Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/cYFB94Y3TzSpRnP1g2Lf3OKucLc.roa
File: cYFB94Y3TzSpRnP1g2Lf3OKucLc.roa (raw, json)
Hash identifier: oMASahjzN954IzL/imjFvav/iVoDj3sUmiX2YwumZ6E=
Subject key identifier: 71:81:41:F7:86:37:4F:34:A9:46:73:F5:83:62:DF:DC:E2:AE:70:B7
Certificate issuer: /CN=e1e8b7cab521e88e8022a36424544185538a7b33
Certificate serial: 018CC64B6BFBED92428A186EC145072367B8
Authority key identifier: E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/cYFB94Y3TzSpRnP1g2Lf3OKucLc.roa
Signing time: Mon 01 Jan 2024 18:31:20 +0000
ROA not before: Mon 01 Jan 2024 18:31:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52209
IP address blocks: 2a13:1640::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 May 2024 13:57:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:6b:fb:ed:92:42:8a:18:6e:c1:45:07:23:67:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8b7cab521e88e8022a36424544185538a7b33
Validity
Not Before: Jan 1 18:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=718141f786374f34a94673f58362dfdce2ae70b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:51:9c:1b:bd:13:72:0d:00:90:85:54:43:9e:
02:29:05:e3:35:04:70:dc:a8:f2:a7:d6:4b:9f:41:
3a:af:77:40:d4:66:57:e5:64:53:b9:ea:e9:5d:07:
ad:5e:8c:90:e8:94:f6:eb:61:95:b8:e1:a2:4b:3b:
da:99:34:ce:1e:5f:32:d3:d6:e1:56:20:c6:dd:df:
55:39:76:16:55:f1:b8:8f:db:e7:6f:c0:3b:64:97:
54:1a:f1:da:03:03:aa:b0:dd:a7:b6:17:9f:c6:24:
0e:1f:9c:47:a6:c4:65:45:cf:36:4c:02:3c:f7:7d:
e8:51:06:1e:97:e5:ff:17:36:ee:af:68:bf:34:22:
60:00:42:1e:85:25:c5:4a:28:fb:54:94:2b:b6:4a:
d1:a7:40:cc:89:3a:66:30:3e:3b:ba:03:f1:40:f2:
df:6d:c6:66:24:47:15:a1:be:b8:4f:c8:da:21:ca:
44:c9:75:bc:ea:34:4e:e8:0a:be:3d:25:80:72:53:
c8:9c:a3:cb:49:15:8c:c6:78:b4:1e:c4:2d:ad:ca:
05:a6:e6:d0:5e:e1:a8:e5:41:95:2c:f2:bf:4c:b9:
3a:0c:66:e4:fa:10:f2:ac:f4:11:b6:ef:03:42:3a:
0a:c9:2a:66:66:71:21:65:b0:1b:4c:43:9e:cb:68:
6b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:81:41:F7:86:37:4F:34:A9:46:73:F5:83:62:DF:DC:E2:AE:70:B7
X509v3 Authority Key Identifier:
keyid:E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/cYFB94Y3TzSpRnP1g2Lf3OKucLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/4ei3yrUh6I6AIqNkJFRBhVOKezM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1640::/29
Signature Algorithm: sha256WithRSAEncryption
76:8c:c5:14:0c:82:f9:ac:81:11:ae:55:2e:78:94:84:39:c7:
76:53:e0:c6:85:f9:39:5d:f9:b8:20:cc:a6:72:6a:7f:55:57:
a2:19:7c:8f:42:ed:35:22:e5:5e:1f:f3:25:ec:97:f9:63:00:
c1:43:6d:da:af:d0:55:50:0d:70:f9:9d:68:84:0a:eb:74:a8:
0e:8f:bb:39:6d:4f:b5:52:8f:cf:cf:74:3c:7e:f0:22:c9:68:
fb:db:85:c6:57:6f:0f:87:f6:b9:6e:ce:5a:69:62:31:07:de:
22:41:a9:7f:1c:f0:01:ae:7d:74:26:cb:1d:89:ae:68:10:b1:
44:2b:04:5a:92:63:1e:f8:a6:6b:0d:09:37:35:ea:65:8c:c8:
8d:f8:45:25:c0:f0:12:b8:de:61:2e:f4:37:c3:73:95:e8:5d:
41:85:38:33:8e:80:0a:fc:85:4f:1a:e0:85:9c:95:01:ba:b5:
5a:a9:46:6f:ed:c2:df:49:c2:b3:0b:ca:ec:2a:83:e3:5a:ec:
55:56:9a:f2:6d:0f:ad:a0:05:44:b7:b8:9c:c1:5d:4e:a9:07:
d6:8a:38:8f:0d:80:94:d6:2f:ec:91:2e:60:bf:c2:09:af:ca:
8c:41:ef:d1:f7:8f:5a:cd:9d:cc:a4:ff:db:af:32:eb:54:7c:
03:e6:78:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org