Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/u4kKiPdU1UEupTwaC1WsVBM0rg4.roa
File: u4kKiPdU1UEupTwaC1WsVBM0rg4.roa (raw, json)
Hash identifier: UQ+cftAxpC/G4n6Ewik0EUvJ5SZ9074cwspVMvrxJVc=
Subject key identifier: BB:89:0A:88:F7:54:D5:41:2E:A5:3C:1A:0B:55:AC:54:13:34:AE:0E
Certificate issuer: /CN=63392e929317ae6bde08a5a3b98a2b701ddb893a
Certificate serial: 019088E3A51B65C51E0B9B110CAA32F05AAE
Authority key identifier: 63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/u4kKiPdU1UEupTwaC1WsVBM0rg4.roa
Signing time: Sat 06 Jul 2024 16:32:18 +0000
ROA not before: Sat 06 Jul 2024 16:32:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51847
IP address blocks: 2a13:fc0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 09 Sep 2024 02:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:88:e3:a5:1b:65:c5:1e:0b:9b:11:0c:aa:32:f0:5a:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63392e929317ae6bde08a5a3b98a2b701ddb893a
Validity
Not Before: Jul 6 16:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb890a88f754d5412ea53c1a0b55ac541334ae0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3d:d7:88:98:2c:43:11:05:79:de:8c:03:ca:
98:b4:2a:e8:f2:d0:cb:ab:dc:68:66:bf:09:e8:90:
76:b2:be:e8:e4:4a:ba:dd:cf:fe:8a:6e:3c:37:92:
c6:5d:27:69:3f:a0:2f:75:60:80:84:9a:e3:4e:58:
2c:ee:b4:3b:9d:1b:06:a0:cf:de:82:bc:7c:7d:c5:
0c:8d:31:da:0f:09:38:59:60:7a:6e:db:4a:ea:e0:
c3:ba:5f:b3:a2:70:4c:de:0d:d3:80:de:a7:57:bd:
69:61:f1:f8:9d:a0:b6:ae:bc:9a:da:d5:2a:3a:bc:
9e:08:2d:89:dc:6a:c2:00:76:6e:d7:33:82:e3:79:
e9:fe:e3:cf:2e:14:01:7f:81:98:e2:23:9a:17:d6:
23:28:e3:22:c2:50:4d:1a:81:ec:cb:19:ea:82:2f:
e3:17:88:42:4b:a1:20:94:88:f7:1f:e2:11:5a:2a:
54:a2:75:81:eb:62:65:30:fb:24:f8:42:76:6d:71:
97:1e:db:3c:31:01:1f:a7:2f:0e:17:91:78:11:30:
cd:6e:4a:f7:60:f0:71:57:33:54:c8:c8:a6:39:b5:
fb:dd:92:5e:d0:d0:21:c9:20:63:d9:62:82:9d:90:
c4:3e:e4:58:98:e2:48:f2:ec:95:46:da:07:ff:5b:
72:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:89:0A:88:F7:54:D5:41:2E:A5:3C:1A:0B:55:AC:54:13:34:AE:0E
X509v3 Authority Key Identifier:
keyid:63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/u4kKiPdU1UEupTwaC1WsVBM0rg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:fc0::/29
Signature Algorithm: sha256WithRSAEncryption
78:4a:da:9a:fd:a8:02:ef:41:0e:6a:b5:4c:ed:1c:6c:20:67:
38:b0:09:88:33:6c:3d:8a:98:a2:6a:95:d2:cd:0c:50:69:5a:
94:fe:dc:b9:b9:c1:d4:d2:0b:60:a6:d3:a2:3b:6c:10:bb:18:
40:c3:86:70:b1:9f:b5:41:7e:b2:29:96:2a:12:5b:32:52:6f:
77:0b:f7:8e:65:34:25:5f:16:d3:37:0e:67:35:f3:9a:78:81:
88:73:7a:da:e7:be:b0:ee:72:ba:f8:45:b4:5c:ae:03:60:32:
b4:09:64:e8:54:fe:26:6a:85:08:e0:a6:7e:7c:a9:34:7a:5e:
52:e1:52:24:cb:81:d7:ab:6e:33:0a:80:a4:12:52:cf:ea:2a:
a7:9a:3b:32:30:80:8e:34:a9:8f:c3:03:cb:2b:6e:90:f3:98:
61:14:25:8c:40:55:ee:5a:e0:c9:ab:fc:01:c4:76:48:6d:68:
0d:96:10:64:1d:ed:0b:11:97:a8:92:25:88:84:c3:f5:2d:21:
56:4d:d4:6e:06:22:ea:d1:dd:56:f6:63:e5:92:c0:6d:b1:56:
15:55:ed:56:ff:b4:6d:9c:1d:3b:a0:34:bb:6e:e1:1f:f2:87:
3c:a5:99:2b:df:33:e1:1b:07:c5:f6:ee:7a:57:fc:4e:90:b3:
6d:ce:86:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 05:07:13 2024 by rpki-client on console-ams.rpki-client.org