Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/NmfeED09BTxg4RWC0yb1rd6VuRs.roa
File: NmfeED09BTxg4RWC0yb1rd6VuRs.roa (raw, json)
Hash identifier: /rEwtip3fj1bqtDf4TlVMtxssxIWXNsZnWKUD1gkQ0w=
Subject key identifier: 36:67:DE:10:3D:3D:05:3C:60:E1:15:82:D3:26:F5:AD:DE:95:B9:1B
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0191A521F0ADC3F68A98FDB963AA1459D1CC
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/NmfeED09BTxg4RWC0yb1rd6VuRs.roa
Signing time: Fri 30 Aug 2024 21:12:30 +0000
ROA not before: Fri 30 Aug 2024 21:12:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60223
IP address blocks: 2a13:8000::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 01 Sep 2024 17:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a5:21:f0:ad:c3:f6:8a:98:fd:b9:63:aa:14:59:d1:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Aug 30 21:12:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3667de103d3d053c60e11582d326f5adde95b91b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5a:d8:17:a0:84:3d:7b:ae:20:cd:cf:45:ee:
3d:ab:7b:63:8b:7c:97:64:47:02:de:f9:48:6f:2e:
51:7d:dd:05:43:2c:80:6a:8e:0e:88:31:86:07:af:
ab:8d:4a:68:c7:d1:4f:12:ff:3f:24:32:1a:bb:0f:
61:f5:7f:7a:6d:c7:95:9e:93:a1:e2:16:a6:bf:bc:
54:cd:7c:54:06:f0:1f:3e:fe:86:a9:97:fe:48:35:
0e:f4:bf:0b:e9:4d:c3:70:aa:dd:07:b6:da:10:ad:
06:c1:19:70:fa:4f:59:82:a4:d7:00:c0:8c:f3:67:
49:b2:e4:25:6d:db:79:d4:2c:0a:50:30:9b:c0:f8:
6d:d7:a2:19:cd:cd:38:18:84:7d:00:fe:7a:42:e8:
43:81:f4:a9:20:e4:0a:01:ac:ee:6d:2f:c5:ed:7c:
c7:61:5c:fd:cd:71:7a:9a:f0:f1:2f:a6:73:0f:7e:
5e:a6:66:40:4a:94:82:98:eb:ee:68:f8:f7:b4:8c:
11:2f:38:50:56:78:3a:6c:93:5a:48:14:bc:de:76:
c5:cd:6b:e3:ba:6c:0f:99:7d:52:e1:01:60:b2:3f:
7c:a2:aa:20:85:4a:a5:a2:52:71:1e:8a:8f:ad:9c:
6b:03:f2:f1:53:06:84:ec:03:a8:12:2a:96:72:87:
05:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:67:DE:10:3D:3D:05:3C:60:E1:15:82:D3:26:F5:AD:DE:95:B9:1B
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/NmfeED09BTxg4RWC0yb1rd6VuRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:8000::/29
Signature Algorithm: sha256WithRSAEncryption
2a:14:92:90:4c:7f:8b:f9:f8:66:da:61:4a:d0:50:93:d6:71:
44:a5:76:87:c8:c7:68:eb:e1:37:e7:30:d3:dd:4f:e0:03:45:
5a:4b:db:a0:35:f6:45:3c:bc:81:71:36:59:69:7a:7b:18:33:
e8:af:d0:33:74:3f:cd:cd:1c:a4:44:eb:67:41:11:3f:71:11:
5e:ce:c7:15:e8:14:22:fb:ca:f8:93:08:c1:c0:ce:82:61:8e:
38:60:a1:c7:ff:2b:bd:24:64:9f:13:26:90:cd:ee:e1:23:72:
32:1a:8c:24:28:f4:2b:d5:9a:79:7d:58:ce:95:de:e1:0b:e7:
49:a2:bd:3f:48:f2:f4:c1:5e:1b:25:df:64:9c:c8:c5:2a:17:
2b:62:02:2f:f8:0b:81:a8:33:05:24:0e:3c:97:60:5c:ef:bd:
4a:4b:6c:3b:d7:13:62:69:52:ef:b1:d5:bb:c0:27:ab:76:c3:
42:0e:8d:c6:cb:64:8b:e7:c8:b1:69:22:15:7e:ee:73:f0:3f:
4a:6e:37:46:d3:14:61:19:d1:81:f1:13:8d:e0:38:e5:4d:7a:
a1:28:b0:ce:34:b0:91:d4:47:6a:f4:c2:09:7e:fe:fc:40:29:
b2:e2:b8:46:98:20:07:b7:ed:ee:ca:d0:ec:1b:2f:3b:08:e9:
b9:36:64:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 18:04:15 2024 by rpki-client on console-fra.rpki-client.org