Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/cs3y9rSOWkllfx2fE5JOOvNASro.roa
File: cs3y9rSOWkllfx2fE5JOOvNASro.roa (raw, json)
Hash identifier: dSGCcP7UzZnh2gvPRBWuY+JMDQ+KNq8RjmKaoA1NgSc=
Subject key identifier: 72:CD:F2:F6:B4:8E:5A:49:65:7F:1D:9F:13:92:4E:3A:F3:40:4A:BA
Certificate issuer: /CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Certificate serial: 0185737A78DAA83DA43D6DF67F5F72BDDFD7
Authority key identifier: 40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/cs3y9rSOWkllfx2fE5JOOvNASro.roa
Signing time: Mon 02 Jan 2023 17:14:44 +0000
ROA not before: Mon 02 Jan 2023 17:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204774
IP address blocks: 2a13:5000::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 05 Jun 2023 15:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:78:da:a8:3d:a4:3d:6d:f6:7f:5f:72:bd:df:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Validity
Not Before: Jan 2 17:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72cdf2f6b48e5a49657f1d9f13924e3af3404aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:17:bb:28:cf:93:cf:4c:ee:10:87:ee:68:38:
95:b7:76:7b:47:75:8c:45:3f:fc:0e:93:0b:01:2d:
54:0b:f8:6f:e3:00:a5:ea:8a:bb:9f:2e:a7:f9:47:
48:f1:38:33:f5:30:32:4e:9d:17:e6:00:00:76:17:
53:77:72:ad:fa:d1:43:d8:88:5d:55:38:b4:2b:aa:
68:52:cf:25:9b:22:f7:fa:e1:c4:5f:d7:69:26:4b:
91:af:60:0a:74:a0:fb:3e:21:d8:03:f9:76:dc:01:
29:ed:da:aa:78:d6:07:d8:ef:0e:07:de:31:b6:fa:
01:70:67:e1:a7:5b:64:75:7d:96:8e:cb:5a:2f:53:
bd:88:e2:3e:93:b6:01:6f:7f:fb:9d:f9:63:74:c3:
e0:7f:db:b8:0b:d9:ae:66:d0:d8:34:b1:a8:7b:4d:
8d:a7:7e:9e:03:6d:96:8a:d4:8f:2d:a6:96:11:23:
db:7f:13:84:98:88:b4:2b:cd:13:7e:1a:64:6a:d0:
ba:3a:76:8d:61:83:11:40:d0:04:68:98:fb:38:58:
6b:40:54:bd:2a:43:12:7e:cd:e6:4b:ed:f2:8f:b0:
f8:f2:76:2a:8c:dc:1d:1f:0f:cd:60:0f:50:0a:b8:
87:d6:2f:89:66:e7:f7:34:b3:51:bc:de:b1:6c:2b:
fa:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:CD:F2:F6:B4:8E:5A:49:65:7F:1D:9F:13:92:4E:3A:F3:40:4A:BA
X509v3 Authority Key Identifier:
keyid:40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/cs3y9rSOWkllfx2fE5JOOvNASro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/QMyB_4LO1hrvhHas56DoGLuuj8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5000::/29
Signature Algorithm: sha256WithRSAEncryption
9b:16:60:09:99:99:e0:0f:4f:01:af:57:69:28:88:5b:71:a4:
5a:03:43:07:9c:f8:a0:b2:2f:19:07:0e:d7:d7:17:07:4e:23:
c4:20:44:b6:a7:a8:e2:2d:6c:fe:fa:7a:4f:f3:cf:5c:7d:5c:
e3:37:c2:65:fb:a8:53:11:09:dc:eb:48:e8:56:a7:9e:ec:3e:
ba:b6:76:f7:e7:38:c0:0a:27:50:43:f6:4e:6b:cd:6c:3c:6f:
ad:09:6b:b1:a5:62:cc:b8:a6:0f:32:df:e3:75:e1:a4:6f:7c:
06:c1:77:42:4f:c5:f3:e5:71:54:e1:42:9b:a9:ee:f7:b5:bf:
69:a1:2a:a9:cf:08:6d:1f:29:f5:a0:1c:b0:85:75:18:bb:75:
f1:e8:11:7d:6e:4c:cd:14:bf:b4:a3:20:05:39:b2:31:8b:c0:
d4:ce:96:3b:ee:ad:98:50:a1:81:69:d5:28:7c:54:38:e8:1a:
0d:ca:d2:ca:b1:62:28:22:a2:0f:01:f3:48:6c:cf:4d:13:cc:
b3:39:8a:4a:cc:da:d0:a5:6a:cc:08:1a:eb:91:f8:ea:4a:8a:
8e:c6:e8:77:e0:d0:b1:1a:b5:22:0b:ed:ae:84:04:f5:ca:ad:
c4:a2:03:aa:1a:f9:6a:d5:75:a4:9a:9e:57:21:89:30:e8:2a:
dd:39:01:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:42 2024 by rpki-client on console-ams.rpki-client.org