Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/9a4833-6da4-4dda-b7ab-28c343ce9d5d/1/3Xp92R_UJMbWSMQPyPsRUTT11Tc.roa
File: 3Xp92R_UJMbWSMQPyPsRUTT11Tc.roa (raw, json)
Hash identifier: t1Iee5gDxm0OW5n9gwHOzz8/eha099oGGr/nOYzA2Bg=
Subject key identifier: DD:7A:7D:D9:1F:D4:24:C6:D6:48:C4:0F:C8:FB:11:51:34:F5:D5:37
Certificate issuer: /CN=a4327c56e941171ea3beba26ebb9e23f4df5bcf3
Certificate serial: 018BA8D420A089DAAF4701373991F890A9D5
Authority key identifier: A4:32:7C:56:E9:41:17:1E:A3:BE:BA:26:EB:B9:E2:3F:4D:F5:BC:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDJ8VulBFx6jvrom67niP031vPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/9a4833-6da4-4dda-b7ab-28c343ce9d5d/1/3Xp92R_UJMbWSMQPyPsRUTT11Tc.roa
Signing time: Tue 07 Nov 2023 08:09:16 +0000
ROA not before: Tue 07 Nov 2023 08:09:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216134
IP address blocks: 2a13:cb40::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 14 Dec 2023 09:27:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a8:d4:20:a0:89:da:af:47:01:37:39:91:f8:90:a9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4327c56e941171ea3beba26ebb9e23f4df5bcf3
Validity
Not Before: Nov 7 08:09:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd7a7dd91fd424c6d648c40fc8fb115134f5d537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1a:74:55:ab:3c:c5:4c:de:0a:fb:60:e5:70:
51:67:4b:53:2a:d9:ab:64:d7:4f:6d:a0:02:f8:86:
61:08:27:c7:5e:7a:3d:71:12:96:a7:ed:e1:aa:50:
30:6b:55:71:12:94:b4:83:e6:d1:99:85:c5:2d:eb:
ab:ce:b8:43:fd:ca:61:c4:a8:a9:47:bd:60:21:ce:
14:46:ba:c9:eb:f3:37:df:98:ab:09:1c:60:fc:d5:
fb:af:0b:a0:94:86:fc:0c:b2:2f:b4:b6:5a:fd:69:
2f:f1:e3:68:46:37:f0:25:2f:21:0f:d2:a8:6c:da:
c1:f2:af:8a:a7:2a:20:67:e6:43:e0:af:89:a0:51:
e6:d0:8c:ce:a1:16:03:6e:70:9a:18:8c:02:61:c3:
af:17:88:d5:b1:da:e3:1d:75:c1:3b:ad:93:f8:65:
0b:35:6a:6d:fa:f2:57:c8:34:6b:bd:38:7a:58:d6:
22:4e:e2:99:2d:08:f1:51:e2:4a:a6:69:dc:9c:06:
bc:a6:03:b8:9a:53:70:d3:d1:42:27:b5:de:27:7a:
b1:e0:f3:f5:f8:45:8a:30:95:4a:70:b0:47:c5:5e:
23:74:bc:84:7f:f7:de:8d:5d:dd:7b:2b:1e:9b:f3:
d9:74:c4:ac:09:44:4a:f6:16:a6:e6:38:75:b7:29:
6c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:7A:7D:D9:1F:D4:24:C6:D6:48:C4:0F:C8:FB:11:51:34:F5:D5:37
X509v3 Authority Key Identifier:
keyid:A4:32:7C:56:E9:41:17:1E:A3:BE:BA:26:EB:B9:E2:3F:4D:F5:BC:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDJ8VulBFx6jvrom67niP031vPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/9a4833-6da4-4dda-b7ab-28c343ce9d5d/1/3Xp92R_UJMbWSMQPyPsRUTT11Tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/9a4833-6da4-4dda-b7ab-28c343ce9d5d/1/pDJ8VulBFx6jvrom67niP031vPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:cb40::/29
Signature Algorithm: sha256WithRSAEncryption
68:89:9e:91:3d:36:51:d3:7d:3e:da:a6:bc:7e:eb:4f:5b:fa:
d4:98:c7:38:49:e1:f7:7e:75:ea:ed:53:7a:86:4b:80:bc:26:
d4:f5:f6:1e:a7:9a:e2:ef:28:fb:38:2c:91:62:b8:6e:16:eb:
26:81:7a:c4:df:04:44:dd:c5:82:6c:87:3b:b1:90:5c:af:e8:
6d:ff:92:12:1d:60:47:bd:88:8a:15:67:cc:80:21:a5:36:46:
0e:35:d3:ab:4d:62:4b:5b:fa:0d:a8:42:f5:6f:a7:cc:8c:5d:
3a:4d:cc:67:6a:98:dc:99:a9:b8:9c:72:33:ff:bf:3d:70:64:
eb:7e:e1:b9:a1:e1:e0:b8:b8:1f:06:e4:0f:7a:32:c9:bb:51:
62:88:0b:bb:6f:70:19:98:28:85:5f:81:90:b3:fb:73:1a:0e:
53:87:d8:70:a7:3f:3d:e8:21:af:9d:32:70:1b:51:a1:04:fa:
c3:e1:fe:4b:75:70:bf:eb:09:4e:72:74:8d:43:a8:d3:05:9b:
3a:fc:27:73:83:9c:f3:8d:2d:10:78:0d:63:8b:07:14:63:97:
f4:4a:cb:0a:c7:e7:00:b5:8a:65:49:d5:53:30:db:1b:dc:ed:
65:6d:65:d1:9b:78:44:b9:4f:71:74:e8:47:b3:9e:71:d0:8f:
b5:0d:78:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:59 2024 by rpki-client on console-ams.rpki-client.org