Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/OefmDr-ahvXRJyUvrK1wbVf1Nqo.roa
File: OefmDr-ahvXRJyUvrK1wbVf1Nqo.roa (raw, json)
Hash identifier: AzcGi1EDjpraKvWg32S2OE56Fk2xpE7DGfth81KIdkk=
Subject key identifier: 39:E7:E6:0E:BF:9A:86:F5:D1:27:25:2F:AC:AD:70:6D:57:F5:36:AA
Certificate issuer: /CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Certificate serial: 01888C190D9C495806DCC8AB4A0B98E8FBD6
Authority key identifier: 40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/OefmDr-ahvXRJyUvrK1wbVf1Nqo.roa
Signing time: Mon 05 Jun 2023 15:07:12 +0000
ROA not before: Mon 05 Jun 2023 15:07:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204774
IP address blocks: 2a13:5000::/29 maxlen: 48
2a13:5000::/48 maxlen: 64
Validation: Failed, certificate revoked on Wed 07 Jun 2023 14:53:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8c:19:0d:9c:49:58:06:dc:c8:ab:4a:0b:98:e8:fb:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Validity
Not Before: Jun 5 15:07:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39e7e60ebf9a86f5d127252facad706d57f536aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:47:da:6a:92:c1:8b:3d:14:c4:d2:bd:03:93:
ac:73:06:15:c1:38:47:2b:34:4f:7f:97:25:52:50:
95:ea:f9:9d:83:3e:dd:71:a8:bd:99:a5:bd:e2:40:
fa:85:76:11:4e:e1:83:c5:69:9e:13:b6:81:e1:cd:
41:8e:bd:cf:29:2b:03:93:6f:f4:03:9b:42:66:c0:
67:ae:24:2c:30:8d:3a:5b:1d:e2:44:db:d3:5a:b2:
24:ba:68:a2:a8:10:b3:5a:0c:47:38:0a:96:9e:8f:
ed:77:12:c9:87:0c:e2:4b:6d:95:ab:b4:0b:7f:cd:
42:b0:c8:ca:49:78:34:2e:4f:43:1a:99:73:ae:df:
b5:60:bd:87:a0:90:7c:c0:3b:bd:d8:c2:c1:1e:8c:
c0:9e:66:1a:62:75:03:49:4e:ca:c5:d4:34:9b:c1:
f1:b4:13:28:5c:bd:45:fa:1a:9c:58:23:8c:03:9d:
b7:59:48:b8:11:60:43:7f:77:41:88:2c:84:10:31:
b6:35:46:bf:18:7b:24:9e:7c:24:69:37:f9:ce:ee:
96:3b:33:22:6e:88:54:d1:aa:bf:d0:81:dc:12:72:
b7:1c:a1:7e:67:8a:40:6d:16:45:1b:02:ee:12:9a:
b7:3e:44:f9:b7:c2:58:47:35:86:dd:9f:30:4c:f2:
bd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E7:E6:0E:BF:9A:86:F5:D1:27:25:2F:AC:AD:70:6D:57:F5:36:AA
X509v3 Authority Key Identifier:
keyid:40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/OefmDr-ahvXRJyUvrK1wbVf1Nqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/QMyB_4LO1hrvhHas56DoGLuuj8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5000::/29
Signature Algorithm: sha256WithRSAEncryption
4a:fe:62:10:80:11:e2:c8:8d:97:14:9b:02:de:89:96:1e:33:
80:24:db:96:8c:3f:33:79:13:43:df:e9:ef:27:c7:54:0a:c8:
f9:d1:9d:2d:36:95:f6:17:e9:4a:a9:ad:a4:c7:74:94:47:d6:
ec:11:f5:ab:64:94:67:8b:6d:00:42:dd:5d:fa:26:ac:c5:09:
36:6e:98:f8:59:c3:bb:1e:ae:a0:85:44:94:75:1d:28:a6:e9:
c4:45:f8:04:f6:b3:94:30:05:a4:2e:64:17:63:8e:d3:20:90:
9b:cb:24:54:08:f9:11:77:ae:e4:95:25:74:a9:89:06:18:54:
d1:4d:ce:37:e5:eb:bf:fc:d7:5c:b7:f5:38:94:d7:16:9a:f4:
01:ac:ca:4b:bb:4e:a8:71:ef:38:df:78:9e:0a:34:f3:71:e2:
46:7a:be:fa:ce:c3:46:dd:24:2e:e7:43:ca:0e:db:65:45:0b:
fd:0a:a1:64:e2:fe:e7:3b:fe:dd:0c:43:58:b3:91:ad:eb:c7:
7e:69:63:22:44:da:03:c5:01:51:ee:fa:1d:b4:0c:97:43:d9:
9c:43:a6:8c:8d:b6:9e:5e:ef:bc:2e:b4:ab:f0:20:62:69:e2:
d6:f0:9b:86:0b:ed:19:e0:32:41:7e:83:7c:31:4a:e9:d5:5a:
97:dc:62:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:02 2024 by rpki-client on console-fra.rpki-client.org