Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/aUOh9cwim81iYuE9VlMDpI3SNy4.roa
File: aUOh9cwim81iYuE9VlMDpI3SNy4.roa (raw, json)
Hash identifier: y0q2VW0czjK4MJykJfkYk/UAqxNkdyVUdx7qhV0rhwg=
Subject key identifier: 69:43:A1:F5:CC:22:9B:CD:62:62:E1:3D:56:53:03:A4:8D:D2:37:2E
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 018E9E8FC167BE6E68516937A88BF169D5F6
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/aUOh9cwim81iYuE9VlMDpI3SNy4.roa
Signing time: Tue 02 Apr 2024 11:26:45 +0000
ROA not before: Tue 02 Apr 2024 11:26:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211432
IP address blocks: 2a13:bfc0::/29 maxlen: 29
2a13:c040::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 13 May 2024 17:49:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:8f:c1:67:be:6e:68:51:69:37:a8:8b:f1:69:d5:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Apr 2 11:26:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6943a1f5cc229bcd6262e13d565303a48dd2372e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ee:9c:a3:ee:78:42:6b:95:2a:e6:06:85:88:
92:0f:02:ed:4c:7b:95:b8:6d:e4:d5:37:5f:43:df:
2d:d3:93:a6:b8:1b:78:f2:29:8f:ed:71:2f:12:f2:
2e:59:b2:69:ab:98:a0:26:b9:a9:94:f3:27:5d:1b:
68:ad:91:0e:37:40:a8:6d:99:c1:35:6d:12:55:a3:
04:ab:09:1e:fe:96:78:e9:3b:b4:ba:b3:6a:57:62:
c4:5f:00:46:2e:ab:11:52:f1:01:c5:9b:75:b4:96:
00:9e:1b:1e:40:83:85:78:4d:fe:ff:7c:4b:52:df:
43:3d:7e:46:ce:c9:bd:76:27:e8:80:fa:d1:ee:25:
be:56:b5:f2:5f:af:56:14:1f:52:d7:b8:d4:8c:e6:
61:b4:86:78:d4:69:dc:3e:c8:52:8f:5e:be:b9:9a:
7e:65:81:95:ba:be:74:a2:48:96:0c:9a:5c:f0:bb:
4a:fe:32:e9:84:ef:3a:96:23:17:5e:bb:a0:e3:6b:
75:f2:79:0d:19:1a:e6:83:30:c0:90:eb:c7:85:7b:
35:9c:04:30:b5:e2:17:2d:5e:cc:2f:0a:16:90:df:
a9:20:cb:aa:0b:8b:71:1a:b6:20:64:a5:be:58:08:
0b:65:3e:66:e8:e1:5d:69:9f:b9:42:af:5a:83:f0:
1e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:43:A1:F5:CC:22:9B:CD:62:62:E1:3D:56:53:03:A4:8D:D2:37:2E
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/aUOh9cwim81iYuE9VlMDpI3SNy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bfc0::/29
2a13:c040::/29
Signature Algorithm: sha256WithRSAEncryption
1b:d5:a8:3c:e5:4e:c3:2a:2e:60:8a:b5:35:1f:3f:2d:3a:90:
c8:06:85:49:d3:db:f1:70:73:d6:f9:95:91:0e:68:19:44:3e:
ac:f1:72:fd:2a:a9:b1:ca:6c:02:5c:b2:59:fe:4a:1a:77:dc:
25:9f:24:c4:67:62:95:71:1b:66:f5:bc:35:94:2e:9b:35:45:
39:33:7c:2b:98:cb:67:da:c1:40:84:a4:97:4a:fc:93:a6:da:
7d:e6:09:62:55:ba:83:18:65:1b:0a:73:b2:b8:b3:9a:b7:9d:
4b:bd:4d:aa:2e:06:85:4c:7a:a4:15:2c:f1:b5:61:1c:8c:94:
6c:1e:2f:ac:c9:1f:0c:42:6e:db:d8:e7:94:3a:47:fa:33:f3:
d3:a3:9f:f7:ca:14:fc:97:1b:b2:29:21:42:13:3f:62:1a:59:
41:3e:84:31:6c:bc:df:1e:00:5a:3c:6a:8b:f8:32:c6:e2:04:
85:25:06:85:ed:f3:97:15:dc:ee:bc:3e:98:80:9e:cf:8a:29:
b7:e8:19:91:c4:1f:9e:0f:5f:dd:d0:9d:ff:42:b7:99:56:00:
ec:ec:69:de:86:8f:19:44:fe:d6:bf:f0:46:d1:e6:dd:3d:7b:
34:8c:b3:e0:9f:d5:bc:f8:bd:e5:16:25:c5:9a:1b:54:95:39:
c7:e2:2e:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 19:53:46 2024 by rpki-client on console-ams.rpki-client.org