Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/4ba5ff-562e-4354-9600-f762929f1f08/1/esgpWt4Jd2govqe_wdTpt3nxHaY.roa
File: esgpWt4Jd2govqe_wdTpt3nxHaY.roa (raw, json)
Hash identifier: +mBsQ7WOWAPX0CtmjR/YQdpfH8wSfqXPq9Ues9HaulM=
Subject key identifier: 7A:C8:29:5A:DE:09:77:68:28:BE:A7:BF:C1:D4:E9:B7:79:F1:1D:A6
Certificate issuer: /CN=80fab550d827a2def0d4d2616061425c2f694c84
Certificate serial: 0186CC52A4171BD8C22EFB9332F36C5CDED6
Authority key identifier: 80:FA:B5:50:D8:27:A2:DE:F0:D4:D2:61:60:61:42:5C:2F:69:4C:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPq1UNgnot7w1NJhYGFCXC9pTIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/4ba5ff-562e-4354-9600-f762929f1f08/1/esgpWt4Jd2govqe_wdTpt3nxHaY.roa
Signing time: Fri 10 Mar 2023 16:20:13 +0000
ROA not before: Fri 10 Mar 2023 16:20:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13631
IP address blocks: 2a13:bb80::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 03 Oct 2023 09:07:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cc:52:a4:17:1b:d8:c2:2e:fb:93:32:f3:6c:5c:de:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80fab550d827a2def0d4d2616061425c2f694c84
Validity
Not Before: Mar 10 16:20:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ac8295ade09776828bea7bfc1d4e9b779f11da6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:92:09:f7:ce:1f:96:e1:2d:be:9b:7e:ac:3c:
e6:5e:1c:a2:6a:9b:2c:42:f6:0c:b4:de:1e:46:91:
73:d4:91:9e:ed:fc:2b:54:f5:aa:fd:68:40:50:4f:
66:80:28:30:64:e2:a3:59:88:d2:8d:40:14:fa:53:
32:cb:13:75:9f:3b:1a:04:5e:5b:f2:57:b9:19:55:
c8:2b:c4:34:21:7e:99:ea:cc:8c:23:44:e7:e1:df:
93:95:04:17:ab:58:75:64:d6:26:59:13:f2:e9:fe:
8e:0e:8d:60:9b:aa:e5:a5:81:4f:1a:2b:6c:b5:76:
bc:8d:0b:71:40:f4:4b:7e:0a:18:18:5a:19:cf:8b:
e2:3c:5e:ff:e3:fb:fe:f8:4a:86:fd:fa:dd:e8:b3:
5c:cc:c5:48:d1:c9:c0:64:0f:73:0b:55:33:21:67:
40:59:6a:fb:f0:08:d5:bf:dc:e6:2c:1c:8b:1a:a3:
3d:42:58:0b:ec:56:be:ee:d9:9b:db:19:8b:bf:f0:
23:d7:a1:ed:29:ba:5f:23:c6:e6:d8:59:c2:aa:7e:
7b:05:9e:d0:7b:9e:c4:72:04:c6:53:0a:c1:c6:56:
7b:aa:ab:9c:be:68:4f:73:50:65:81:42:a5:25:ef:
b6:69:0e:0a:51:c3:df:55:fe:b1:be:4c:16:32:b1:
73:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C8:29:5A:DE:09:77:68:28:BE:A7:BF:C1:D4:E9:B7:79:F1:1D:A6
X509v3 Authority Key Identifier:
keyid:80:FA:B5:50:D8:27:A2:DE:F0:D4:D2:61:60:61:42:5C:2F:69:4C:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPq1UNgnot7w1NJhYGFCXC9pTIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/4ba5ff-562e-4354-9600-f762929f1f08/1/esgpWt4Jd2govqe_wdTpt3nxHaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/4ba5ff-562e-4354-9600-f762929f1f08/1/gPq1UNgnot7w1NJhYGFCXC9pTIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bb80::/29
Signature Algorithm: sha256WithRSAEncryption
62:84:a1:e9:c5:f3:97:bd:66:fc:ac:1a:8f:98:87:bc:9a:23:
b2:61:34:5d:41:d3:30:ed:49:13:0a:d9:1a:44:3c:90:fd:34:
04:e1:78:e9:e3:39:eb:b1:53:71:3e:2b:fe:bf:e3:a5:67:89:
f2:b7:b5:26:c0:05:a5:2f:2a:14:19:8e:a3:cb:36:d4:8b:01:
d5:71:77:e4:3b:1a:42:e1:5c:2a:e3:3a:35:ff:12:2a:c9:83:
cb:9b:55:ce:19:8e:2e:1e:a7:da:52:a8:b5:22:46:8f:cc:ba:
73:4a:13:c1:bc:e1:21:ed:27:70:4f:28:cf:f5:f8:f5:1d:96:
1a:3b:89:6e:5a:e2:11:b5:7a:51:79:d0:de:21:e1:7c:ab:f7:
70:fb:d5:c0:7f:56:01:57:06:e0:e7:70:14:c9:eb:c6:42:21:
0d:f9:69:20:d4:d1:4a:4d:48:a4:f9:4b:67:c2:9d:31:b0:1f:
7d:ca:81:94:8c:83:3a:ce:5d:c5:16:7f:52:59:e8:fb:b4:0a:
fa:43:95:14:98:61:92:1f:2e:0f:61:2a:d3:ec:b3:91:f1:74:
d0:d2:3b:b1:70:63:8d:5b:42:e3:9f:80:e6:d9:2b:e8:57:e7:
74:fc:60:08:5c:51:18:c0:61:f0:8d:17:ee:13:e2:72:77:dc:
50:a3:2d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:07 2024 by rpki-client on console-ams.rpki-client.org