Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/172e0b-8cbb-402e-8f2c-8595b4500884/1/DIr0dxz0Cgfg1pE6gRE-iUd4-h4.roa
File: DIr0dxz0Cgfg1pE6gRE-iUd4-h4.roa (raw, json)
Hash identifier: bpbGwFPWyslHamKC1KK+0vBgLkO9ndfqW2OFuhclex4=
Subject key identifier: 0C:8A:F4:77:1C:F4:0A:07:E0:D6:91:3A:81:11:3E:89:47:78:FA:1E
Certificate issuer: /CN=731c1382858b0dc95a9adbea4728b31f9e22c0d8
Certificate serial: 018A19B592FC4B8231005EA94655D08D0621
Authority key identifier: 73:1C:13:82:85:8B:0D:C9:5A:9A:DB:EA:47:28:B3:1F:9E:22:C0:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxwTgoWLDclamtvqRyizH54iwNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/172e0b-8cbb-402e-8f2c-8595b4500884/1/DIr0dxz0Cgfg1pE6gRE-iUd4-h4.roa
Signing time: Mon 21 Aug 2023 20:07:24 +0000
ROA not before: Mon 21 Aug 2023 20:07:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216433
IP address blocks: 2a13:b140::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 19 Sep 2023 20:57:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:19:b5:92:fc:4b:82:31:00:5e:a9:46:55:d0:8d:06:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=731c1382858b0dc95a9adbea4728b31f9e22c0d8
Validity
Not Before: Aug 21 20:07:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c8af4771cf40a07e0d6913a81113e894778fa1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:30:44:c2:93:69:9f:01:4d:8b:7d:3e:89:d0:
c6:9a:02:7a:96:36:9b:44:ce:78:5e:37:03:0c:a4:
2a:3f:87:72:73:25:c1:82:6f:3d:ca:9b:56:d8:cc:
59:89:b4:fa:bf:4e:01:df:2a:e1:a6:60:fd:b9:b9:
a1:7d:2f:bd:a7:a8:47:8b:c3:16:e1:38:7b:fe:cd:
2c:d9:c1:64:a9:9d:40:fd:15:45:82:f3:f9:62:4d:
c5:a3:fe:16:d9:45:a2:a1:7c:0f:ff:fd:eb:0c:4d:
e3:b5:da:7f:3e:e7:3b:73:ae:a1:b2:c3:e6:fc:1e:
05:ba:bb:f1:f6:75:f5:34:52:8a:c5:9f:ae:f4:06:
b4:5f:89:89:11:ef:24:a3:17:25:dd:5d:2b:36:9c:
1e:fe:91:83:db:3d:09:b4:55:84:89:0d:68:c6:99:
17:d3:d9:cd:33:c1:16:bb:58:98:2d:df:43:a7:e2:
cf:5c:f7:ff:b3:5f:08:0a:1b:e3:d0:54:63:f9:0b:
cb:a4:fc:e5:e4:ac:31:ee:40:2c:62:53:c2:32:59:
7d:31:cf:6b:4b:68:58:9e:8f:97:5c:26:79:48:fd:
54:db:7a:a7:9a:e5:a0:e1:ae:5c:38:4a:ac:90:79:
75:c1:49:83:31:c7:c5:07:a5:26:48:e5:2a:ca:16:
e6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:8A:F4:77:1C:F4:0A:07:E0:D6:91:3A:81:11:3E:89:47:78:FA:1E
X509v3 Authority Key Identifier:
keyid:73:1C:13:82:85:8B:0D:C9:5A:9A:DB:EA:47:28:B3:1F:9E:22:C0:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxwTgoWLDclamtvqRyizH54iwNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/172e0b-8cbb-402e-8f2c-8595b4500884/1/DIr0dxz0Cgfg1pE6gRE-iUd4-h4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/172e0b-8cbb-402e-8f2c-8595b4500884/1/cxwTgoWLDclamtvqRyizH54iwNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b140::/29
Signature Algorithm: sha256WithRSAEncryption
30:57:ea:de:9a:3b:65:8e:ce:5e:b9:f5:a3:5a:62:df:e7:49:
9d:b2:14:13:05:be:70:45:4d:e5:0b:54:d1:e1:ab:55:1e:ed:
51:32:51:43:f5:bf:6e:9e:49:2e:fc:e7:67:37:c0:b7:d0:fc:
78:c6:68:c0:a1:b3:b2:73:84:7c:5c:ed:f5:ef:05:f4:d2:a1:
0b:89:ae:fc:2c:f6:e4:c5:28:48:db:11:a2:66:9b:4a:50:6b:
b1:08:29:36:e8:6a:2e:34:86:64:70:8b:0c:62:c1:97:57:fb:
e4:af:ec:a9:81:12:04:c7:5e:50:de:81:2b:44:40:65:8c:1a:
ce:6a:d9:c3:95:bd:cc:1d:25:17:f9:25:e8:24:50:42:fd:94:
03:31:7d:27:77:59:ae:fd:8b:da:45:fd:ad:81:47:33:ae:f5:
2f:39:1f:86:88:50:58:c5:f7:91:ea:d8:9c:63:c5:26:dc:7c:
17:b0:87:32:f2:39:d8:2d:2b:a1:2b:25:48:8f:94:b3:0e:92:
7d:41:54:b3:7e:01:b9:e4:28:11:de:50:3a:dd:f1:3e:f4:f1:
38:46:ec:3a:94:38:1f:57:f0:52:d1:fe:34:b2:9d:94:03:7d:
c9:4d:15:70:ed:2c:32:69:e8:8d:58:c6:f2:a5:23:8c:12:25:
ae:1c:5b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:52 2024 by rpki-client on console-fra.rpki-client.org