Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/fbbdfa-dcfa-4ded-97a1-4e3807a38158/1/cTFZVKeD82ORcTYwEOlM5k8kCXY.roa
File: cTFZVKeD82ORcTYwEOlM5k8kCXY.roa (raw, json)
Hash identifier: crrEY3NFhXRRcHm0bGhFDw9MJ2uMOaYTlqEftuv/K/Y=
Subject key identifier: 71:31:59:54:A7:83:F3:63:91:71:36:30:10:E9:4C:E6:4F:24:09:76
Certificate issuer: /CN=1740132e505f78bad0112f91b55986879535cac0
Certificate serial: 01856BF7E99DD3DCA1FDFEFE2D1084E36AAA
Authority key identifier: 17:40:13:2E:50:5F:78:BA:D0:11:2F:91:B5:59:86:87:95:35:CA:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0ATLlBfeLrQES-RtVmGh5U1ysA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/fbbdfa-dcfa-4ded-97a1-4e3807a38158/1/cTFZVKeD82ORcTYwEOlM5k8kCXY.roa
Signing time: Sun 01 Jan 2023 06:14:47 +0000
ROA not before: Sun 01 Jan 2023 06:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56987
IP address blocks: 2a13:1080::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:f7:e9:9d:d3:dc:a1:fd:fe:fe:2d:10:84:e3:6a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1740132e505f78bad0112f91b55986879535cac0
Validity
Not Before: Jan 1 06:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71315954a783f3639171363010e94ce64f240976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f1:ef:52:dc:15:3a:d3:0f:ff:c4:3d:35:f1:
04:c2:78:bb:1a:aa:66:d5:bb:1e:52:dd:05:3d:84:
38:9a:6e:2a:1f:9a:83:da:57:14:a9:8b:2b:28:5d:
16:8c:fb:35:22:1d:eb:69:4a:b4:13:53:de:c0:b5:
a4:68:1b:6b:2c:e1:29:aa:38:23:e9:66:dc:4b:2a:
43:95:f0:b9:7c:76:d9:6f:6f:f2:f2:41:e9:a9:3f:
50:84:dc:f7:53:4d:23:b2:dc:db:c4:40:cd:04:82:
10:0e:a0:e4:8c:21:49:52:59:2e:e8:5c:e4:cb:74:
0c:c9:75:b6:f0:05:e1:b7:b6:5c:7b:41:93:e5:58:
39:00:e3:7e:59:0c:37:ca:3e:68:04:83:ba:18:58:
99:af:55:7f:6f:61:52:4b:0d:e7:b1:0b:b4:90:73:
6b:c7:47:34:ba:a8:a0:ee:30:5a:8f:56:25:0c:f0:
b2:0e:24:08:96:78:0c:ea:95:ae:58:84:a5:db:0a:
22:bd:30:47:70:7c:cc:ce:59:e0:e9:9d:78:11:b6:
28:aa:3e:d0:9a:01:78:76:a9:02:d0:b9:89:72:21:
a8:f4:ac:ef:aa:08:b3:6c:83:27:2a:72:07:02:93:
83:db:9f:5f:a9:5e:a4:27:ce:6f:e1:18:a9:28:44:
43:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:31:59:54:A7:83:F3:63:91:71:36:30:10:E9:4C:E6:4F:24:09:76
X509v3 Authority Key Identifier:
keyid:17:40:13:2E:50:5F:78:BA:D0:11:2F:91:B5:59:86:87:95:35:CA:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0ATLlBfeLrQES-RtVmGh5U1ysA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/fbbdfa-dcfa-4ded-97a1-4e3807a38158/1/cTFZVKeD82ORcTYwEOlM5k8kCXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/fbbdfa-dcfa-4ded-97a1-4e3807a38158/1/F0ATLlBfeLrQES-RtVmGh5U1ysA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1080::/29
Signature Algorithm: sha256WithRSAEncryption
22:ab:1d:48:75:0a:37:53:b9:39:93:0c:aa:81:18:8c:03:de:
25:15:56:f6:ff:7d:ca:5c:84:9b:1c:cb:2b:40:b4:b6:10:87:
ce:33:b2:5f:13:63:0e:1b:48:0f:f2:65:d0:49:7c:a3:05:e4:
c7:b9:36:f0:9f:35:fc:54:df:e0:5a:38:ba:52:97:58:a4:7e:
5c:85:e4:5e:05:00:8e:eb:53:5e:0b:2b:e4:1e:4c:86:b7:65:
0b:7f:da:1e:cd:26:3c:84:e9:e9:9b:0e:8e:88:2a:eb:51:69:
b1:65:d3:e9:82:f8:0c:d2:82:94:bc:3b:e8:eb:ae:80:d8:48:
e4:c9:82:70:3c:33:82:6c:67:4b:62:3e:08:61:fb:a5:bc:33:
f3:38:2d:99:6b:62:ed:76:bf:ee:1d:72:c0:97:6f:2a:74:8c:
c9:f4:c0:dc:c7:e3:83:86:2d:2d:90:65:e5:c7:70:57:61:21:
67:65:b5:b4:b3:45:12:7e:b0:eb:3a:a7:e1:b4:e2:9a:19:77:
4e:c7:ba:25:11:2d:9a:a2:f9:cb:9a:39:a9:0d:6a:34:ea:ea:
9e:2f:88:e1:1a:ff:1c:81:52:f5:05:95:a2:3f:62:4d:f3:83:
bc:5b:84:35:da:dc:07:00:e2:ed:26:c7:c7:c9:97:d9:ec:24:
45:3a:2e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:49 2023 by rpki-client on console-fra.rpki-client.org