Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/360ef9-ec20-4e13-9647-ddfeb424adf5/1/leEHf69Ak2zUWjipdjNnw2QBzeI.roa
File: leEHf69Ak2zUWjipdjNnw2QBzeI.roa (raw, json)
Hash identifier: sFY69bnu47OeEbnVK7esJAEP4UGdcmhPwwXf/W6uEK8=
Subject key identifier: 95:E1:07:7F:AF:40:93:6C:D4:5A:38:A9:76:33:67:C3:64:01:CD:E2
Certificate issuer: /CN=b9ab361394683e4f24397cfc8f23eab2c6828dea
Certificate serial: 0185727127D8C0C1144B55A39448D6193493
Authority key identifier: B9:AB:36:13:94:68:3E:4F:24:39:7C:FC:8F:23:EA:B2:C6:82:8D:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uas2E5RoPk8kOXz8jyPqssaCjeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/360ef9-ec20-4e13-9647-ddfeb424adf5/1/leEHf69Ak2zUWjipdjNnw2QBzeI.roa
Signing time: Mon 02 Jan 2023 12:24:56 +0000
ROA not before: Mon 02 Jan 2023 12:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:2e02::/36 maxlen: 48
2a13:2e01::/36 maxlen: 48
2a13:2e00::/36 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:27:d8:c0:c1:14:4b:55:a3:94:48:d6:19:34:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ab361394683e4f24397cfc8f23eab2c6828dea
Validity
Not Before: Jan 2 12:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95e1077faf40936cd45a38a9763367c36401cde2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a5:89:8b:94:8c:a1:18:d3:73:f3:9a:97:40:
e5:3d:5a:3e:3e:32:c5:8a:86:a6:b3:79:be:1c:17:
e8:a2:4a:26:d3:94:0e:b9:09:fb:c3:2f:dd:d3:6f:
f2:f0:ce:b7:74:c7:5d:56:ef:96:a1:b8:43:d9:4c:
f9:31:e3:a9:2c:de:bb:f7:a0:c9:ee:82:07:fb:69:
b6:5f:fc:06:dc:27:9c:e9:b4:32:43:54:91:fb:66:
e6:3c:9f:6d:7e:36:cb:fe:5e:ec:2f:a9:15:12:9c:
09:cf:37:84:86:b8:c5:b7:4d:6a:35:c2:79:67:41:
5b:27:8e:75:f6:e6:2b:d3:85:a7:b9:9f:0e:6e:81:
14:1d:7e:a4:82:34:e0:6e:f9:eb:92:3d:9e:bf:65:
1f:59:76:0d:29:1d:8a:81:de:e0:40:ea:92:ee:33:
a7:0f:97:f4:35:8d:73:ec:34:97:91:b4:30:cd:f1:
a2:14:f2:97:9c:04:2d:78:77:86:16:23:8b:b2:4f:
fd:ff:ac:59:d5:38:9c:3d:b4:1f:16:58:17:42:5e:
1f:bd:df:5e:18:c1:91:85:60:58:3a:bf:75:2d:eb:
9f:10:3c:7a:59:ff:43:e9:e0:b3:b8:c1:67:49:a2:
ea:c0:32:8c:bb:7b:35:3c:81:a9:ba:35:4b:b4:c6:
c6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E1:07:7F:AF:40:93:6C:D4:5A:38:A9:76:33:67:C3:64:01:CD:E2
X509v3 Authority Key Identifier:
keyid:B9:AB:36:13:94:68:3E:4F:24:39:7C:FC:8F:23:EA:B2:C6:82:8D:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uas2E5RoPk8kOXz8jyPqssaCjeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/360ef9-ec20-4e13-9647-ddfeb424adf5/1/leEHf69Ak2zUWjipdjNnw2QBzeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/360ef9-ec20-4e13-9647-ddfeb424adf5/1/uas2E5RoPk8kOXz8jyPqssaCjeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2e00::/36
2a13:2e01::/36
2a13:2e02::/36
Signature Algorithm: sha256WithRSAEncryption
94:c1:1b:d3:d9:2f:81:e1:04:d6:e0:41:92:fd:b5:95:e0:33:
27:5c:54:f5:5b:dd:97:9b:cc:88:c0:c4:bc:f4:57:b3:38:93:
f8:02:f9:14:e9:5c:f9:af:07:b1:84:17:d5:2f:eb:dd:6d:bf:
fb:a2:f1:25:42:fd:a1:82:71:b4:f7:25:0f:18:1d:59:f1:46:
05:72:01:fe:f7:54:a4:04:eb:0c:99:73:a3:4b:40:7a:1b:3d:
d5:a3:7b:03:79:03:7b:86:6f:5a:32:f4:51:35:6f:a0:47:5e:
eb:3b:b5:d3:6a:47:76:a4:04:7c:c9:28:f3:34:66:d2:e9:f3:
3a:ee:e8:73:ae:df:3a:70:9d:2f:71:39:69:8d:ef:84:0e:90:
47:a8:83:d3:c9:7b:8b:65:89:30:72:d5:f3:a0:cd:b9:52:d1:
7c:be:c8:57:de:02:07:99:7d:d3:13:a8:ba:32:60:3b:f1:20:
c4:fd:bb:fb:32:24:0a:83:f9:4b:ca:b6:a5:03:d2:26:46:75:
e0:c4:6c:d7:ed:4a:fa:1b:99:ea:21:a7:bf:6a:e6:81:b1:d3:
f5:7a:dc:e4:83:f9:dc:c0:d2:5e:6e:be:13:47:48:a9:70:00:
57:81:ba:cb:40:7a:11:4c:70:2c:f6:68:d5:c8:4c:b5:9f:58:
16:e0:31:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:35 2024 by rpki-client on console-fra.rpki-client.org