Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/31315c-81a4-4969-8571-d76346a7adc6/1/3Ahe8vyedCme5_fzsGkkW3pcXjw.roa
File: 3Ahe8vyedCme5_fzsGkkW3pcXjw.roa (raw, json)
Hash identifier: vYQHAZh/nLmNZr7F07FIpQrmja3UvCSJCXzYB32pi00=
Subject key identifier: DC:08:5E:F2:FC:9E:74:29:9E:E7:F7:F3:B0:69:24:5B:7A:5C:5E:3C
Certificate issuer: /CN=34a2ea557b42a9fd3a80211506193c2b3389dc6f
Certificate serial: 0186DEAA64484280A64A53B01A4F136DCD01
Authority key identifier: 34:A2:EA:55:7B:42:A9:FD:3A:80:21:15:06:19:3C:2B:33:89:DC:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NKLqVXtCqf06gCEVBhk8KzOJ3G8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/31315c-81a4-4969-8571-d76346a7adc6/1/3Ahe8vyedCme5_fzsGkkW3pcXjw.roa
Signing time: Tue 14 Mar 2023 05:49:14 +0000
ROA not before: Tue 14 Mar 2023 05:49:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29491
IP address blocks: 2a13:e600::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 20 Dec 2023 21:34:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:de:aa:64:48:42:80:a6:4a:53:b0:1a:4f:13:6d:cd:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34a2ea557b42a9fd3a80211506193c2b3389dc6f
Validity
Not Before: Mar 14 05:49:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc085ef2fc9e74299ee7f7f3b069245b7a5c5e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f1:8a:b3:78:ff:78:81:4b:d6:1d:e4:dc:af:
92:a6:23:cc:01:89:b8:73:dd:1f:c0:0f:51:4a:6d:
45:5f:dc:b4:eb:f3:94:58:a9:1d:a1:56:11:b5:b5:
11:7d:ab:11:79:52:e2:30:03:87:79:57:f0:9d:79:
c4:9e:4f:77:ba:16:c1:f0:c6:d7:90:ac:78:a6:bf:
09:4c:b8:a9:96:b3:23:13:0b:8f:66:cc:1a:c1:ac:
12:53:9a:81:3b:cf:5e:37:cc:62:74:e2:fb:73:50:
6e:b2:82:09:a4:0f:4c:e6:0d:60:5b:48:90:25:04:
84:b7:24:0e:98:d3:25:ea:d5:32:59:98:8b:a9:4c:
ab:73:eb:1c:37:86:b0:b5:0e:36:4d:27:34:26:7e:
0b:44:72:90:60:69:3f:b5:22:34:42:c1:23:f6:ca:
7e:df:c8:2b:70:88:75:2a:2c:3d:aa:12:07:ba:10:
20:ff:53:cf:7e:d9:ce:0b:a8:01:22:2d:c6:03:97:
58:72:18:d9:9d:26:56:20:91:75:2c:40:d8:a1:11:
2a:1a:3a:b4:47:f3:ad:60:18:d2:96:eb:bb:27:41:
f7:3b:cb:92:77:6e:5f:82:9f:ad:f6:27:94:a9:1c:
7c:01:4d:6c:86:89:ec:72:b5:5d:49:e1:73:aa:4d:
34:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:08:5E:F2:FC:9E:74:29:9E:E7:F7:F3:B0:69:24:5B:7A:5C:5E:3C
X509v3 Authority Key Identifier:
keyid:34:A2:EA:55:7B:42:A9:FD:3A:80:21:15:06:19:3C:2B:33:89:DC:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NKLqVXtCqf06gCEVBhk8KzOJ3G8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/31315c-81a4-4969-8571-d76346a7adc6/1/3Ahe8vyedCme5_fzsGkkW3pcXjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/31315c-81a4-4969-8571-d76346a7adc6/1/NKLqVXtCqf06gCEVBhk8KzOJ3G8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:e600::/29
Signature Algorithm: sha256WithRSAEncryption
17:9f:d3:55:26:5c:71:68:5c:f9:c1:92:09:21:a7:cc:e8:de:
b6:4c:2e:57:d9:54:91:7b:e7:b3:64:df:5c:eb:a3:92:dd:bb:
14:ca:4a:0f:95:fb:85:e9:69:b2:eb:e9:68:82:1b:d5:4d:b2:
85:33:01:7e:18:4f:4b:90:a5:fa:9e:96:3b:72:8a:2b:8e:93:
1f:ca:1c:04:46:48:99:b0:7a:8d:23:31:16:54:73:29:04:f1:
95:07:5d:c0:9c:7f:26:19:53:48:cb:6d:47:af:b2:e3:50:1f:
12:6a:d8:49:d1:ee:23:38:c9:57:a5:cd:94:f6:30:3c:dd:39:
bd:4a:7e:16:ea:7a:e1:0e:ef:e9:a1:43:bd:d4:83:1a:8d:7e:
64:fa:12:78:df:e4:8c:f8:7e:fc:29:50:81:c0:15:39:92:e1:
34:8e:6e:eb:20:be:8c:da:eb:c6:a1:e3:80:13:d3:1f:15:36:
73:fa:cd:6e:d2:11:5f:4e:45:9b:a6:bd:77:de:8b:d1:3d:43:
56:b5:f4:2d:13:e5:6b:ec:2b:aa:56:d9:cf:17:df:07:0e:e3:
61:b2:4f:2f:4d:00:2f:2a:f8:4d:6b:5f:69:9b:12:10:38:f9:
80:13:59:9d:8c:7b:40:7e:d9:4f:41:15:b7:19:8e:6c:0d:85:
c2:f1:49:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:49 2024 by rpki-client on console-fra.rpki-client.org