Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/3b11de-900f-4378-84eb-7870c645e219/1/bfE09_pqk1Qw5_t9tszRgxkcaSI.roa
File: bfE09_pqk1Qw5_t9tszRgxkcaSI.roa (raw, json)
Hash identifier: HcTbkPLF9Bw7R2w+TxIAZn0CDIjQwNSjEb3rSsfg7QI=
Subject key identifier: 6D:F1:34:F7:FA:6A:93:54:30:E7:FB:7D:B6:CC:D1:83:19:1C:69:22
Certificate issuer: /CN=8f1cb9737524c437f6fa7521176bb0ab71fbee63
Certificate serial: 0189DD5192009417F1110251AD7D1A6B4ABD
Authority key identifier: 8F:1C:B9:73:75:24:C4:37:F6:FA:75:21:17:6B:B0:AB:71:FB:EE:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jxy5c3UkxDf2-nUhF2uwq3H77mM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/3b11de-900f-4378-84eb-7870c645e219/1/bfE09_pqk1Qw5_t9tszRgxkcaSI.roa
Signing time: Thu 10 Aug 2023 02:40:57 +0000
ROA not before: Thu 10 Aug 2023 02:40:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60021
IP address blocks: 2a13:96c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:dd:51:92:00:94:17:f1:11:02:51:ad:7d:1a:6b:4a:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f1cb9737524c437f6fa7521176bb0ab71fbee63
Validity
Not Before: Aug 10 02:40:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6df134f7fa6a935430e7fb7db6ccd183191c6922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fc:0a:b0:c9:ca:75:cd:2e:cc:f7:96:b6:7f:
8f:93:b6:73:57:90:8c:46:a4:5c:c6:9b:d1:64:79:
49:59:87:3f:c3:c6:9d:49:dd:1c:60:08:62:43:32:
47:02:97:66:c7:96:b3:92:65:8d:2a:8d:13:8c:3b:
70:e8:ef:ba:e6:94:6a:20:8e:17:51:f0:94:c6:12:
ef:e8:d8:e7:ad:b3:8c:32:1b:ec:ff:9d:a8:30:56:
ae:80:c5:a6:ad:af:e5:35:4b:82:9a:c1:28:29:9c:
2d:14:07:40:ec:4c:0a:f2:31:63:51:d2:6b:80:55:
0a:93:6a:a2:38:f0:bb:93:55:92:86:d9:07:ed:76:
67:6c:a6:f6:82:00:85:78:83:e5:c1:1b:55:52:88:
20:51:4a:e4:5e:a9:4d:37:36:b8:eb:01:dc:2a:a7:
ea:3f:b3:12:c6:f9:f9:ab:b6:71:9d:89:b1:15:29:
05:2b:68:0c:92:fa:eb:c4:e4:f8:da:17:a8:72:74:
07:36:bd:3a:8f:7b:5c:f5:7d:79:9c:17:f9:ef:45:
30:49:60:c0:7f:57:18:6c:8a:ee:75:d0:4e:97:6c:
1b:e8:8f:e4:2e:e9:64:5e:c4:b6:b0:3c:70:e9:5f:
b7:be:38:59:12:72:b3:da:3b:2b:c4:71:91:4f:f6:
97:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F1:34:F7:FA:6A:93:54:30:E7:FB:7D:B6:CC:D1:83:19:1C:69:22
X509v3 Authority Key Identifier:
keyid:8F:1C:B9:73:75:24:C4:37:F6:FA:75:21:17:6B:B0:AB:71:FB:EE:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jxy5c3UkxDf2-nUhF2uwq3H77mM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3b11de-900f-4378-84eb-7870c645e219/1/bfE09_pqk1Qw5_t9tszRgxkcaSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3b11de-900f-4378-84eb-7870c645e219/1/jxy5c3UkxDf2-nUhF2uwq3H77mM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:96c0::/29
Signature Algorithm: sha256WithRSAEncryption
57:4e:68:38:0c:d7:80:57:dd:6b:a1:f5:95:db:2b:44:6b:28:
26:2e:ea:47:ab:39:6b:42:fb:fb:db:cc:17:7e:a0:39:8c:c4:
56:04:bd:b9:b7:c3:77:b0:b6:dc:42:35:96:39:40:1e:3d:b2:
15:77:16:31:9f:11:ae:dd:59:87:a0:76:00:4e:00:54:6a:82:
dd:ef:c2:93:26:8b:88:8d:cc:4c:b4:ae:0e:3c:70:71:a2:3a:
f7:f5:72:98:46:ee:04:75:d4:b1:5b:88:54:65:55:d0:82:e0:
de:1a:97:3c:0d:30:04:0a:29:3f:40:00:23:d4:56:d8:59:ca:
c1:84:6b:56:67:e4:f9:a9:76:b3:3f:ce:14:df:26:85:26:06:
4e:1c:67:46:10:8a:90:ca:33:09:c4:c0:20:41:7f:35:a8:ce:
4a:f9:33:52:ad:1c:28:e9:52:d5:c4:59:56:15:3e:92:03:61:
10:d4:cd:be:a5:9d:de:98:05:dd:3d:a2:0c:5a:f1:cd:ff:4e:
17:87:a9:dd:53:b2:69:39:e6:24:54:06:6f:bb:7c:a9:15:24:
52:4f:18:2f:c4:b5:16:96:5c:11:02:f2:12:b4:99:5e:62:66:
be:20:1a:cc:94:d1:a0:83:89:d0:5e:f6:9f:0e:fa:2f:ae:ec:
7f:f0:72:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:22 2024 by rpki-client on console-ams.rpki-client.org