Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/fdy7wXX76J7ZL07Jjfh5MDZ5fMk.roa
File: fdy7wXX76J7ZL07Jjfh5MDZ5fMk.roa (raw, json)
Hash identifier: 5ehMJ263k6e8/LZrG/E/uUqILDmp23jWrWvyEUGiYSE=
Subject key identifier: 7D:DC:BB:C1:75:FB:E8:9E:D9:2F:4E:C9:8D:F8:79:30:36:79:7C:C9
Certificate issuer: /CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Certificate serial: 01856D9D3A54B011B4B12E7AECACD7B2B432
Authority key identifier: AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/fdy7wXX76J7ZL07Jjfh5MDZ5fMk.roa
Signing time: Sun 01 Jan 2023 13:54:58 +0000
ROA not before: Sun 01 Jan 2023 13:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204773
IP address blocks: 2a13:3000::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 31 Jan 2023 16:36:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:3a:54:b0:11:b4:b1:2e:7a:ec:ac:d7:b2:b4:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Validity
Not Before: Jan 1 13:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ddcbbc175fbe89ed92f4ec98df8793036797cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3e:48:53:7a:8b:9b:83:c4:58:55:e7:8e:c4:
df:86:25:78:00:fa:14:19:23:93:7a:d7:3f:2c:48:
7d:9e:be:a1:f6:8e:86:61:08:41:de:bb:7d:e1:ab:
66:7c:57:7c:81:60:3b:26:f0:99:04:8f:e4:60:e0:
32:91:2c:c5:b3:05:d5:58:05:bf:ad:26:33:a2:38:
e2:d0:a7:99:7e:d8:67:c0:d6:00:4a:7f:0d:2f:46:
f2:de:64:2c:f9:2c:ea:59:14:59:7d:1b:68:ae:ee:
8c:ba:92:ff:4b:ea:3f:d4:9b:96:1a:43:61:a6:bd:
57:07:82:97:97:5d:f0:8a:80:51:29:da:95:e7:90:
c3:53:67:37:6e:f7:bc:2f:13:29:5a:bc:c3:b2:a7:
02:20:a8:d1:89:0b:aa:23:5e:d1:44:9a:33:d3:05:
13:6a:f6:ac:c4:a3:bb:9e:e1:82:2d:63:11:ef:a7:
43:01:0f:82:e3:7b:8c:61:d9:32:6e:66:d7:69:61:
e2:1a:6f:42:a7:a8:8f:51:97:ca:76:4e:3a:ac:29:
44:3c:31:6f:f3:9c:92:a9:e3:f9:21:8d:a1:5f:14:
51:c7:1b:60:63:8c:66:03:9e:53:19:88:9b:ba:d0:
2b:b0:8a:37:3f:84:d0:43:aa:53:05:55:dc:5f:60:
91:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DC:BB:C1:75:FB:E8:9E:D9:2F:4E:C9:8D:F8:79:30:36:79:7C:C9
X509v3 Authority Key Identifier:
keyid:AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/fdy7wXX76J7ZL07Jjfh5MDZ5fMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3000::/29
Signature Algorithm: sha256WithRSAEncryption
0a:19:6b:30:b4:d8:5b:d1:3e:d6:cc:03:ea:cf:96:95:a5:a9:
0a:a6:7d:76:6a:7d:9a:70:ef:97:45:17:43:cf:fb:a9:fd:65:
7b:d8:dc:0e:a0:38:b0:70:10:ec:3c:f9:cb:38:35:4a:5d:67:
b8:2e:e1:a6:0e:cd:13:10:03:a9:84:e0:fb:c2:88:0c:e7:02:
0c:5e:59:09:af:00:4f:f4:00:f3:68:59:f7:93:d0:1c:4c:13:
e8:8e:ac:9f:24:89:dc:42:b2:d2:9e:e4:0c:18:1f:f4:c2:dc:
41:f5:fa:f5:1d:8d:53:89:09:86:8f:37:58:36:36:c9:51:cb:
e8:b4:a3:51:4a:a4:df:10:69:f0:01:92:62:61:c5:d6:38:bc:
3c:57:f3:d1:f8:82:2c:78:55:c3:da:92:89:52:11:4c:f4:4e:
b8:99:79:56:af:9c:1a:1c:b2:0f:6c:c7:ff:bf:ba:1c:3d:d4:
74:68:3b:8f:53:37:f7:e1:67:f2:84:f3:ad:c5:03:ad:75:c6:
b2:76:17:bd:f3:6b:6f:35:76:72:80:3e:e2:6b:e6:64:6d:b8:
92:e8:29:3f:aa:94:46:09:9b:f9:31:3d:13:44:e7:96:41:c3:
3d:23:5b:34:ce:61:46:31:b7:70:7a:63:d2:30:64:17:0c:bd:
41:b8:82:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:24 2024 by rpki-client on console-ams.rpki-client.org