Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/f63e58-9efc-4082-82bb-08835dff6c4f/1/4NUKg5Z3ck_zYVCFE1ivp4uhGNA.roa
File: 4NUKg5Z3ck_zYVCFE1ivp4uhGNA.roa (raw, json)
Hash identifier: 4TNhMZG8IHq/fcLjslQp1S/cgg8gu2SUzyKaO50aBW8=
Subject key identifier: E0:D5:0A:83:96:77:72:4F:F3:61:50:85:13:58:AF:A7:8B:A1:18:D0
Certificate issuer: /CN=3622fc2f8ad8b008357dbe6f0195960c9de61bd5
Certificate serial: 018579B632294BD6E5375327F43AEB8F116F
Authority key identifier: 36:22:FC:2F:8A:D8:B0:08:35:7D:BE:6F:01:95:96:0C:9D:E6:1B:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NiL8L4rYsAg1fb5vAZWWDJ3mG9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/f63e58-9efc-4082-82bb-08835dff6c4f/1/4NUKg5Z3ck_zYVCFE1ivp4uhGNA.roa
Signing time: Tue 03 Jan 2023 22:17:41 +0000
ROA not before: Tue 03 Jan 2023 22:17:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52042
IP address blocks: 2a13:3f81::/32 maxlen: 32
2a13:3f82::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 27 Sep 2023 11:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:79:b6:32:29:4b:d6:e5:37:53:27:f4:3a:eb:8f:11:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3622fc2f8ad8b008357dbe6f0195960c9de61bd5
Validity
Not Before: Jan 3 22:17:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0d50a839677724ff36150851358afa78ba118d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:29:ad:b9:16:c8:01:09:71:ea:1a:e9:3d:ea:
d0:5e:dd:e5:56:29:7b:75:a9:1e:12:45:d3:6a:0b:
67:6c:60:ed:5f:ad:7b:1b:23:28:1b:51:57:21:f7:
aa:2a:e6:cf:a0:03:4d:42:c7:e5:69:7c:ce:0f:38:
30:95:12:ea:fa:a5:f6:19:af:84:17:c0:27:76:0a:
86:ac:b0:e4:36:e9:99:a9:c6:10:f7:cb:1b:28:f9:
4f:7e:f6:ef:52:c0:43:84:1e:06:f9:4e:70:b3:b3:
de:21:6f:71:57:52:e3:17:a7:25:8a:d8:7b:fd:8b:
0b:be:16:c8:d0:13:23:66:be:32:52:0d:45:86:2b:
34:f9:61:49:5d:65:95:76:23:92:8b:89:78:e6:40:
d2:51:5a:e1:ff:7a:3a:f3:13:fb:98:6b:75:72:9a:
80:7d:05:47:3f:90:30:90:37:d4:44:32:f2:46:f1:
14:8e:54:82:2e:fd:69:98:75:35:ac:de:11:de:57:
d8:a9:f7:38:14:e1:ee:2d:d5:c5:76:2d:ae:9d:9d:
dd:2f:ab:e1:5b:54:99:8b:5a:0a:b5:4a:e8:b8:b8:
49:56:4b:78:e4:39:a8:fc:51:f6:53:30:1b:2d:fe:
a9:86:73:94:d1:b7:81:00:e2:89:4f:3c:ff:c7:96:
a1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D5:0A:83:96:77:72:4F:F3:61:50:85:13:58:AF:A7:8B:A1:18:D0
X509v3 Authority Key Identifier:
keyid:36:22:FC:2F:8A:D8:B0:08:35:7D:BE:6F:01:95:96:0C:9D:E6:1B:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NiL8L4rYsAg1fb5vAZWWDJ3mG9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/f63e58-9efc-4082-82bb-08835dff6c4f/1/4NUKg5Z3ck_zYVCFE1ivp4uhGNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/f63e58-9efc-4082-82bb-08835dff6c4f/1/NiL8L4rYsAg1fb5vAZWWDJ3mG9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3f81::-2a13:3f82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
43:39:9b:90:a9:40:b9:1f:1c:fb:80:4a:7b:86:30:02:d1:44:
09:ac:8b:8a:da:71:70:0b:fc:d6:46:92:e2:cb:4a:6d:fb:36:
a3:5f:8d:7c:8f:35:d4:52:56:01:e4:ae:f0:d9:da:68:45:ae:
c2:f7:6a:56:5b:b1:20:14:61:fb:8c:5e:59:17:84:aa:38:6e:
bd:b4:57:40:cc:fa:65:c3:25:91:c6:f0:67:4e:97:71:d8:ad:
1a:f8:18:e2:f8:95:ab:1e:6d:ac:d4:7a:3e:f3:25:c5:be:e2:
e7:48:e4:d8:e3:16:25:79:71:83:15:b4:74:3d:36:68:19:f6:
43:22:2f:36:be:e2:19:54:2f:b7:92:87:1b:0d:40:36:ac:fc:
d6:02:0f:f9:59:8b:97:db:e6:bf:e2:ae:cc:b2:b9:f1:b4:a1:
b2:ad:d8:26:8e:8d:86:b1:1c:06:ff:22:f5:df:62:12:dc:ef:
7d:dd:2d:cd:50:8b:d9:fd:7a:d0:20:33:fc:66:dc:9f:be:f6:
f2:4b:a1:a4:60:f7:bd:b4:87:d2:96:2e:0d:d2:d1:81:7f:8e:
03:cf:00:be:37:55:42:28:4f:69:6e:60:a5:db:39:d5:dd:b7:
c7:68:9e:2d:34:93:80:b0:70:7d:14:78:67:3a:0b:bb:ce:65:
f7:2b:9d:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:19 2024 by rpki-client on console-fra.rpki-client.org