Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/aTxwjzgntuWBXXrq8AxvCZBjmpE.roa
File: aTxwjzgntuWBXXrq8AxvCZBjmpE.roa (raw, json)
Hash identifier: pGPgqd0cnbUFaWteUGR3mL0z7GnAoDVceL67v4Hevd0=
Subject key identifier: 69:3C:70:8F:38:27:B6:E5:81:5D:7A:EA:F0:0C:6F:09:90:63:9A:91
Certificate issuer: /CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Certificate serial: 01856CE5F8FA9DB0855AC9707077FDD850A2
Authority key identifier: EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/aTxwjzgntuWBXXrq8AxvCZBjmpE.roa
Signing time: Sun 01 Jan 2023 10:34:48 +0000
ROA not before: Sun 01 Jan 2023 10:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204677
IP address blocks: 2a13:2200::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:f8:fa:9d:b0:85:5a:c9:70:70:77:fd:d8:50:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Validity
Not Before: Jan 1 10:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=693c708f3827b6e5815d7aeaf00c6f0990639a91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0f:50:d3:b7:da:2b:f0:f2:fc:91:55:35:a6:
21:1e:25:69:ac:28:51:6e:59:df:87:69:d0:8e:49:
db:40:ed:b6:22:6f:7d:19:f4:ef:4a:9d:a8:55:58:
e3:66:1f:88:00:a6:1b:c7:c6:1a:cc:9b:74:14:bf:
53:8e:22:20:71:82:b2:0d:a0:31:a5:1b:19:a6:2b:
9e:7e:7c:a3:77:17:e5:09:5d:ab:a5:a2:9d:34:6d:
c5:c2:a4:e0:38:40:17:4f:55:44:22:d2:3b:f8:61:
44:e5:f7:62:76:8b:a7:28:ec:9a:bf:13:56:36:00:
db:09:6d:b0:42:77:43:1e:57:20:67:63:03:ce:18:
c6:0c:72:cf:69:90:a3:41:b2:39:87:98:8c:cf:69:
f6:34:07:c1:72:8b:2e:ff:d8:e5:4c:e4:f3:c4:80:
0a:e5:41:93:42:11:81:ad:b1:8a:5d:5f:92:b3:a9:
b8:5e:82:c9:e8:06:f8:ae:22:ec:d2:97:0d:54:a3:
50:12:26:f7:4a:f3:d3:9b:59:04:95:d8:c9:cf:85:
1c:eb:f8:c5:46:0b:65:5e:09:ad:ab:d3:41:11:22:
23:cc:98:a8:0c:3b:d2:bf:f8:19:d7:cd:85:5e:e6:
c2:00:88:b3:00:70:2b:08:a1:a9:78:61:a5:50:53:
0a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3C:70:8F:38:27:B6:E5:81:5D:7A:EA:F0:0C:6F:09:90:63:9A:91
X509v3 Authority Key Identifier:
keyid:EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/aTxwjzgntuWBXXrq8AxvCZBjmpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2200::/29
Signature Algorithm: sha256WithRSAEncryption
30:bf:65:30:01:81:71:f8:e2:3f:6c:33:f6:6c:f7:cd:1d:20:
b9:b8:dd:04:3a:98:21:8e:10:6d:b8:4f:c0:97:98:fb:fb:71:
d2:0a:b0:ce:58:d6:ef:04:62:15:73:de:40:c6:ae:02:b3:98:
4e:21:ca:30:8f:b8:e7:4d:a2:84:74:ff:20:d8:2a:0c:81:ea:
5a:0d:91:51:ac:f8:f3:c1:07:12:6d:55:9c:5b:16:1d:26:8b:
99:1a:19:f1:39:bc:40:dd:50:be:77:7b:8d:6c:b9:22:11:5e:
83:8c:f5:57:3f:62:dc:fc:e5:ac:db:11:af:2f:00:b1:ac:3c:
3c:00:3b:33:15:dc:c3:d5:a6:49:ad:b9:0f:65:35:a2:a3:7b:
f5:93:f7:88:3e:cf:b7:99:92:ef:f3:c4:11:6c:6b:c8:08:b0:
d6:de:e6:ee:96:f7:3d:39:12:07:72:c6:7b:a0:49:1c:67:ca:
ac:44:9a:72:77:af:91:e0:09:53:18:30:63:6a:01:6f:99:b6:
83:be:1c:f4:f6:a9:1d:98:31:b5:9e:f8:71:0b:7b:e7:26:5c:
78:c4:e5:0a:83:7b:b2:c1:24:cc:14:70:cf:3c:ad:22:21:12:
1a:45:18:37:18:19:c1:e7:64:66:74:bf:5e:02:a4:5f:87:4f:
9f:5f:05:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:12 2024 by rpki-client on console-fra.rpki-client.org