Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/8qlx5crbrzHEUCsYVzau7pGEtRc.roa
File: 8qlx5crbrzHEUCsYVzau7pGEtRc.roa (raw, json)
Hash identifier: LCnYOACyiEm7botK0G0NSUAfJY27UMhgDlZ6x6pPWGM=
Subject key identifier: F2:A9:71:E5:CA:DB:AF:31:C4:50:2B:18:57:36:AE:EE:91:84:B5:17
Certificate issuer: /CN=f31ed7b1f63b51aa516a9ffcb035a3a0d69e65a1
Certificate serial: 018AF93F8378FD4FEAF70543C4E3A2A92F66
Authority key identifier: F3:1E:D7:B1:F6:3B:51:AA:51:6A:9F:FC:B0:35:A3:A0:D6:9E:65:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8x7XsfY7UapRap_8sDWjoNaeZaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/8qlx5crbrzHEUCsYVzau7pGEtRc.roa
Signing time: Wed 04 Oct 2023 05:53:23 +0000
ROA not before: Wed 04 Oct 2023 05:53:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216245
IP address blocks: 2a13:edc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f9:3f:83:78:fd:4f:ea:f7:05:43:c4:e3:a2:a9:2f:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f31ed7b1f63b51aa516a9ffcb035a3a0d69e65a1
Validity
Not Before: Oct 4 05:53:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2a971e5cadbaf31c4502b185736aeee9184b517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:a5:14:53:7a:37:22:78:d1:c8:33:9b:50:02:
8f:7e:ef:dd:16:69:60:c9:9f:c4:a0:6e:31:7d:e3:
e2:02:be:68:be:7b:59:b1:74:d4:ad:11:25:ca:74:
11:b4:69:a3:81:52:e5:de:bb:24:96:2a:64:1a:b0:
25:6b:36:e8:bf:75:97:8b:3f:25:cf:7d:6e:24:d6:
fb:63:60:9d:39:d7:d4:9d:30:e5:36:e3:7e:3b:e5:
ac:06:c3:bd:ba:35:d1:aa:63:63:54:b9:29:05:c8:
f0:a3:13:6f:fb:1c:cf:ca:90:2b:12:17:a8:04:b1:
88:11:77:0b:4c:e8:6a:09:8b:55:99:8a:d2:c7:61:
bf:76:48:db:74:8f:b6:3d:77:63:a4:a2:b6:73:9e:
0c:c0:fc:3f:1a:89:46:7b:cf:37:d3:df:03:f4:75:
f1:65:62:e5:07:ff:de:a0:b6:85:9b:0e:0a:0f:09:
dc:21:1c:6f:14:6b:15:98:e5:5c:8d:e6:59:eb:ce:
26:72:f9:e8:c1:b9:78:81:fb:02:4d:38:0b:65:ed:
0b:35:10:a6:2f:9c:d5:8d:7a:1c:fe:cd:f6:0b:88:
57:37:52:30:aa:2a:27:fc:38:ac:6b:49:e0:46:97:
c3:04:00:ed:22:47:3f:cc:c1:7f:49:d6:cf:f9:58:
3b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A9:71:E5:CA:DB:AF:31:C4:50:2B:18:57:36:AE:EE:91:84:B5:17
X509v3 Authority Key Identifier:
keyid:F3:1E:D7:B1:F6:3B:51:AA:51:6A:9F:FC:B0:35:A3:A0:D6:9E:65:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8x7XsfY7UapRap_8sDWjoNaeZaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/8qlx5crbrzHEUCsYVzau7pGEtRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/8x7XsfY7UapRap_8sDWjoNaeZaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:edc0::/48
Signature Algorithm: sha256WithRSAEncryption
95:5f:fe:a0:99:dc:23:ee:8a:da:99:d7:c7:92:cc:98:f4:74:
a7:05:61:99:06:6b:2e:da:bc:88:d6:e5:3a:88:7e:c6:77:42:
52:c8:cb:d2:31:6c:d8:4e:75:c3:e3:a0:9d:7e:c8:f9:a4:ae:
b0:aa:95:1c:af:65:69:48:e7:02:b1:89:09:73:e4:d6:e4:01:
f0:a1:24:c5:f9:d7:b3:67:03:31:9c:03:79:97:8b:d0:2a:9b:
36:15:a9:0d:87:09:06:ce:99:d1:23:4f:23:1e:13:0c:cd:97:
39:03:ab:98:06:f8:59:b3:4b:f4:ad:b1:bc:c3:34:e0:bd:94:
11:65:82:93:27:d1:9e:7f:8c:49:16:fb:b5:ea:ab:a7:a8:d7:
5d:b3:e5:3a:a3:2a:b0:4c:72:6a:7b:82:78:a9:5e:3b:cb:94:
b8:80:1e:ae:9d:42:39:af:cf:a2:26:c5:1b:69:c2:04:c0:bd:
3d:92:08:cc:2c:a3:55:2d:77:ef:e6:0b:af:61:e2:54:db:ff:
6e:25:82:d3:c6:7c:18:e9:82:d0:7a:af:e6:d2:d6:c5:4c:9f:
74:66:a6:ae:df:b7:69:9c:39:c9:fd:bc:cf:18:8f:5b:f7:f2:
07:b9:cc:75:fb:c1:5c:e8:46:3e:42:f0:d6:bd:03:d8:bb:14:
2c:fd:7b:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-fra.rpki-client.org