Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/psY6v-3rR0Hd1bTNy7pyMnUEBOQ.roa
File: psY6v-3rR0Hd1bTNy7pyMnUEBOQ.roa (raw, json)
Hash identifier: 56H/wMwG3ZAOBCH8Ld1Ts6zYAN3GjqcCGUEUkbwa9uc=
Subject key identifier: A6:C6:3A:BF:ED:EB:47:41:DD:D5:B4:CD:CB:BA:72:32:75:04:04:E4
Certificate issuer: /CN=f1f4609d0d053aec0307da44b0e678c388f641a4
Certificate serial: 01856F9DF8CCCA7E18ED6D6AD850295038D0
Authority key identifier: F1:F4:60:9D:0D:05:3A:EC:03:07:DA:44:B0:E6:78:C3:88:F6:41:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8fRgnQ0FOuwDB9pEsOZ4w4j2QaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/psY6v-3rR0Hd1bTNy7pyMnUEBOQ.roa
Signing time: Sun 01 Jan 2023 23:15:01 +0000
ROA not before: Sun 01 Jan 2023 23:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:2c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:f8:cc:ca:7e:18:ed:6d:6a:d8:50:29:50:38:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1f4609d0d053aec0307da44b0e678c388f641a4
Validity
Not Before: Jan 1 23:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6c63abfedeb4741ddd5b4cdcbba7232750404e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:94:0d:8f:c2:05:2e:ab:4b:c8:1a:6f:93:14:
36:91:2e:5a:34:8b:bb:f6:f7:6f:c0:e3:6e:8b:9a:
06:11:3f:6e:6a:f4:49:ea:41:a2:26:de:10:e3:8f:
d8:ab:4d:02:d1:6a:89:75:f4:9c:85:36:03:bd:5c:
3c:54:96:db:d1:92:49:77:41:87:ff:69:f0:a5:92:
de:26:a9:9f:af:1e:ac:52:70:0e:01:40:c9:07:aa:
83:65:e9:74:ed:49:cd:ea:b7:a7:6c:92:cc:51:88:
ef:00:35:31:b0:d5:70:4b:12:cb:06:09:3b:af:12:
d9:f2:25:a2:34:b0:05:98:c8:4d:3f:51:16:83:52:
b2:ce:1c:47:5d:d2:e3:1c:65:ee:e8:4f:76:39:fa:
db:de:ee:f4:94:66:09:dc:91:55:5f:9e:fb:5d:aa:
8e:bf:ec:a5:27:66:3e:77:5f:f9:49:83:82:43:ce:
ab:ef:69:ae:82:ad:c8:77:82:8f:f1:f2:21:2a:dd:
1e:e3:f2:95:9c:75:42:bd:0e:60:02:45:e6:2b:e0:
49:a1:d6:a3:cd:ad:49:d3:f9:fa:43:c8:4c:a1:4a:
a6:19:b6:63:c8:1f:40:98:45:c0:70:b8:7f:a2:f8:
b2:0d:b7:9e:24:01:6a:cc:c6:33:fd:d1:d4:53:5e:
12:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C6:3A:BF:ED:EB:47:41:DD:D5:B4:CD:CB:BA:72:32:75:04:04:E4
X509v3 Authority Key Identifier:
keyid:F1:F4:60:9D:0D:05:3A:EC:03:07:DA:44:B0:E6:78:C3:88:F6:41:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8fRgnQ0FOuwDB9pEsOZ4w4j2QaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/psY6v-3rR0Hd1bTNy7pyMnUEBOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/8fRgnQ0FOuwDB9pEsOZ4w4j2QaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
23:f1:5f:eb:30:77:de:b8:35:fb:06:27:8e:68:35:fe:97:c2:
8a:89:5f:17:ec:d2:c0:a0:e2:15:49:05:7d:e3:10:cf:8a:5b:
55:18:6e:8a:d7:bb:fd:2f:d5:70:83:f0:90:f3:6f:cf:8b:6c:
d5:b1:7f:18:38:4f:3e:2e:a5:af:08:a6:f4:19:0c:e0:ee:4e:
61:00:52:96:c6:46:de:9d:91:e4:f7:b2:c3:17:7b:68:25:0e:
2c:43:6f:ec:a9:a0:28:c5:0f:e6:e5:06:c1:12:50:d2:5f:cc:
e0:cc:5a:d1:76:4a:63:71:32:e9:5d:89:a3:28:37:24:5f:55:
4c:e7:f6:83:c3:f4:a0:70:c1:0a:cd:e0:17:d3:a4:ab:b6:ee:
be:04:23:f6:21:96:e2:87:43:67:25:28:94:eb:c8:24:e9:71:
87:7f:0e:94:c2:72:30:24:bc:29:be:a9:a3:98:9f:4b:e9:55:
f0:bc:6f:af:d1:75:be:dd:7a:fc:0c:90:78:4c:f0:c7:dc:05:
7e:d0:ba:47:36:46:0d:3a:44:5b:41:78:12:4f:fe:ac:92:7f:
ef:93:82:25:2f:a4:c3:fa:7e:6b:0d:a1:3f:6c:ee:d6:d0:42:
5e:a8:ad:74:87:e5:ee:bc:41:45:55:19:1b:a9:80:89:0c:c9:
ac:11:c2:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:25 2024 by rpki-client on console-fra.rpki-client.org