Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/7c7bf6-2bdf-4c7d-9aec-1ef1cee661ca/1/v0dnFgZQ-BuwaVGi34X1TQxtCvA.roa
File: v0dnFgZQ-BuwaVGi34X1TQxtCvA.roa (raw, json)
Hash identifier: 1kwpEtlxx7QL3f4YbWvFa1MfxC6SyVgFAw+QHssLMzQ=
Subject key identifier: BF:47:67:16:06:50:F8:1B:B0:69:51:A2:DF:85:F5:4D:0C:6D:0A:F0
Certificate issuer: /CN=4be1bbbe540079d2b7f270b92ceaf3b2a816e8fa
Certificate serial: 0186BBD48467C4AC2A779E81E04D13F3A6E1
Authority key identifier: 4B:E1:BB:BE:54:00:79:D2:B7:F2:70:B9:2C:EA:F3:B2:A8:16:E8:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-G7vlQAedK38nC5LOrzsqgW6Po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/7c7bf6-2bdf-4c7d-9aec-1ef1cee661ca/1/v0dnFgZQ-BuwaVGi34X1TQxtCvA.roa
Signing time: Tue 07 Mar 2023 11:28:32 +0000
ROA not before: Tue 07 Mar 2023 11:28:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203629
IP address blocks: 2a13:3306::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bb:d4:84:67:c4:ac:2a:77:9e:81:e0:4d:13:f3:a6:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4be1bbbe540079d2b7f270b92ceaf3b2a816e8fa
Validity
Not Before: Mar 7 11:28:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf4767160650f81bb06951a2df85f54d0c6d0af0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:7c:cc:df:08:5c:99:23:fe:b0:78:8c:cc:2f:
41:45:8e:af:2b:57:be:87:e2:a2:aa:b1:e5:ae:0e:
f0:c9:56:32:61:8d:e8:cf:11:6d:50:a3:fb:27:b0:
e4:9f:f9:89:cc:f2:30:2b:a2:c9:12:8d:fe:7b:1e:
a7:7d:e9:14:d1:cf:4f:12:59:2f:72:ba:8b:dc:a6:
d6:d7:bd:f2:1d:af:72:b4:9d:81:31:12:b1:99:a5:
dd:26:20:73:ef:83:eb:20:2f:6c:a8:5f:c3:8a:de:
d3:f5:28:0d:2e:1d:4b:b9:04:69:53:d1:e2:1d:48:
34:24:01:bd:5c:af:25:0d:87:f5:e8:53:3d:c7:24:
ea:79:6d:b6:3c:e9:e7:f5:fb:cc:4b:f5:31:d0:1d:
37:3c:26:55:d9:cc:1a:be:38:8f:e6:82:e8:fd:7a:
ce:69:9a:91:72:b5:98:25:2c:12:c9:fa:c9:5b:03:
53:2e:34:5d:3b:3d:8a:23:d9:3c:e9:ae:fb:de:06:
dc:0b:e0:53:07:a7:8f:7b:5b:7d:ab:3b:59:ac:51:
86:20:66:1c:02:4f:2c:b0:03:cc:7c:44:b1:f3:eb:
43:fa:10:73:9d:03:a3:7b:11:d7:9f:65:84:ef:55:
42:33:c7:87:af:ef:ae:de:de:e0:c7:f4:72:de:de:
60:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:47:67:16:06:50:F8:1B:B0:69:51:A2:DF:85:F5:4D:0C:6D:0A:F0
X509v3 Authority Key Identifier:
keyid:4B:E1:BB:BE:54:00:79:D2:B7:F2:70:B9:2C:EA:F3:B2:A8:16:E8:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-G7vlQAedK38nC5LOrzsqgW6Po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/7c7bf6-2bdf-4c7d-9aec-1ef1cee661ca/1/v0dnFgZQ-BuwaVGi34X1TQxtCvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/7c7bf6-2bdf-4c7d-9aec-1ef1cee661ca/1/S-G7vlQAedK38nC5LOrzsqgW6Po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3306::/32
Signature Algorithm: sha256WithRSAEncryption
7f:90:f0:d5:89:0b:1c:96:37:79:d8:17:c8:fb:e8:9f:e6:85:
04:25:9d:eb:0c:79:5c:2a:ca:cc:29:a1:a4:3e:f5:d9:8a:92:
a2:10:49:2a:b4:54:05:ce:65:a9:66:cf:c6:bb:88:0b:c9:e5:
65:6b:9e:c5:f2:4c:8b:22:53:9e:87:c3:7b:71:ab:ba:bf:4c:
af:57:50:e1:a8:5c:a0:eb:3d:f0:fb:3a:84:2c:ec:e7:a6:1f:
8a:6a:48:f4:a7:cb:30:55:22:15:c9:71:60:0e:cf:f2:5c:ba:
ea:3a:72:bb:ce:5f:36:0e:29:f0:9d:ea:98:54:5a:f2:a1:52:
32:e0:45:d3:c0:1a:c0:90:b4:db:70:26:f1:51:0d:a8:49:8f:
b7:b2:9e:33:4d:3b:34:09:f5:68:48:27:a7:a7:7e:ea:be:e1:
45:db:ac:06:4a:f6:ca:5f:33:ff:15:00:a0:27:9a:0d:c5:3c:
51:8a:f4:cb:ef:03:2a:ad:98:19:c6:36:c0:e6:3d:3b:39:44:
6a:a1:8f:e2:f7:b2:89:b2:67:fc:80:2b:d7:bf:f4:04:61:0f:
62:b3:dd:3f:24:93:0b:42:34:0d:dd:4a:81:66:4e:4c:ca:a6:
28:a5:66:a7:7a:50:15:08:13:7b:32:75:eb:04:dd:47:fe:0d:
7c:c2:3f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:04 2024 by rpki-client on console-ams.rpki-client.org