Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/9X9rpeky3lUV_Yju52opfHOqnwI.roa
File: 9X9rpeky3lUV_Yju52opfHOqnwI.roa (raw, json)
Hash identifier: 0270BHUqGHLLi54UN+kf6yci4oWpMekk4jc7Q7ediXo=
Subject key identifier: F5:7F:6B:A5:E9:32:DE:55:15:FD:88:EE:E7:6A:29:7C:73:AA:9F:02
Certificate issuer: /CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Certificate serial: 018CCA2B8CE580AB56CB9132B6FC7EB975BA
Authority key identifier: B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/9X9rpeky3lUV_Yju52opfHOqnwI.roa
Signing time: Tue 02 Jan 2024 12:35:00 +0000
ROA not before: Tue 02 Jan 2024 12:35:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47540
IP address blocks: 2a13:cfc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 26 Apr 2024 11:37:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:8c:e5:80:ab:56:cb:91:32:b6:fc:7e:b9:75:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Validity
Not Before: Jan 2 12:35:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f57f6ba5e932de5515fd88eee76a297c73aa9f02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:f9:6d:67:b6:39:60:54:dd:da:d6:f8:fd:
01:5f:c8:65:6b:4b:07:5a:e0:c9:10:17:c9:99:88:
9d:57:62:23:b5:91:e2:a8:0e:55:71:1b:e9:bc:6f:
94:cb:ab:63:80:03:03:69:10:ee:dd:57:78:7e:e9:
b0:26:9d:ab:6a:b6:6f:80:b7:a8:4f:6a:80:cb:15:
ec:d1:3c:a6:24:f0:e6:13:09:8e:1b:2f:fd:58:6a:
53:dd:cd:c7:5d:cc:37:85:48:96:49:e1:9d:f8:7e:
c9:3b:cd:0f:f3:cb:01:d3:5f:5c:0e:88:a8:64:38:
42:48:3f:4e:00:c0:bf:0b:35:bd:3b:67:fc:25:6d:
df:9f:93:b8:cb:c7:19:d5:9d:71:fe:9d:75:d6:a3:
f1:ac:50:e2:1d:9f:97:46:65:68:8e:04:ab:86:cb:
7f:83:bd:73:cc:b1:09:f1:b5:30:53:00:60:a0:b0:
6f:eb:93:33:65:e8:c0:34:59:10:0f:f5:87:3e:e5:
4e:79:03:61:c1:5e:16:58:79:d8:22:80:75:ad:e7:
f6:14:ea:ff:96:54:77:ad:45:61:92:ad:1d:d3:29:
00:2b:e2:ae:c4:a6:13:3d:02:01:67:7c:51:ce:a5:
04:2f:82:05:91:33:65:0c:61:4b:3c:e4:70:2c:12:
f1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7F:6B:A5:E9:32:DE:55:15:FD:88:EE:E7:6A:29:7C:73:AA:9F:02
X509v3 Authority Key Identifier:
keyid:B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/9X9rpeky3lUV_Yju52opfHOqnwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:cfc0::/29
Signature Algorithm: sha256WithRSAEncryption
aa:23:de:0b:74:14:db:8a:6c:69:ef:74:ed:23:d6:cd:4f:b0:
78:c9:02:98:31:d2:df:f9:a0:00:30:8c:3a:db:52:1b:3e:db:
81:ae:97:e4:4e:a5:a2:e5:aa:71:a7:35:7b:a5:bf:ac:d8:69:
65:a3:f1:77:d8:d3:17:8d:cd:75:e9:ec:7d:ce:ed:08:21:79:
a1:b6:a7:a7:80:d1:89:c1:72:a3:41:b6:b8:cf:49:9f:c8:f4:
2b:46:aa:6d:97:b4:41:84:9c:ca:34:82:de:51:79:fd:3f:db:
fe:5e:74:90:de:2b:59:0f:2c:5a:95:45:43:40:e3:58:b2:42:
3b:d6:3f:a2:3c:53:6e:d8:b3:67:26:79:04:db:cc:5b:a8:15:
20:ec:39:34:f5:1f:14:36:41:0d:ae:d1:c8:12:7c:70:4b:1f:
a7:58:38:a3:cd:d3:72:c7:cb:2f:da:7a:2b:1f:92:69:ac:55:
a8:64:3e:7e:0c:43:e2:55:24:1d:7e:e4:41:d7:2c:87:f4:0f:
be:0d:f2:d4:26:71:7a:ca:13:1b:97:92:26:4e:08:03:35:a9:
ac:1b:3d:ff:a2:ae:be:c5:c7:83:da:2c:4b:0b:7a:ec:ab:4c:
bb:42:8f:8a:cd:b5:d3:a8:38:d6:eb:35:c0:0b:d5:af:7f:a8:
7a:ce:32:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:28 2024 by rpki-client on console-ams.rpki-client.org