 2024 by rpki-client on console-fra.rpki-client.org