Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/Plq3I49hOCVSYmfE1A9IvkZHY2o.roa
File: Plq3I49hOCVSYmfE1A9IvkZHY2o.roa (raw, json)
Hash identifier: VmYV5nyhXm0K/gOZPU26TiMriKBuQLzImsAuq7/nU8M=
Subject key identifier: 3E:5A:B7:23:8F:61:38:25:52:62:67:C4:D4:0F:48:BE:46:47:63:6A
Certificate issuer: /CN=153f24183d6c95185919349e6e92533736437b94
Certificate serial: 018B431AB89FD586E877E242E443B7796173
Authority key identifier: 15:3F:24:18:3D:6C:95:18:59:19:34:9E:6E:92:53:37:36:43:7B:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FT8kGD1slRhZGTSebpJTNzZDe5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/Plq3I49hOCVSYmfE1A9IvkZHY2o.roa
Signing time: Wed 18 Oct 2023 14:05:06 +0000
ROA not before: Wed 18 Oct 2023 14:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 2a13:e940::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:43:1a:b8:9f:d5:86:e8:77:e2:42:e4:43:b7:79:61:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=153f24183d6c95185919349e6e92533736437b94
Validity
Not Before: Oct 18 14:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e5ab7238f613825526267c4d40f48be4647636a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:62:d9:93:a0:f0:32:b7:dc:45:b2:e3:79:cc:
6c:c2:0d:ba:9e:c0:18:03:e7:02:93:50:3a:1b:31:
27:cd:a9:ca:50:38:20:4d:6c:e8:be:88:c2:83:52:
8f:ea:37:fc:45:c8:82:c5:6e:e1:75:46:33:18:af:
be:e5:75:47:be:51:4e:84:7d:a8:0c:8a:14:6a:c9:
23:f1:a5:53:93:61:cc:61:7f:77:26:50:24:e4:fc:
7f:fc:73:d2:f1:46:2a:46:9c:4d:18:50:52:b9:30:
7a:78:02:3b:ba:d7:59:52:94:a4:89:fa:fe:af:93:
81:a5:2b:84:eb:16:2c:0a:cf:30:20:5c:50:af:9e:
6c:bb:61:8a:c6:92:5f:b4:15:5e:3f:f6:f8:13:a2:
fa:17:ca:e2:ce:5c:c7:9d:02:36:3f:d3:c6:98:19:
d1:6b:42:76:b9:83:90:6c:e2:01:44:c4:87:4c:bb:
4e:d1:fd:b0:38:70:09:2c:1b:46:08:37:f6:31:4b:
32:5f:c3:1e:a0:5c:2b:50:45:f6:6a:03:c4:1c:1e:
16:74:3b:1e:5e:28:10:0b:e3:e9:96:0f:76:c3:98:
92:e3:68:d0:b8:51:82:10:94:39:52:54:70:4d:d8:
7e:fe:46:23:fd:0b:0d:5a:e5:9b:62:3b:0b:3d:67:
6f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:5A:B7:23:8F:61:38:25:52:62:67:C4:D4:0F:48:BE:46:47:63:6A
X509v3 Authority Key Identifier:
keyid:15:3F:24:18:3D:6C:95:18:59:19:34:9E:6E:92:53:37:36:43:7B:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FT8kGD1slRhZGTSebpJTNzZDe5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/Plq3I49hOCVSYmfE1A9IvkZHY2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/FT8kGD1slRhZGTSebpJTNzZDe5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:e940::/29
Signature Algorithm: sha256WithRSAEncryption
05:a2:3f:a4:fb:d2:25:76:30:64:23:10:3d:8b:03:3d:8b:c4:
1c:51:2a:d7:30:4b:37:d1:7c:81:9b:31:6d:c7:6f:4c:10:1c:
fd:31:bd:99:61:5f:89:9e:1c:2a:dc:89:65:fb:28:7b:e4:74:
b0:4f:41:3a:46:98:ce:8d:d1:e2:69:62:93:83:5a:76:e8:6a:
02:77:70:6e:07:84:a7:97:3b:cb:e7:c5:05:f5:02:3a:8f:12:
ab:ba:e7:99:cd:72:23:3e:90:78:4e:50:6b:13:58:35:24:81:
13:c4:3f:4c:12:7a:6c:05:b7:1b:a5:93:07:e1:a1:c2:59:02:
b6:a3:c2:e4:84:95:6f:ef:2c:c5:1e:48:39:09:bc:ac:78:34:
f9:24:fa:b3:8a:ed:e8:9c:e7:65:8e:67:69:be:82:1f:6d:a5:
3c:df:09:9e:93:ef:c7:3f:dc:9a:c3:b2:5e:6a:17:cd:4d:66:
76:27:ef:e3:19:96:86:d3:e2:24:30:5a:3d:cf:76:f8:a9:e5:
c0:f9:5e:70:2c:48:02:dd:49:3f:a6:bd:08:44:76:41:57:f3:
41:80:59:9a:fb:a6:c4:83:ff:e9:40:04:77:ce:c6:23:fd:dc:
40:53:18:5d:6b:b1:61:8c:24:b4:4a:a9:ef:ba:a9:d4:bf:cb:
ab:27:7f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:11 2024 by rpki-client on console-ams.rpki-client.org