Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/3c227c-4706-4787-9a07-90ea3729c574/1/f_FD4sdUWNbgbdSfh45wjYadHyM.roa
File: f_FD4sdUWNbgbdSfh45wjYadHyM.roa (raw, json)
Hash identifier: 2+/AZ0uIVlbio4EdBF1nGjXYk2gYYxFxWEQV6PByZH0=
Subject key identifier: 7F:F1:43:E2:C7:54:58:D6:E0:6D:D4:9F:87:8E:70:8D:86:9D:1F:23
Certificate issuer: /CN=c6f53c03d2f4e7f07a81ea903ecef01d68c68137
Certificate serial: 018A8A3B3322F02D1F5F68B31146C7F167E9
Authority key identifier: C6:F5:3C:03:D2:F4:E7:F0:7A:81:EA:90:3E:CE:F0:1D:68:C6:81:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xvU8A9L05_B6geqQPs7wHWjGgTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/3c227c-4706-4787-9a07-90ea3729c574/1/f_FD4sdUWNbgbdSfh45wjYadHyM.roa
Signing time: Tue 12 Sep 2023 16:30:50 +0000
ROA not before: Tue 12 Sep 2023 16:30:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216321
IP address blocks: 2a13:d8c0::/32 maxlen: 32
2a13:d8c6::/32 maxlen: 32
2a13:d8c5::/32 maxlen: 32
2a13:d8c2::/32 maxlen: 32
2a13:d8c1::/32 maxlen: 32
2a13:d8c1:ce00::/40 maxlen: 40
2a13:d8c3::/32 maxlen: 32
2a13:d8c4::/32 maxlen: 32
2a13:d8c7::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 04 Dec 2023 05:23:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8a:3b:33:22:f0:2d:1f:5f:68:b3:11:46:c7:f1:67:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6f53c03d2f4e7f07a81ea903ecef01d68c68137
Validity
Not Before: Sep 12 16:30:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ff143e2c75458d6e06dd49f878e708d869d1f23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3b:91:73:d8:de:d2:90:e7:93:71:0d:5c:28:
91:37:91:cc:b3:30:07:d2:57:43:5b:41:b2:3d:f0:
65:c5:8d:84:be:10:4a:57:f3:25:9f:c3:55:95:e2:
1a:50:6f:b1:8f:18:e2:45:5d:d0:fc:99:fc:1f:28:
db:4b:68:28:a1:8a:9d:49:56:84:d1:14:65:77:36:
4d:bb:ac:6d:c5:84:29:95:41:5d:bc:6c:74:92:c5:
3a:36:01:44:c2:fc:40:30:64:b9:03:95:2a:d3:5a:
8f:78:6c:3f:ca:f8:c8:30:46:0a:2e:d8:90:53:6d:
0d:9c:b7:a6:c8:45:ae:40:ee:0a:2d:45:57:00:d7:
93:3e:54:68:fb:82:87:e5:03:54:4c:dc:98:ea:20:
b3:83:44:ed:d6:34:e0:9d:8a:d3:f5:cf:5a:0e:50:
0a:0c:2d:78:7d:b9:9e:5d:f7:c6:a7:e9:98:b8:fe:
57:fd:25:98:bd:00:85:1f:fa:0c:b2:6a:ac:b6:22:
cb:4f:ff:92:dc:41:42:13:83:22:12:80:63:70:6c:
e4:f6:3e:6a:6a:27:e8:17:00:93:7f:0d:c7:62:39:
1a:22:14:5d:0b:02:73:46:f4:1f:e2:4b:ce:99:e8:
a0:89:79:d4:4a:e7:aa:70:3b:d9:74:c0:3a:89:7d:
04:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F1:43:E2:C7:54:58:D6:E0:6D:D4:9F:87:8E:70:8D:86:9D:1F:23
X509v3 Authority Key Identifier:
keyid:C6:F5:3C:03:D2:F4:E7:F0:7A:81:EA:90:3E:CE:F0:1D:68:C6:81:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xvU8A9L05_B6geqQPs7wHWjGgTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/3c227c-4706-4787-9a07-90ea3729c574/1/f_FD4sdUWNbgbdSfh45wjYadHyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/3c227c-4706-4787-9a07-90ea3729c574/1/xvU8A9L05_B6geqQPs7wHWjGgTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d8c0::/29
Signature Algorithm: sha256WithRSAEncryption
5d:56:72:c4:fc:1d:c8:a4:35:75:1f:ae:95:13:d2:ea:a5:a7:
3e:89:f0:23:c1:29:86:6c:da:5b:14:ab:4e:c8:8e:09:7a:41:
8c:cd:68:92:cf:d9:27:11:9b:59:c9:3e:6c:4a:a5:8a:8f:46:
28:3b:7f:45:67:63:5a:81:39:b2:64:ec:af:c0:60:3f:b0:c5:
08:16:b3:fd:67:99:24:1d:57:06:de:57:c0:82:b4:ed:83:00:
89:18:08:70:72:c0:5a:b8:d8:dc:26:58:8d:ce:e2:84:22:83:
91:07:b6:9a:59:f7:04:ab:23:b8:c4:31:bf:69:d8:7d:a6:6a:
89:cf:7f:b9:eb:1f:34:1c:4c:45:7c:08:6f:39:2c:ba:25:43:
a5:d6:3a:93:5d:fd:df:23:51:f3:ef:06:59:4f:b4:cc:6e:14:
7d:3f:fa:1b:04:b0:a1:bc:67:24:a4:a7:32:16:6e:de:35:4a:
83:1e:5a:40:71:78:5b:50:6e:8e:c5:cd:35:d1:b4:d3:12:17:
e9:c8:ee:c2:3d:8f:b3:f0:d6:65:1d:29:32:e8:1c:a1:57:54:
af:20:f7:a7:be:9b:68:39:90:14:a1:1a:50:fa:68:a1:41:4a:
e0:ef:63:6b:04:6f:38:a8:a8:bf:f2:3f:e1:89:6e:b6:ad:d0:
1a:19:32:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:22 2024 by rpki-client on console-ams.rpki-client.org