Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/Mge4H7Iyc-7yUl38nBsGubPPcsg.roa
File: Mge4H7Iyc-7yUl38nBsGubPPcsg.roa (raw, json)
Hash identifier: UUdHaKl/+4YYimQ3Lm215//zLRQbXrlHPndaLBLHYxo=
Subject key identifier: 32:07:B8:1F:B2:32:73:EE:F2:52:5D:FC:9C:1B:06:B9:B3:CF:72:C8
Certificate issuer: /CN=fc3ab55d57509cbfae798bd71aaa23b3444d8e5a
Certificate serial: 018D9D6A3D979787280BDADE06CA3B3503D7
Authority key identifier: FC:3A:B5:5D:57:50:9C:BF:AE:79:8B:D7:1A:AA:23:B3:44:4D:8E:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Dq1XVdQnL-ueYvXGqojs0RNjlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/Mge4H7Iyc-7yUl38nBsGubPPcsg.roa
Signing time: Mon 12 Feb 2024 13:03:21 +0000
ROA not before: Mon 12 Feb 2024 13:03:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a13:9240::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 12 Feb 2024 17:38:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9d:6a:3d:97:97:87:28:0b:da:de:06:ca:3b:35:03:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc3ab55d57509cbfae798bd71aaa23b3444d8e5a
Validity
Not Before: Feb 12 13:03:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3207b81fb23273eef2525dfc9c1b06b9b3cf72c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:82:33:0f:3b:57:52:96:d5:6c:bf:39:d1:f6:
95:aa:c9:b5:bb:f2:74:ac:90:5a:d0:00:25:e2:09:
8b:78:b0:b0:12:b6:82:3e:81:d1:76:b9:6a:4a:16:
ee:92:0e:4f:93:5a:74:cf:cf:0f:c3:52:c3:57:57:
f5:f5:da:29:b4:fe:5f:27:84:ca:3a:ca:37:fb:a9:
90:4d:f9:35:fb:e8:63:ca:00:c0:83:42:18:be:9d:
4e:bc:41:d3:f8:18:2a:98:6d:bb:83:6c:3c:b8:21:
87:b1:61:a0:1a:50:d8:a0:62:16:74:01:f8:1b:27:
4e:71:12:f1:12:d2:16:c9:86:16:80:ad:e4:3a:5e:
ef:77:58:9b:82:b3:a8:39:5b:06:c5:06:c7:7a:84:
0e:b9:96:3b:b4:de:4e:f3:06:a6:f0:7b:d5:91:6e:
5f:45:88:f1:f1:0b:8d:b6:d1:53:f7:65:d0:95:53:
eb:63:52:59:06:ab:0d:94:d5:f1:e8:33:21:4d:07:
13:ab:a7:0d:17:a2:44:0f:dd:69:98:df:23:d5:22:
d2:b5:ca:fc:2f:9c:45:e3:3e:73:4f:16:97:d6:6d:
03:ca:29:f6:74:3c:36:d9:54:91:04:c7:6b:62:ab:
78:f3:77:21:f7:f7:01:06:8a:71:6d:a6:d2:35:c0:
33:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:07:B8:1F:B2:32:73:EE:F2:52:5D:FC:9C:1B:06:B9:B3:CF:72:C8
X509v3 Authority Key Identifier:
keyid:FC:3A:B5:5D:57:50:9C:BF:AE:79:8B:D7:1A:AA:23:B3:44:4D:8E:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Dq1XVdQnL-ueYvXGqojs0RNjlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/Mge4H7Iyc-7yUl38nBsGubPPcsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/_Dq1XVdQnL-ueYvXGqojs0RNjlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9240::/29
Signature Algorithm: sha256WithRSAEncryption
3f:f8:4e:9c:33:ed:06:5a:4e:a3:d3:1e:ef:a6:4a:ca:e1:35:
56:f3:4c:95:18:6f:b4:b4:03:64:95:a4:58:b6:e4:b1:f2:64:
20:1a:4c:bd:ff:f3:41:7f:42:30:fe:ed:9b:b1:ec:c3:06:67:
fd:b9:3a:39:b4:55:3b:5d:d8:e6:a9:03:20:cc:64:73:58:e9:
fc:07:7e:3a:f0:99:63:fd:ad:e5:80:8c:cc:cc:20:a7:72:2a:
93:26:d0:88:9a:a0:60:67:8d:9f:8e:38:79:b5:a3:41:33:03:
65:55:18:38:80:a4:8c:ca:df:95:23:be:b9:63:68:61:13:a0:
e7:03:f0:b0:93:73:fe:17:23:eb:b6:6f:77:5f:6e:66:01:14:
49:fe:0b:e1:cb:9f:18:46:82:37:82:7b:94:c3:05:f1:3d:b0:
56:37:ce:83:ad:db:97:9b:e2:75:04:1e:ea:a4:7e:36:18:80:
8d:38:98:38:85:07:53:f3:11:b1:1e:88:38:8b:02:38:8e:ca:
4b:b2:d3:17:94:c1:ab:1d:d9:9f:af:2f:ab:5b:3a:6b:28:58:
fb:d1:dd:8e:f6:bb:87:7d:43:fd:ae:3a:bc:43:89:9f:8c:a0:
f5:72:14:8e:de:14:d3:1f:ff:95:c3:dd:ed:65:eb:17:eb:3b:
8f:87:08:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:20 2024 by rpki-client on console-fra.rpki-client.org