Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/Ek7lQlMhlvdCKRXMltNe5ywC8fs.roa
File: Ek7lQlMhlvdCKRXMltNe5ywC8fs.roa (raw, json)
Hash identifier: 3uvyeuAvpvEIqFLfqA6MdB8B5JcTmHqDMmiA4FyDnWI=
Subject key identifier: 12:4E:E5:42:53:21:96:F7:42:29:15:CC:96:D3:5E:E7:2C:02:F1:FB
Certificate issuer: /CN=e1e8b7cab521e88e8022a36424544185538a7b33
Certificate serial: 018A29088921001031D6E20F81337EEC0079
Authority key identifier: E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/Ek7lQlMhlvdCKRXMltNe5ywC8fs.roa
Signing time: Thu 24 Aug 2023 19:32:19 +0000
ROA not before: Thu 24 Aug 2023 19:32:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52209
IP address blocks: 2a13:1640::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:29:08:89:21:00:10:31:d6:e2:0f:81:33:7e:ec:00:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8b7cab521e88e8022a36424544185538a7b33
Validity
Not Before: Aug 24 19:32:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=124ee542532196f7422915cc96d35ee72c02f1fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3f:f3:50:a0:11:0e:a6:65:e9:e9:bd:38:d7:
67:0e:02:f0:80:42:b0:7e:d5:10:2d:71:e4:5b:6a:
50:f3:4b:0f:29:9e:e5:c9:b1:b3:13:b9:b4:bc:e4:
30:f4:8b:50:13:bd:c0:34:bc:0b:5d:a5:e5:65:eb:
5e:b3:56:97:a0:bc:c0:62:96:98:f7:cd:e0:15:2a:
38:98:e9:26:04:7a:5e:4d:a7:eb:21:43:22:0b:f0:
b2:43:41:db:99:b7:86:c7:21:75:ec:20:f1:af:60:
fe:29:62:2f:5e:0b:f8:43:ee:07:27:65:8b:ba:cb:
c0:0e:d9:43:99:b3:d8:32:93:eb:08:e1:69:e6:91:
0c:33:5c:17:dc:1e:db:6a:a7:41:46:27:a9:01:4f:
e3:9f:5c:c7:88:62:d0:6f:1b:d9:3f:3a:af:f3:17:
fa:47:16:70:6a:2b:42:34:99:f3:5d:78:c1:a9:3f:
c1:c7:ce:a0:dd:20:86:6a:5f:59:43:94:d6:fa:a9:
56:a2:82:6c:75:da:eb:47:e5:7b:99:92:b5:64:31:
3e:f2:27:1f:9c:08:a3:01:9b:7a:8d:fc:4c:a1:37:
1d:bf:08:2b:6d:ad:f0:24:f2:11:d6:29:18:50:74:
b3:01:f4:92:4c:c9:ff:b4:4f:c8:a1:dd:5c:21:fc:
4c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4E:E5:42:53:21:96:F7:42:29:15:CC:96:D3:5E:E7:2C:02:F1:FB
X509v3 Authority Key Identifier:
keyid:E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/Ek7lQlMhlvdCKRXMltNe5ywC8fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/4ei3yrUh6I6AIqNkJFRBhVOKezM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1640::/29
Signature Algorithm: sha256WithRSAEncryption
4f:c8:36:09:6f:7f:90:8f:7e:24:4c:ec:0b:88:3b:28:30:05:
a8:af:9d:b7:58:8f:7d:37:36:dc:e9:35:d6:a9:79:97:07:66:
bc:73:9d:87:f0:77:63:10:3c:f8:3a:ca:ee:a7:e5:15:60:09:
45:d8:22:a0:1d:26:d1:e8:12:f7:65:77:44:6c:11:47:66:f1:
90:23:42:61:cc:5d:10:0a:43:f6:e2:64:d1:2f:e0:1d:d4:a3:
e4:6d:15:c8:aa:b8:94:b0:20:ba:64:80:65:cf:fc:e9:5d:c8:
2f:38:31:2a:72:86:7e:3c:eb:13:8b:12:8e:48:42:9d:25:14:
0f:dc:81:87:c8:e5:9a:cb:4e:7a:ca:cc:ce:07:cf:1c:c8:4d:
08:94:a2:08:dc:cb:ce:6e:eb:48:c3:b7:28:db:e1:00:5c:33:
e8:ea:1e:f4:6e:bd:50:3b:df:65:79:5d:17:1f:64:bf:b1:bf:
28:07:9f:d3:09:bd:97:7a:2a:e3:21:35:f6:26:bc:ce:58:32:
44:b4:fa:c7:0a:3f:6f:b9:59:e7:7a:85:a8:d7:15:33:47:38:
64:02:bc:10:af:a4:39:e0:8f:eb:02:4f:9e:17:e2:91:3c:13:
b8:c6:b7:78:8d:e0:af:64:e4:72:f5:94:fd:5e:b1:2c:08:b3:
94:dc:dc:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:20:01 2024 by rpki-client on console-ams.rpki-client.org