Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/6e9804-8a07-4238-b9d1-1fa522a05795/1/xMiACr7SbLtdcA7xKSfvPCft6eA.roa
File: xMiACr7SbLtdcA7xKSfvPCft6eA.roa (raw, json)
Hash identifier: lunF7Cdzz1E1FBfB4O0f0sqcbkV5v7fnMUAALarEreg=
Subject key identifier: C4:C8:80:0A:BE:D2:6C:BB:5D:70:0E:F1:29:27:EF:3C:27:ED:E9:E0
Certificate issuer: /CN=4b53f9567f6d6ad89412c0515f74647612dce04a
Certificate serial: 01867D9D0F83AEC961A163DDCD18ED188043
Authority key identifier: 4B:53:F9:56:7F:6D:6A:D8:94:12:C0:51:5F:74:64:76:12:DC:E0:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1P5Vn9tatiUEsBRX3RkdhLc4Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/6e9804-8a07-4238-b9d1-1fa522a05795/1/xMiACr7SbLtdcA7xKSfvPCft6eA.roa
Signing time: Thu 23 Feb 2023 09:31:30 +0000
ROA not before: Thu 23 Feb 2023 09:31:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213320
IP address blocks: 2a13:8a00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7d:9d:0f:83:ae:c9:61:a1:63:dd:cd:18:ed:18:80:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b53f9567f6d6ad89412c0515f74647612dce04a
Validity
Not Before: Feb 23 09:31:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4c8800abed26cbb5d700ef12927ef3c27ede9e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:90:4f:74:20:4a:63:3d:07:f1:6a:60:a8:13:
e6:2e:b7:27:f8:fc:28:0d:da:df:0e:c1:9e:ed:2d:
66:ad:4f:13:d9:c3:f8:4d:a1:59:f8:f4:e9:0a:6b:
ab:d2:b2:66:f0:7e:84:db:bd:17:00:0b:60:8a:da:
bb:1c:b1:a0:7b:cc:8a:7c:c9:32:03:ac:59:05:b6:
1b:44:ce:66:46:4d:66:0b:eb:45:dd:c1:4e:c9:9b:
0d:04:40:b0:fa:2d:09:5b:05:32:c2:93:a6:44:a8:
37:15:1f:17:99:f1:e2:a3:1c:eb:cd:f1:92:b6:d5:
84:2c:0e:90:ae:99:54:86:a2:ec:74:17:83:90:93:
c1:c5:d8:29:56:70:f9:2a:d4:6d:4a:37:bd:cf:ee:
8e:e7:5a:94:94:5f:7d:44:a2:b7:4e:5d:a5:e6:24:
f6:1a:9d:b9:70:be:b4:20:f7:6f:f4:c1:00:d0:ff:
7b:0a:92:f6:9b:66:cd:5c:f4:bd:c4:e9:78:86:ed:
4c:c7:3a:de:df:75:c4:e4:f9:5e:3c:76:80:56:b3:
1d:96:eb:01:87:a8:74:a4:e8:11:57:28:ed:d0:ed:
af:7f:26:36:de:a0:2e:c7:0f:dd:6d:59:74:8a:04:
22:cd:42:fa:2f:71:4c:7c:6b:ca:ea:e9:66:c5:8b:
d9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C8:80:0A:BE:D2:6C:BB:5D:70:0E:F1:29:27:EF:3C:27:ED:E9:E0
X509v3 Authority Key Identifier:
keyid:4B:53:F9:56:7F:6D:6A:D8:94:12:C0:51:5F:74:64:76:12:DC:E0:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1P5Vn9tatiUEsBRX3RkdhLc4Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6e9804-8a07-4238-b9d1-1fa522a05795/1/xMiACr7SbLtdcA7xKSfvPCft6eA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6e9804-8a07-4238-b9d1-1fa522a05795/1/S1P5Vn9tatiUEsBRX3RkdhLc4Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:8a00::/29
Signature Algorithm: sha256WithRSAEncryption
03:d8:3e:af:77:f6:3e:1c:1e:52:ac:cb:69:a6:be:2b:8b:20:
a9:7e:fd:e2:b1:2d:ce:3e:9d:b4:bd:c3:8f:61:07:a9:63:43:
a0:05:f0:1d:f1:a2:39:91:53:61:d3:0f:6b:3b:90:e5:4d:e8:
32:d4:ce:7d:14:f0:c7:59:cc:06:e2:9e:0b:38:c1:6a:a8:1b:
f0:32:a0:8f:dd:91:a5:d3:0e:93:d5:e4:6b:bf:cb:26:a8:eb:
5b:24:6e:31:43:92:af:4b:21:e3:1c:d1:2b:24:53:86:a6:db:
a7:84:2d:e1:f2:c4:84:3d:ea:dd:eb:cf:76:65:90:27:68:a2:
0b:aa:21:52:85:fd:0f:17:34:aa:22:08:c5:dd:25:a8:3f:bf:
a7:54:23:59:ec:a5:b1:c5:63:20:f9:44:e0:06:ec:b0:5d:75:
a7:07:bd:69:91:85:d7:bd:47:fc:b5:a9:c9:b2:e8:f2:c8:d2:
af:a4:70:51:14:95:d0:db:84:c1:1c:cd:5f:23:28:14:00:8c:
1a:ef:17:b9:af:14:8b:32:07:99:22:53:c4:2b:e7:0f:39:fb:
64:6e:06:5f:00:b3:b3:4e:9d:4e:e7:bc:a8:b4:f0:14:09:65:
23:da:f2:70:0e:7e:72:27:7c:5b:bb:68:71:6f:20:d5:d9:56:
ac:1e:07:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:34 2024 by rpki-client on console-fra.rpki-client.org