Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/vwwR2Yau1VoB9SpgEp-Mpf9gQjI.roa
File: vwwR2Yau1VoB9SpgEp-Mpf9gQjI.roa (raw, json)
Hash identifier: BmyQs+y21IkRoku91IjceAuXjv6GRdJ8qODiTifWEfk=
Subject key identifier: BF:0C:11:D9:86:AE:D5:5A:01:F5:2A:60:12:9F:8C:A5:FF:60:42:32
Certificate issuer: /CN=baaa748ba14a76e5d8a6edacb5426082a56f5e3d
Certificate serial: 018CAB254F6AC94DB97A0BDF1905BE3596BC
Authority key identifier: BA:AA:74:8B:A1:4A:76:E5:D8:A6:ED:AC:B5:42:60:82:A5:6F:5E:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqp0i6FKduXYpu2stUJggqVvXj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/vwwR2Yau1VoB9SpgEp-Mpf9gQjI.roa
Signing time: Wed 27 Dec 2023 11:59:58 +0000
ROA not before: Wed 27 Dec 2023 11:59:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47526
IP address blocks: 2a13:ccc0::/29 maxlen: 29
2a13:ccc3::/32 maxlen: 32
2a13:ccc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ab:25:4f:6a:c9:4d:b9:7a:0b:df:19:05:be:35:96:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa748ba14a76e5d8a6edacb5426082a56f5e3d
Validity
Not Before: Dec 27 11:59:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf0c11d986aed55a01f52a60129f8ca5ff604232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a5:1a:4a:66:6b:41:6c:cb:8c:ff:cb:ab:b0:
3e:e8:33:a8:66:fb:61:c1:f6:2f:b6:92:7f:19:88:
f6:65:be:6a:8b:b9:15:33:31:50:34:5d:c6:b8:f5:
24:a3:e1:08:40:80:d6:77:65:03:e5:7d:6b:dc:63:
ee:39:ba:50:66:94:12:e2:2d:f3:4d:63:ef:c9:ac:
8b:34:fc:38:27:7f:22:d4:1d:da:f3:0e:63:93:4b:
b6:34:aa:0c:aa:dd:75:ef:9b:1c:73:12:53:36:d7:
85:e0:07:b8:fd:89:01:40:7e:8f:28:ae:e1:63:5b:
0b:80:0f:81:15:f5:7c:84:ac:c3:26:05:f7:4c:3d:
59:ff:51:3c:2d:24:a7:e8:7a:9b:b4:1e:06:97:e9:
b4:07:98:dc:18:7d:1b:98:bf:bb:03:f9:7f:ba:9c:
a4:4b:28:64:d2:64:1d:c6:4d:56:3b:a4:43:79:2f:
82:6d:3d:1d:65:c1:ca:9b:3b:36:55:21:61:7f:dc:
f6:58:64:5f:db:df:09:db:5d:fb:56:3c:91:30:58:
0a:9a:d1:4b:fe:ad:40:40:1a:1c:83:78:d1:fc:58:
90:38:af:94:fa:52:ef:84:48:09:07:c3:83:12:32:
3b:e3:86:20:84:63:e3:cd:7a:8d:5f:96:b1:a0:f4:
9f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0C:11:D9:86:AE:D5:5A:01:F5:2A:60:12:9F:8C:A5:FF:60:42:32
X509v3 Authority Key Identifier:
keyid:BA:AA:74:8B:A1:4A:76:E5:D8:A6:ED:AC:B5:42:60:82:A5:6F:5E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqp0i6FKduXYpu2stUJggqVvXj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/vwwR2Yau1VoB9SpgEp-Mpf9gQjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/uqp0i6FKduXYpu2stUJggqVvXj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ccc0::/29
Signature Algorithm: sha256WithRSAEncryption
43:48:20:a0:90:47:33:69:14:16:5e:23:75:ef:ea:2c:3b:f8:
46:81:28:67:9a:f3:1e:2a:7c:39:2e:5c:9f:52:b7:db:8f:0a:
0c:4c:c3:69:7c:ac:a3:6b:41:b5:31:8c:80:7a:eb:ae:d0:85:
1e:6f:83:80:7d:8f:74:fd:a6:45:e1:50:75:ca:52:f5:3e:b8:
ee:58:ef:0c:dd:a1:1f:27:0f:51:fd:60:1a:64:0b:99:81:47:
8e:ac:e8:57:fd:c6:db:56:2b:07:bb:46:c5:6e:77:52:75:fd:
07:21:d1:5f:f4:d1:2c:3e:d1:6d:10:d4:1a:d2:0e:43:2e:c9:
3c:fa:b3:30:93:17:62:11:76:cf:98:92:48:8f:55:64:c1:49:
16:50:b9:c7:d0:60:36:20:90:a2:0d:bf:a8:f6:5e:81:5c:25:
96:07:47:ea:16:b3:e9:ae:85:b0:23:1b:d3:02:b7:4f:e1:ab:
0d:da:03:85:97:d9:de:82:42:2e:a9:bb:17:73:d5:d9:f3:8d:
57:d5:53:1c:1d:fb:36:9b:92:0f:2c:c7:a8:8b:8a:e7:64:86:
f4:8b:f0:f8:f6:92:e0:a1:10:bf:a8:b2:4a:b3:fb:90:aa:94:
f5:ae:ce:ae:96:81:81:94:46:63:5b:a4:cb:ea:40:a8:8a:08:
5a:0d:b5:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:01 2024 by rpki-client on console-fra.rpki-client.org