Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/9af615-2c4e-4caf-b5af-ebbe1f477f68/1/As8zqghjOwLJploiy4K0k5PWHDU.roa
File: As8zqghjOwLJploiy4K0k5PWHDU.roa (raw, json)
Hash identifier: fly5kbqsiUxvB0mZTpGdlq1CGtsQXTjwu5d6nw6Ya/I=
Subject key identifier: 02:CF:33:AA:08:63:3B:02:C9:A6:5A:22:CB:82:B4:93:93:D6:1C:35
Certificate issuer: /CN=af413fd2ad9e25c84bc0b59e608a643663e6bb68
Certificate serial: 018ABCD960BDF124AAD465482D9AB8E9C607
Authority key identifier: AF:41:3F:D2:AD:9E:25:C8:4B:C0:B5:9E:60:8A:64:36:63:E6:BB:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r0E_0q2eJchLwLWeYIpkNmPmu2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/9af615-2c4e-4caf-b5af-ebbe1f477f68/1/As8zqghjOwLJploiy4K0k5PWHDU.roa
Signing time: Fri 22 Sep 2023 12:24:37 +0000
ROA not before: Fri 22 Sep 2023 12:24:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216275
IP address blocks: 2a13:e740::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bc:d9:60:bd:f1:24:aa:d4:65:48:2d:9a:b8:e9:c6:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af413fd2ad9e25c84bc0b59e608a643663e6bb68
Validity
Not Before: Sep 22 12:24:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02cf33aa08633b02c9a65a22cb82b49393d61c35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b7:be:c5:d5:1e:5d:e9:fc:c6:2f:b4:66:ad:
6d:47:e2:e9:51:4a:6b:c3:be:e3:6f:96:dc:8f:62:
2c:7b:cb:5f:61:c4:44:21:ac:80:0f:a6:ce:e7:84:
41:0f:c9:b4:7f:a0:4d:fd:90:17:19:17:a9:fb:29:
29:33:9a:f9:8c:7e:eb:73:8b:b5:30:e0:21:a6:90:
26:a4:e0:47:fb:45:53:3e:04:ac:01:5e:fa:5f:bb:
9b:af:b5:a0:8d:42:ae:2d:c3:7a:bf:fc:7b:09:dc:
78:d8:56:fa:ad:cd:7d:a0:3d:63:41:02:08:70:49:
53:81:f7:ba:de:72:75:31:40:ec:fb:c8:bf:1e:31:
d5:e8:d6:44:7c:95:d0:a9:6c:83:40:5f:8b:ac:98:
e1:bf:5e:dd:01:7c:70:c2:30:e5:e7:e3:aa:48:28:
81:7d:a9:c2:b4:47:cf:a1:1a:f1:4c:37:6c:6d:de:
43:27:03:13:4a:17:67:32:a0:ba:77:d3:1c:d7:03:
5c:77:75:9d:6c:02:95:af:ec:70:c1:1e:9a:7f:de:
af:c7:c1:ee:11:0a:69:c2:3b:96:ff:6f:70:aa:96:
a9:7a:44:e8:9b:25:22:7f:b8:cc:6c:ba:55:64:96:
00:26:9e:df:55:83:58:31:37:90:26:01:d2:2c:94:
d5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:CF:33:AA:08:63:3B:02:C9:A6:5A:22:CB:82:B4:93:93:D6:1C:35
X509v3 Authority Key Identifier:
keyid:AF:41:3F:D2:AD:9E:25:C8:4B:C0:B5:9E:60:8A:64:36:63:E6:BB:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r0E_0q2eJchLwLWeYIpkNmPmu2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/9af615-2c4e-4caf-b5af-ebbe1f477f68/1/As8zqghjOwLJploiy4K0k5PWHDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/9af615-2c4e-4caf-b5af-ebbe1f477f68/1/r0E_0q2eJchLwLWeYIpkNmPmu2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:e740::/29
Signature Algorithm: sha256WithRSAEncryption
7d:2e:15:f8:fc:0c:5d:7a:bf:57:83:b2:d1:51:22:95:46:db:
c2:db:89:a9:8d:46:d8:b2:c3:15:b8:db:01:1c:91:5d:14:b5:
28:1b:bf:c2:74:1d:c4:46:81:21:51:a7:e6:00:69:0e:03:57:
d6:52:07:c7:95:61:ad:6b:98:3b:4f:62:1f:f1:8f:38:0a:04:
d5:56:6c:1b:48:7a:1a:27:4c:01:ce:3b:81:e6:cd:ec:a3:20:
38:ef:73:f0:0a:d2:73:a1:ed:42:24:b1:32:e6:5e:c8:8a:45:
21:16:72:aa:7f:d1:79:02:c4:5c:7b:1e:11:12:ec:3f:2a:f5:
38:3d:b7:84:61:02:8c:66:49:43:77:19:c1:b3:93:4d:82:a6:
89:19:72:6e:80:11:76:6e:ba:6a:e3:36:25:85:cd:7e:84:0a:
98:42:f3:57:5e:7a:9f:ff:22:5e:f7:16:bf:c2:34:b4:d1:72:
f2:4c:99:a4:bc:21:1a:db:d9:17:b6:af:cb:4f:87:b1:6e:6b:
2c:3e:af:9d:b3:a6:7a:aa:6d:52:33:92:19:88:c6:f0:69:ef:
dd:72:73:a8:d6:48:5f:5f:42:9e:89:91:53:17:e0:d3:8e:a9:
47:e6:39:97:26:33:75:4d:7e:b1:17:46:d9:11:8b:0b:ec:d9:
5c:ea:74:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 27 12:48:16 2023 by rpki-client on console-ams.rpki-client.org