Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/jBInLqiwMIWG8e-gSolXVsl06UQ.roa
File: jBInLqiwMIWG8e-gSolXVsl06UQ.roa (raw, json)
Hash identifier: fDBU9SQWaL8jOv6Efc3+n71+B+wDaAOJ6pn0NYsTPr4=
Subject key identifier: 8C:12:27:2E:A8:B0:30:85:86:F1:EF:A0:4A:89:57:56:C9:74:E9:44
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 01923A38C7900D79D4AE7068428E538363D8
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/jBInLqiwMIWG8e-gSolXVsl06UQ.roa
Signing time: Sat 28 Sep 2024 20:00:52 +0000
ROA not before: Sat 28 Sep 2024 20:00:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60223
IP address blocks: 2a13:c040::/29 maxlen: 29
2a13:c040::/30 maxlen: 30
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:05:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3a:38:c7:90:0d:79:d4:ae:70:68:42:8e:53:83:63:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Sep 28 20:00:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c12272ea8b0308586f1efa04a895756c974e944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:59:2b:d3:53:c8:11:7f:f0:e0:3a:a3:64:
90:d6:99:45:bc:39:aa:79:e0:57:0a:36:9d:b0:e0:
6a:9a:2a:d6:ca:b2:a7:11:e4:6c:87:e7:55:0b:05:
72:3c:cd:5f:c8:ab:51:1c:d0:23:e7:77:61:b1:cf:
b6:17:b6:72:c7:3b:40:d3:92:1f:06:a4:d5:73:4a:
77:27:ab:e6:74:e6:1b:97:dd:f9:6d:7c:4e:96:56:
71:e7:e0:bb:90:e8:64:66:f6:cc:45:13:e2:1f:3b:
20:98:7d:1d:23:cf:cb:14:bf:12:ac:41:6a:42:86:
73:dd:67:56:d5:5d:80:8d:49:74:88:26:52:df:d1:
be:14:c4:b6:14:96:bb:7d:d3:3d:75:8a:a8:29:ce:
16:26:9e:fe:2f:7c:57:a0:d2:0b:ff:a6:9c:24:af:
54:b6:8d:c7:02:c0:eb:aa:6b:0a:95:f3:29:b1:2a:
53:b4:ed:a7:ca:af:08:6a:6a:4e:89:9f:51:54:00:
9a:91:f5:e5:4e:e5:a8:44:ba:a4:6d:5d:7a:a3:a0:
e0:a8:43:d7:11:bb:75:ef:72:1f:d5:c4:cc:b4:1c:
e9:e0:7a:28:cb:a9:af:6b:3c:8e:9a:75:96:18:00:
ad:a3:42:1e:ee:3f:60:6b:b5:99:35:41:d6:86:4f:
69:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:12:27:2E:A8:B0:30:85:86:F1:EF:A0:4A:89:57:56:C9:74:E9:44
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/jBInLqiwMIWG8e-gSolXVsl06UQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c040::/29
Signature Algorithm: sha256WithRSAEncryption
a7:a1:1e:94:01:7f:bc:d2:27:6f:c0:52:d7:64:ce:bd:12:02:
ca:b8:13:02:ad:57:15:e4:25:5d:dd:9b:ff:69:09:e5:db:25:
35:a9:29:8e:df:c1:fd:22:c4:b9:43:4e:ea:e1:2b:e4:a0:38:
2d:64:73:bf:f7:92:ca:30:75:95:8e:40:19:e8:50:d9:7c:34:
cc:0d:f4:1b:f1:d0:72:36:79:19:e8:9e:18:18:bc:1c:15:61:
18:9f:9a:55:d5:ee:f6:89:58:7c:9d:7a:20:dc:b9:e1:a8:12:
f9:1f:f7:1a:9d:0b:3e:8c:49:8f:0f:e4:90:9c:f8:63:d9:de:
24:75:5a:8a:2d:0f:75:f5:b3:6c:77:d2:e8:9e:97:eb:53:f2:
dd:56:22:48:70:04:04:7c:5c:b7:60:b4:bb:06:8d:89:ef:c5:
08:a8:36:cd:04:fa:97:f1:cf:5f:3a:e5:30:c0:ed:a1:1e:0b:
c1:2c:3b:c6:02:a5:73:d1:44:30:67:dc:21:1f:64:4f:ab:e2:
8f:0f:82:16:4d:65:eb:94:ed:db:e3:95:67:1a:b9:82:6e:13:
2c:8d:2c:c1:8a:d0:1a:a0:e1:19:7b:b3:b9:3f:80:cf:58:d0:
7a:85:3b:84:e1:c3:32:ce:a3:ee:db:50:c1:17:77:7d:83:57:
f0:e3:e2:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 12:52:17 2024 by rpki-client on console-fra.rpki-client.org