Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/0zB_8WqkUd7ZQqt0Uxs53duJCs4.roa
File: 0zB_8WqkUd7ZQqt0Uxs53duJCs4.roa (raw, json)
Hash identifier: Z3gDKWpV3VkjwF0gakP//2ojWoThZChbsy2av6RKLrA=
Subject key identifier: D3:30:7F:F1:6A:A4:51:DE:D9:42:AB:74:53:1B:39:DD:DB:89:0A:CE
Certificate issuer: /CN=e1e8b7cab521e88e8022a36424544185538a7b33
Certificate serial: 01857139E021EFE927EA8580B11CBDCAD124
Authority key identifier: E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/0zB_8WqkUd7ZQqt0Uxs53duJCs4.roa
Signing time: Mon 02 Jan 2023 06:44:56 +0000
ROA not before: Mon 02 Jan 2023 06:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62068
IP address blocks: 2a13:1640::/29 maxlen: 29
2a13:1640::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 24 Aug 2023 19:32:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:e0:21:ef:e9:27:ea:85:80:b1:1c:bd:ca:d1:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8b7cab521e88e8022a36424544185538a7b33
Validity
Not Before: Jan 2 06:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3307ff16aa451ded942ab74531b39dddb890ace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:42:70:56:3a:90:c4:e6:34:6b:a9:32:56:e0:
4c:b3:a4:07:34:99:c0:32:b4:0c:9b:52:f9:90:e4:
25:52:cd:ee:2d:9b:df:7f:11:b0:b4:7b:7b:50:6b:
44:eb:ed:31:2e:7b:58:ce:85:b2:69:7a:4a:cc:1e:
3e:6e:c3:05:bb:e9:52:83:c0:3a:c1:f6:a0:43:dc:
33:7c:fb:75:23:51:72:bd:ab:6e:bb:2e:87:41:f5:
8e:32:30:5e:42:bf:7f:f7:ef:da:0b:6d:b5:a3:02:
19:8f:c4:54:e1:01:40:2d:c1:80:91:19:a6:62:26:
9c:72:f1:8b:6a:db:c0:0f:3c:94:c3:17:ed:41:a9:
a0:17:a3:66:0d:a0:4f:3f:77:b7:26:82:17:62:8a:
a1:85:c5:aa:b3:25:6e:d6:f0:42:9b:22:98:38:2e:
ff:78:58:e5:81:f6:f7:33:7a:33:9f:8a:bc:10:6b:
01:51:c1:bc:de:d7:f9:4f:56:e4:89:9b:8c:58:6a:
d3:6a:f0:b0:3a:37:a5:a7:90:bc:00:29:ad:fa:b5:
4b:5f:db:1e:f9:ea:c5:3e:b1:8f:b1:77:65:f9:34:
a2:36:33:db:e6:d8:18:45:3b:5d:1f:0b:12:aa:8f:
16:7f:1d:67:58:7c:e0:03:e9:18:15:67:18:50:52:
08:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:30:7F:F1:6A:A4:51:DE:D9:42:AB:74:53:1B:39:DD:DB:89:0A:CE
X509v3 Authority Key Identifier:
keyid:E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/0zB_8WqkUd7ZQqt0Uxs53duJCs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/4ei3yrUh6I6AIqNkJFRBhVOKezM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1640::/29
Signature Algorithm: sha256WithRSAEncryption
ad:87:3b:28:bf:80:27:ef:91:dd:d7:ec:55:1e:3d:d8:4c:c4:
4e:84:e9:dd:bb:fe:9f:95:f0:d7:b6:3d:57:0a:c3:11:89:3a:
84:29:eb:5e:8b:57:58:00:a0:48:83:2c:97:07:98:f9:a9:56:
51:85:f6:a5:0b:57:68:26:d3:dd:3a:ea:9c:4e:02:1e:d2:e7:
bd:ad:29:43:9e:8d:74:21:02:f8:6d:3e:72:64:c1:18:25:b2:
97:53:a0:bb:0d:17:d6:c0:4d:e9:6c:ae:05:be:35:35:b2:45:
c9:99:6a:29:83:8e:ae:a0:cb:7e:97:be:3b:59:f4:3d:97:9f:
4a:47:f6:e8:86:48:a9:ee:1f:0e:25:a8:0e:2c:ea:98:3e:d7:
40:01:68:e5:98:be:e1:bb:76:92:a3:41:4b:a2:22:75:f0:f0:
b3:2d:a6:e9:80:cb:3d:8f:35:e9:d6:0a:7d:d6:8e:46:7c:08:
5c:95:ca:07:0b:30:47:d9:7d:31:b4:89:d3:41:b9:a4:75:59:
88:ce:03:67:99:b6:05:04:c8:63:05:08:7a:30:d2:16:3b:b5:
41:a9:ba:2e:3d:2b:be:a7:47:34:ab:bf:24:5c:61:ec:38:97:
76:95:90:c3:13:b8:9d:20:b5:4d:51:33:2c:85:d0:9e:8a:8e:
b9:10:0e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org