Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/0N5bXvjSKJzHV0NDiqPUAgLBz1s.roa
File: 0N5bXvjSKJzHV0NDiqPUAgLBz1s.roa (raw, json)
Hash identifier: PL5GHtEUAHypACN1jj/t6L38Vvwx60PDkZaubejpibQ=
Subject key identifier: D0:DE:5B:5E:F8:D2:28:9C:C7:57:43:43:8A:A3:D4:02:02:C1:CF:5B
Certificate issuer: /CN=7d965ea6b39c22aec2ad2d4d4c0a3a313df1defa
Certificate serial: 018738D71D7053DE8E5FF3CFC17D9589D7A3
Authority key identifier: 7D:96:5E:A6:B3:9C:22:AE:C2:AD:2D:4D:4C:0A:3A:31:3D:F1:DE:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZZeprOcIq7CrS1NTAo6MT3x3vo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/0N5bXvjSKJzHV0NDiqPUAgLBz1s.roa
Signing time: Fri 31 Mar 2023 18:03:54 +0000
ROA not before: Fri 31 Mar 2023 18:03:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200235
IP address blocks: 2a13:79c0:100::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:38:d7:1d:70:53:de:8e:5f:f3:cf:c1:7d:95:89:d7:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d965ea6b39c22aec2ad2d4d4c0a3a313df1defa
Validity
Not Before: Mar 31 18:03:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0de5b5ef8d2289cc75743438aa3d40202c1cf5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ba:d1:c8:6e:08:45:18:9f:d0:1e:02:82:59:
96:bc:fd:43:45:71:76:68:42:10:e7:0c:ff:58:f7:
25:70:b6:22:ad:e4:83:9a:99:ea:7f:fe:50:7c:79:
5c:0f:cb:08:d0:13:7c:cb:13:fe:c9:36:1a:3d:28:
b3:ce:53:f9:83:92:1d:86:94:ca:f4:86:cd:3c:16:
4e:fa:d8:cd:6c:bf:a5:44:67:c9:de:4f:b2:9e:f5:
0e:81:63:a3:a1:82:c8:ca:aa:a9:2b:49:75:d5:6c:
c1:5b:5b:d1:5b:94:bd:1d:bb:96:99:0f:1c:bf:cc:
f9:75:72:ff:66:d7:ef:ce:03:86:d6:e1:b6:62:f2:
e1:ab:e1:92:1b:98:a3:ec:65:fc:62:f6:ec:26:09:
b2:d9:f6:a2:84:86:cf:27:65:25:9b:04:ff:2e:ab:
52:91:57:78:85:57:d6:48:cc:a3:89:20:f0:88:be:
ec:87:ea:27:76:fd:c5:56:2d:33:27:ad:fe:98:ef:
d0:e7:b7:52:95:c9:a5:18:ce:10:7d:5f:4b:37:b9:
60:b2:93:3e:7e:78:a0:63:b2:6c:a9:37:83:55:01:
a4:e7:9e:27:18:bf:a3:a8:86:0e:f9:d4:1d:f8:80:
cf:b6:0f:de:34:4d:76:d9:38:01:36:20:4e:25:3c:
b7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:DE:5B:5E:F8:D2:28:9C:C7:57:43:43:8A:A3:D4:02:02:C1:CF:5B
X509v3 Authority Key Identifier:
keyid:7D:96:5E:A6:B3:9C:22:AE:C2:AD:2D:4D:4C:0A:3A:31:3D:F1:DE:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZZeprOcIq7CrS1NTAo6MT3x3vo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/0N5bXvjSKJzHV0NDiqPUAgLBz1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/fZZeprOcIq7CrS1NTAo6MT3x3vo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:79c0:100::/40
Signature Algorithm: sha256WithRSAEncryption
e1:a9:a6:a8:db:f6:c3:a5:c6:f5:7e:b9:bd:70:5d:c7:d2:83:
24:06:49:a0:3b:c8:d8:98:8c:76:e6:70:7e:b4:60:2e:61:7e:
77:2b:b9:3f:1e:c4:c5:21:11:bb:8c:f5:53:53:93:69:8b:fd:
cf:2c:2c:3f:48:cc:0e:a5:d8:7f:0d:6d:ba:16:77:e2:33:dc:
8b:19:a0:81:49:e2:bc:d5:f5:fd:d9:9b:3b:0f:b0:c0:08:24:
c4:c6:1b:06:61:ea:a7:18:dd:c5:a1:4c:73:d6:ef:45:f9:cd:
3e:6f:e6:fd:b0:3e:8c:e9:68:d8:87:ab:c1:ac:63:fa:ab:40:
50:cb:d6:25:4a:e4:53:92:3b:ef:76:2c:3f:fb:69:77:44:0d:
d9:a3:67:42:1f:98:4d:59:ba:2e:41:03:07:d1:af:cc:3b:b0:
ec:0f:fc:f3:f9:8b:52:68:8e:06:42:d3:65:1d:31:ea:b8:eb:
f2:8f:0d:ab:bc:b6:30:f7:fb:33:41:15:25:0a:8e:15:85:b6:
9e:b0:b3:42:44:bf:98:f5:82:6f:b6:f2:36:65:ff:2e:8d:9f:
16:c2:95:de:17:31:1e:f0:44:91:75:51:58:94:50:b5:7c:25:
09:7d:c7:8a:e2:60:fb:5c:1b:df:30:e7:d1:b9:33:ab:03:e4:
db:ad:b1:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:43 2024 by rpki-client on console-ams.rpki-client.org