Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d20dbc-2ab4-43fb-80a2-04e7b1a8ce18/1/1TerYwv4DFDtdkaxIIU7qaA5zA8.roa
File: 1TerYwv4DFDtdkaxIIU7qaA5zA8.roa (raw, json)
Hash identifier: UFDBu5FlxFcxbNcBqxuA0FhwJLE2vGOaAdBarSpPZm4=
Subject key identifier: D5:37:AB:63:0B:F8:0C:50:ED:76:46:B1:20:85:3B:A9:A0:39:CC:0F
Certificate issuer: /CN=e373bcd3255a0dad5f4a350d11dc891fa0be0437
Certificate serial: 018B28B3378DE03A6123E0F7A63D2AD11388
Authority key identifier: E3:73:BC:D3:25:5A:0D:AD:5F:4A:35:0D:11:DC:89:1F:A0:BE:04:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43O80yVaDa1fSjUNEdyJH6C-BDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d20dbc-2ab4-43fb-80a2-04e7b1a8ce18/1/1TerYwv4DFDtdkaxIIU7qaA5zA8.roa
Signing time: Fri 13 Oct 2023 11:01:55 +0000
ROA not before: Fri 13 Oct 2023 11:01:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205311
IP address blocks: 2a0b:e540::/29 maxlen: 32
Validation: Failed, certificate revoked on Fri 13 Oct 2023 14:14:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:b3:37:8d:e0:3a:61:23:e0:f7:a6:3d:2a:d1:13:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e373bcd3255a0dad5f4a350d11dc891fa0be0437
Validity
Not Before: Oct 13 11:01:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d537ab630bf80c50ed7646b120853ba9a039cc0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fa:ab:04:f4:4e:51:21:79:61:12:db:7e:4e:
3f:4d:cc:59:64:ef:d8:50:c0:76:64:80:f1:31:f4:
cf:ed:9d:85:ed:b7:2a:3c:bf:86:86:02:d9:f5:f3:
5e:f0:97:07:59:80:9a:fa:56:e3:56:9b:03:39:34:
ef:25:cc:fe:09:8b:8a:89:06:75:e9:3a:0d:2d:55:
cc:d7:a4:60:f9:4b:46:90:73:3b:98:9c:ac:32:84:
b1:23:d8:a4:05:65:dd:dc:8f:e1:05:56:ea:12:cb:
0a:29:df:7c:d2:4c:35:cc:2a:ce:ae:66:8a:22:54:
08:56:ea:b8:1f:63:d1:1d:0a:4b:da:b5:a9:cc:57:
cb:ec:d1:55:4a:ef:95:99:4d:e9:98:95:13:47:05:
7a:0b:e6:e4:3d:3b:d7:4f:5c:b2:23:b5:a6:1b:34:
0d:6e:ab:df:f1:36:ef:21:84:06:69:51:44:fa:09:
fc:1f:f1:c9:82:b0:ac:d9:5d:97:c4:ef:69:57:a9:
58:53:ad:34:b6:44:ae:62:08:d5:9c:fd:b0:3c:91:
d5:df:41:5a:0c:30:5c:d4:79:75:9b:62:ca:c0:71:
5d:76:93:c3:6e:eb:60:0b:0a:c9:28:3d:b3:ec:4d:
32:ed:79:c2:11:aa:3c:87:05:33:fe:5f:13:a7:5f:
a6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:37:AB:63:0B:F8:0C:50:ED:76:46:B1:20:85:3B:A9:A0:39:CC:0F
X509v3 Authority Key Identifier:
keyid:E3:73:BC:D3:25:5A:0D:AD:5F:4A:35:0D:11:DC:89:1F:A0:BE:04:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43O80yVaDa1fSjUNEdyJH6C-BDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d20dbc-2ab4-43fb-80a2-04e7b1a8ce18/1/1TerYwv4DFDtdkaxIIU7qaA5zA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d20dbc-2ab4-43fb-80a2-04e7b1a8ce18/1/43O80yVaDa1fSjUNEdyJH6C-BDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:e540::/29
Signature Algorithm: sha256WithRSAEncryption
5e:22:d6:86:63:bc:7b:c2:ec:ce:1e:0d:9a:ce:aa:be:bb:85:
e5:e6:4e:0f:8e:bd:e6:fe:f4:81:78:2c:92:ac:72:28:79:f3:
a1:93:14:23:5d:d8:d8:dc:91:7f:8c:19:b1:9c:72:95:8b:0d:
87:a3:90:c6:40:17:34:02:6c:66:19:3c:c5:99:52:00:b5:92:
9d:88:31:b1:0f:f3:4c:96:21:ba:c1:ff:e2:60:44:9d:93:4d:
f8:33:0f:78:20:bb:f0:4e:53:78:0b:68:14:3c:1a:69:86:a2:
d2:15:f5:20:46:c4:95:dc:21:e3:ae:0c:e4:a6:e8:15:8d:14:
51:51:da:90:99:2b:d4:b1:5a:21:48:16:ba:99:2b:80:59:e6:
a7:d0:17:7c:2e:54:bf:b8:78:59:ae:76:2f:88:fd:30:2a:e9:
98:2b:40:7e:d3:68:50:1b:47:a8:36:8d:dc:91:57:5a:8d:97:
95:a9:d5:67:1f:58:45:22:da:3d:1a:2d:f6:69:71:a6:76:6c:
f2:04:3c:5e:ed:17:c7:06:04:cd:23:70:2f:6d:37:bb:b8:2c:
77:e8:05:2c:0f:eb:e3:f1:3d:d6:93:a9:1d:14:5e:ee:7d:cb:
dc:6a:a5:ee:1e:ab:4d:30:b7:b8:63:17:78:36:40:e6:66:01:
b0:85:41:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:33 2024 by rpki-client on console-ams.rpki-client.org