Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/JNauPS6vlGNLhcdk3E1MB09RNBI.roa
File: JNauPS6vlGNLhcdk3E1MB09RNBI.roa (raw, json)
Hash identifier: QjdQJoeYQ3SHiwOxCHtEi2umeZh+ZgglPGls/wb+Cmc=
Subject key identifier: 24:D6:AE:3D:2E:AF:94:63:4B:85:C7:64:DC:4D:4C:07:4F:51:34:12
Certificate issuer: /CN=cff5dc76eb6f814ed601568fdd2c8110edef8c17
Certificate serial: 018C41CF5077B873C680B3CB95659083EF24
Authority key identifier: CF:F5:DC:76:EB:6F:81:4E:D6:01:56:8F:DD:2C:81:10:ED:EF:8C:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z_XcdutvgU7WAVaP3SyBEO3vjBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/JNauPS6vlGNLhcdk3E1MB09RNBI.roa
Signing time: Thu 07 Dec 2023 01:05:54 +0000
ROA not before: Thu 07 Dec 2023 01:05:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60504
IP address blocks: 2a13:82c2::/32 maxlen: 32
2a13:82c0::/32 maxlen: 32
2a13:82c5:1000::/36 maxlen: 36
2a13:82c5::/32 maxlen: 32
2a13:82c7::/32 maxlen: 32
2a13:82c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 07 Dec 2023 06:47:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:41:cf:50:77:b8:73:c6:80:b3:cb:95:65:90:83:ef:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cff5dc76eb6f814ed601568fdd2c8110edef8c17
Validity
Not Before: Dec 7 01:05:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24d6ae3d2eaf94634b85c764dc4d4c074f513412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:19:a8:06:58:fc:30:73:26:36:b2:55:e8:3e:
14:50:c8:99:2f:81:da:35:38:f8:d3:a3:5c:c9:f0:
ce:b1:69:f2:8b:4a:9e:97:a3:4e:7d:00:e0:23:99:
c3:d4:8f:53:4c:f5:e5:22:5d:27:ba:5e:7e:06:66:
cd:2f:41:b4:33:6c:c7:5f:4e:a2:3c:65:55:97:51:
37:7d:0a:6e:bd:d5:31:f3:52:8d:17:c4:bb:f0:08:
9c:dc:89:7f:71:79:5c:42:be:d9:dc:1f:83:7a:6f:
0f:db:08:f5:7e:e9:05:c3:be:18:08:39:ff:83:67:
79:44:10:19:c6:f8:04:6f:e0:0e:48:70:84:d7:87:
8f:d7:0b:5c:a8:f9:cf:2b:ca:55:be:8f:97:25:69:
70:1c:ae:5d:ab:c4:01:6a:71:2f:14:59:b0:c5:53:
90:b1:c4:aa:5f:cb:ce:8f:80:c9:ea:f6:c1:64:d0:
bf:5b:99:91:d9:86:c6:1e:f7:7f:d1:0d:7d:17:d6:
2e:a1:a0:f1:c7:d8:ee:46:e5:8e:99:e4:59:3e:8c:
34:54:4f:08:89:a2:fd:41:59:47:0f:93:3d:c1:7d:
f7:99:b5:68:79:32:45:b1:93:5a:78:c5:a7:63:6d:
c1:b5:c4:2f:28:66:58:d6:80:ca:a8:46:02:1a:6b:
88:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D6:AE:3D:2E:AF:94:63:4B:85:C7:64:DC:4D:4C:07:4F:51:34:12
X509v3 Authority Key Identifier:
keyid:CF:F5:DC:76:EB:6F:81:4E:D6:01:56:8F:DD:2C:81:10:ED:EF:8C:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z_XcdutvgU7WAVaP3SyBEO3vjBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/JNauPS6vlGNLhcdk3E1MB09RNBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/z_XcdutvgU7WAVaP3SyBEO3vjBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:82c0::-2a13:82c2:ffff:ffff:ffff:ffff:ffff:ffff
2a13:82c5::/32
2a13:82c7::/32
Signature Algorithm: sha256WithRSAEncryption
90:90:c8:70:dd:43:f0:05:32:59:2a:8a:95:62:5e:49:bc:47:
8a:32:c6:03:ec:ec:f4:a5:fc:32:e3:6f:1a:84:47:20:b1:1a:
21:5c:a9:6a:da:cb:b0:af:f5:b4:cd:ff:a1:12:07:89:c2:66:
0c:c3:41:19:49:9d:8b:fd:86:73:e4:49:17:f9:8a:d0:0d:42:
90:4c:b4:07:c0:54:d4:86:7c:3d:43:40:74:03:23:da:32:2b:
28:a1:b9:ae:e2:c6:57:13:a0:20:3d:69:37:21:de:7a:4c:88:
45:58:f8:28:c6:be:83:ff:d6:42:25:8a:7e:41:99:26:c3:d6:
ab:ab:83:ec:7a:bc:c0:56:0d:93:14:10:a0:98:88:cb:db:6f:
28:31:35:fb:6b:82:1a:bc:45:ad:0d:db:3e:6a:4b:f7:c1:6e:
05:2c:8a:0b:6c:62:7c:50:95:ba:ac:f6:25:48:cb:79:e5:60:
d3:f5:c1:e3:c1:11:00:3a:8d:b9:7c:37:7d:47:03:a4:ad:a1:
27:f2:bc:e5:46:e4:14:88:06:06:54:97:49:77:9f:4e:d4:86:
40:bb:ff:70:b5:1e:d1:dd:d7:d1:36:41:4d:6d:28:ae:a9:5e:
d1:56:4a:b0:2b:36:3a:f2:10:45:09:50:aa:f3:88:7e:a3:39:
15:3a:fd:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:47 2024 by rpki-client on console-fra.rpki-client.org