Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/xyZovjuurqrkrHODcDipTj1jDH4.roa
File: xyZovjuurqrkrHODcDipTj1jDH4.roa (raw, json)
Hash identifier: PqVWxwz1kYx1LRdjpt1ZcnkCGZFw/gaSH4v7ttC296o=
Subject key identifier: C7:26:68:BE:3B:AE:AE:AA:E4:AC:73:83:70:38:A9:4E:3D:63:0C:7E
Certificate issuer: /CN=fc3ab55d57509cbfae798bd71aaa23b3444d8e5a
Certificate serial: 018C9094C6669023C7791EBE997D48D3BB9F
Authority key identifier: FC:3A:B5:5D:57:50:9C:BF:AE:79:8B:D7:1A:AA:23:B3:44:4D:8E:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Dq1XVdQnL-ueYvXGqojs0RNjlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/xyZovjuurqrkrHODcDipTj1jDH4.roa
Signing time: Fri 22 Dec 2023 08:11:58 +0000
ROA not before: Fri 22 Dec 2023 08:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198231
IP address blocks: 2a13:92c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Sun 24 Dec 2023 18:24:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:94:c6:66:90:23:c7:79:1e:be:99:7d:48:d3:bb:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc3ab55d57509cbfae798bd71aaa23b3444d8e5a
Validity
Not Before: Dec 22 08:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c72668be3baeaeaae4ac73837038a94e3d630c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:a4:75:45:0c:1a:81:7a:15:df:8a:b7:be:8b:
09:f5:67:d3:7a:29:cc:ed:d9:91:44:db:74:fe:6f:
90:ed:33:ff:1a:f6:3b:38:02:81:38:a9:2b:93:21:
3d:24:e9:e1:cc:b0:13:10:d4:09:9f:2f:77:ed:96:
8b:8c:48:57:77:00:a7:ae:cb:4e:c8:ba:af:63:e6:
c4:9f:cc:f4:ad:c1:21:5d:44:0c:35:94:6a:5f:87:
59:69:81:90:b3:55:81:30:3f:5f:c1:87:37:10:28:
da:11:fe:1e:32:7a:d5:84:1a:8c:8a:68:a0:b3:d8:
b7:5f:e8:b3:12:52:14:10:19:32:fc:d9:03:40:64:
aa:75:3e:30:a9:8a:64:cb:d5:bb:ed:17:74:be:86:
93:1e:d4:30:df:2a:9c:59:9a:9a:3e:d3:a4:82:b0:
eb:42:ef:45:28:2a:d4:ad:78:13:a5:f8:1a:90:a1:
c7:27:5c:3b:73:9d:75:e0:be:8a:40:74:75:6e:f6:
b1:d8:e2:b3:5c:8e:88:ba:29:c8:d8:8f:09:72:db:
cc:0f:41:23:3f:de:cd:02:10:9e:ec:e2:24:a8:24:
55:95:3d:da:fe:d4:77:d6:35:db:b6:c3:bc:52:47:
cb:4d:a6:a2:3c:1c:76:b1:ba:49:ec:22:b7:11:cc:
81:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:26:68:BE:3B:AE:AE:AA:E4:AC:73:83:70:38:A9:4E:3D:63:0C:7E
X509v3 Authority Key Identifier:
keyid:FC:3A:B5:5D:57:50:9C:BF:AE:79:8B:D7:1A:AA:23:B3:44:4D:8E:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Dq1XVdQnL-ueYvXGqojs0RNjlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/xyZovjuurqrkrHODcDipTj1jDH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/_Dq1XVdQnL-ueYvXGqojs0RNjlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:92c0::/29
Signature Algorithm: sha256WithRSAEncryption
5f:1d:61:d7:c4:79:00:1a:65:9a:10:50:98:c2:b0:87:96:a3:
de:43:7c:20:a1:12:7f:16:94:a4:6b:75:0f:7e:0c:4a:55:14:
c6:37:7e:23:64:92:06:b9:cb:9f:c9:35:66:45:26:9f:1e:53:
99:08:50:f3:34:04:91:99:f5:ca:2d:d7:9c:86:7d:f7:35:64:
76:6d:57:b3:25:df:f4:0e:ce:77:26:99:c3:86:d5:77:86:08:
3b:71:b8:ec:7e:c8:1d:19:41:30:f5:34:a7:c7:97:f7:d6:cf:
bd:28:8a:b5:a1:a4:5d:c6:4e:2e:3b:c2:17:05:cc:70:04:27:
27:96:8c:16:32:67:2c:9c:5b:a4:ec:41:2f:d0:9c:51:a6:e1:
72:2c:0c:57:62:00:10:58:d5:ad:94:b7:86:bf:bd:3c:ba:df:
5e:09:43:4d:7d:ff:75:3d:51:51:2f:32:1e:1e:89:2a:c8:90:
e1:78:6f:3d:b0:26:90:2a:a0:38:9f:1a:f0:11:6f:46:22:07:
15:6f:4f:5b:88:1e:ec:9f:34:4d:25:39:e1:e7:74:b8:2a:1a:
86:b7:67:15:41:0c:4b:cf:5b:b5:17:3e:5d:28:f0:aa:bf:f8:
e4:f0:ee:20:37:92:92:35:62:63:d8:b9:02:75:06:a9:b3:f6:
b2:8c:68:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:20 2024 by rpki-client on console-fra.rpki-client.org