Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/lNuF9BahKwh_8H89K0anEOL6cJY.roa
File: lNuF9BahKwh_8H89K0anEOL6cJY.roa (raw, json)
Hash identifier: Rvr7yHhZ/JPmMOnKPLPXbm/1UIE6DAU/4bcBKU04gwc=
Subject key identifier: 94:DB:85:F4:16:A1:2B:08:7F:F0:7F:3D:2B:46:A7:10:E2:FA:70:96
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 01923A38C8569A06407DC1AB22D688DA2CC5
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/lNuF9BahKwh_8H89K0anEOL6cJY.roa
Signing time: Sat 28 Sep 2024 20:00:52 +0000
ROA not before: Sat 28 Sep 2024 20:00:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214943
IP address blocks: 2a13:8000::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:06:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3a:38:c8:56:9a:06:40:7d:c1:ab:22:d6:88:da:2c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Sep 28 20:00:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94db85f416a12b087ff07f3d2b46a710e2fa7096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7d:99:12:89:36:27:37:a9:8b:bb:3d:c0:8c:
8c:d7:cb:0a:89:49:8b:27:bc:6e:d7:e2:fa:45:48:
50:2e:2e:c9:29:4d:8a:cb:79:ff:a8:57:b5:e7:e8:
ac:e1:c2:cc:22:0e:2d:74:be:c7:2d:11:33:87:38:
71:7f:64:93:2b:fa:30:27:b2:46:f7:64:c9:b7:5b:
81:68:07:00:9f:5b:0d:ce:80:5f:f4:09:8d:7f:8f:
5f:65:93:05:0f:5c:1b:38:23:dc:cc:45:1a:f8:b7:
3b:51:85:c1:19:86:07:df:bd:eb:86:e1:a9:b9:e2:
44:73:ff:c6:7b:81:f2:a8:68:dc:ec:a4:57:45:b5:
09:93:ee:eb:cd:6a:9c:ba:82:86:30:08:d1:68:22:
ba:a7:17:51:45:94:e5:29:37:92:f9:3f:e6:00:95:
38:29:54:e7:c3:72:f7:1f:61:86:e9:36:35:a3:86:
77:f0:d1:26:ee:b8:4b:0c:53:66:fd:a2:79:94:a8:
bc:a7:c4:cf:3c:71:b8:da:8f:c7:03:6a:9c:7d:6e:
ae:80:52:f3:11:df:45:57:35:d2:9f:21:e1:37:dd:
bd:b4:40:03:93:51:ae:8d:bb:5c:7e:0b:57:ea:54:
5e:88:17:e8:4c:e0:96:a3:5c:65:c9:25:69:24:30:
ae:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DB:85:F4:16:A1:2B:08:7F:F0:7F:3D:2B:46:A7:10:E2:FA:70:96
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/lNuF9BahKwh_8H89K0anEOL6cJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:8000::/29
Signature Algorithm: sha256WithRSAEncryption
33:97:1c:c5:36:61:36:b6:37:9c:77:ef:f9:fb:cd:6f:cb:aa:
f1:ab:df:07:90:d4:5a:b2:f4:6c:1f:ea:c6:82:8d:a3:b5:5e:
32:77:60:7b:51:f4:1b:cc:ec:f6:c9:15:97:b5:ff:ed:63:7e:
90:d0:ba:45:4f:7d:60:2d:ac:b2:28:25:e3:01:aa:92:78:33:
5a:1e:33:b4:a6:e0:1e:a3:5f:a8:9d:db:aa:e5:7c:ce:5f:f2:
f6:6d:59:37:3d:1c:f2:30:31:d4:61:b6:64:a3:49:97:74:cf:
56:cb:2f:02:1e:34:03:ee:9c:ba:08:60:cd:e5:f9:8f:74:34:
6a:d0:e1:28:dd:66:81:35:3d:39:6c:c6:24:7f:0c:2f:9c:5d:
2c:56:0d:49:2a:fe:18:d2:c1:58:03:9c:0c:0e:48:e3:30:86:
89:8e:c0:68:c9:11:ce:54:ab:ed:f7:fb:81:20:6e:19:c6:20:
1e:17:b6:03:ee:95:92:f2:92:a2:23:d9:50:c4:7f:6e:21:07:
5f:08:e3:3c:31:ae:89:2f:9e:cb:e8:5c:35:c5:a4:ba:53:cc:
19:fd:b8:54:31:32:0f:09:1d:bd:1a:8a:3b:a1:a0:b4:c7:da:
d9:d6:f4:f7:0d:f5:1f:89:24:d7:61:2f:b8:38:ea:be:96:a6:
28:fd:4c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 13:22:31 2024 by rpki-client on console-ams.rpki-client.org