Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/DP-WhIRkHByzL2Pwqgz_mHxpyFs.roa
File: DP-WhIRkHByzL2Pwqgz_mHxpyFs.roa (raw, json)
Hash identifier: CoHGHChZHPYO52EQ87PNSLE25ELUbHuhUH5Hq9e2xhk=
Subject key identifier: 0C:FF:96:84:84:64:1C:1C:B3:2F:63:F0:AA:0C:FF:98:7C:69:C8:5B
Certificate issuer: /CN=fc3ab55d57509cbfae798bd71aaa23b3444d8e5a
Certificate serial: 018C908F48865053150058972102B0575211
Authority key identifier: FC:3A:B5:5D:57:50:9C:BF:AE:79:8B:D7:1A:AA:23:B3:44:4D:8E:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Dq1XVdQnL-ueYvXGqojs0RNjlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/DP-WhIRkHByzL2Pwqgz_mHxpyFs.roa
Signing time: Fri 22 Dec 2023 08:05:58 +0000
ROA not before: Fri 22 Dec 2023 08:05:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216157
IP address blocks: 2a13:92c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:8f:48:86:50:53:15:00:58:97:21:02:b0:57:52:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc3ab55d57509cbfae798bd71aaa23b3444d8e5a
Validity
Not Before: Dec 22 08:05:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cff968484641c1cb32f63f0aa0cff987c69c85b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:83:33:b3:e0:c1:88:ee:9c:7a:57:d5:18:54:
cc:25:44:bd:c8:94:5c:8b:5c:29:16:98:f4:05:cf:
de:4f:8c:14:3d:5e:d4:fb:79:83:bb:38:5d:93:4d:
d0:b8:e9:7b:b3:a5:0c:d5:13:d7:f7:e4:b8:ad:78:
27:5f:ac:cd:b8:49:04:d7:46:e4:fd:90:dc:fe:8a:
1e:cf:1d:5f:2b:31:bb:b5:95:9d:c4:27:4d:bb:88:
71:13:ec:88:d0:e0:48:64:87:85:8f:c1:96:97:e3:
9b:8d:57:c6:31:ae:b8:90:16:f6:9b:f2:9f:0f:4d:
c2:d5:a1:9e:f3:02:4d:d4:63:c9:35:ee:03:bd:ac:
5b:52:05:a4:40:47:80:c0:5c:cc:fc:d4:67:07:a1:
ce:ac:73:35:d4:aa:1b:f0:cf:41:a4:4d:81:41:37:
da:c2:5a:06:ba:d3:bf:59:40:5d:ca:d4:e7:df:09:
86:58:43:71:be:42:54:40:1d:2b:5e:0c:69:da:fa:
d3:28:7d:b2:95:7c:83:e2:0a:78:06:58:51:e0:3b:
ed:43:4f:64:f9:c2:83:a3:6d:87:33:68:51:8c:8d:
64:15:71:56:0b:8b:8f:19:d5:f7:d7:24:f3:2f:c5:
f0:92:d1:9a:6e:88:ec:bd:68:bc:1a:a6:b2:f1:6d:
e8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:FF:96:84:84:64:1C:1C:B3:2F:63:F0:AA:0C:FF:98:7C:69:C8:5B
X509v3 Authority Key Identifier:
keyid:FC:3A:B5:5D:57:50:9C:BF:AE:79:8B:D7:1A:AA:23:B3:44:4D:8E:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Dq1XVdQnL-ueYvXGqojs0RNjlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/DP-WhIRkHByzL2Pwqgz_mHxpyFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/_Dq1XVdQnL-ueYvXGqojs0RNjlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:92c0::/29
Signature Algorithm: sha256WithRSAEncryption
16:9f:0e:ec:c2:3b:9c:52:7b:9f:67:85:33:d6:75:12:ee:88:
1d:a2:e1:9c:2e:72:fb:d2:ce:8d:2f:e3:5b:45:9a:3c:bf:f0:
64:95:e7:48:ed:b1:f2:7c:3b:ce:2f:03:d0:92:97:b3:89:fa:
42:51:aa:d9:fb:47:16:b5:f1:16:e9:22:50:8c:35:2e:47:2f:
02:70:b4:62:8e:97:6d:ac:ff:69:87:76:03:8d:c8:59:4b:fd:
b3:ff:e4:c0:b7:11:86:1d:61:3f:71:b6:11:79:6c:fc:71:24:
7d:9c:54:63:ed:7e:78:f9:f8:4d:61:bc:83:59:ab:54:33:a3:
8a:a7:dd:a1:0c:3f:13:66:10:b7:19:7a:b4:00:53:2a:5a:c4:
29:8b:ae:4a:41:9f:ac:6b:4d:11:e1:8c:b6:2a:6b:84:e1:f4:
e1:6e:da:98:4b:76:c1:ee:26:4a:e2:e9:c5:dd:e4:49:51:74:
c8:eb:5d:2b:59:29:a7:ec:40:49:98:9c:e7:82:87:32:6d:cc:
50:dc:fd:d9:85:c2:98:e6:d4:9a:f6:be:e4:b0:dc:c9:fb:24:
c8:a3:bd:8d:62:e8:dd:fe:96:fb:25:28:97:29:71:a5:cd:76:
c4:0e:ec:7f:d3:b8:9e:9c:38:5d:02:57:d9:dd:79:d3:13:cc:
88:09:1a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:20 2024 by rpki-client on console-fra.rpki-client.org