Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/RVOhNggNbkO-b__PH7ymW3OfWXE.roa
File: RVOhNggNbkO-b__PH7ymW3OfWXE.roa (raw, json)
Hash identifier: USVrknx2IEvPQxUVE7laXhh0U+UQKuiqvopQLSCfADo=
Subject key identifier: 45:53:A1:36:08:0D:6E:43:BE:6F:FF:CF:1F:BC:A6:5B:73:9F:59:71
Certificate issuer: /CN=4c3b88cdb13f3eb12a9be54ab19baa90559b396a
Certificate serial: 0189B8C30C9F83384465B1003243EADE75C9
Authority key identifier: 4C:3B:88:CD:B1:3F:3E:B1:2A:9B:E5:4A:B1:9B:AA:90:55:9B:39:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDuIzbE_PrEqm-VKsZuqkFWbOWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/RVOhNggNbkO-b__PH7ymW3OfWXE.roa
Signing time: Thu 03 Aug 2023 00:18:57 +0000
ROA not before: Thu 03 Aug 2023 00:18:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51826
IP address blocks: 2a13:a0c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b8:c3:0c:9f:83:38:44:65:b1:00:32:43:ea:de:75:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3b88cdb13f3eb12a9be54ab19baa90559b396a
Validity
Not Before: Aug 3 00:18:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4553a136080d6e43be6fffcf1fbca65b739f5971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2a:9b:54:8f:27:cf:30:5e:72:61:5a:28:e8:
97:09:fa:60:98:07:6a:30:47:0c:ed:4d:8b:40:e6:
17:a0:9c:46:20:0e:f1:46:28:da:38:4a:5c:2d:dd:
7f:ac:a5:a9:6c:92:62:5d:03:50:1f:a1:73:7c:12:
f5:f2:f2:f6:09:b8:cc:28:f2:cd:c5:51:ec:71:f5:
b9:6a:d2:5f:a7:01:f4:df:03:db:0d:53:a5:5f:78:
bb:2d:aa:b0:1b:f9:8b:7e:5d:de:02:4a:4e:e4:02:
82:df:01:ad:73:2d:d9:79:20:25:28:d4:af:58:cc:
cb:c1:f8:0e:07:23:dd:15:45:28:76:70:f3:a1:dc:
26:eb:78:4a:c3:d9:1b:d9:1e:9a:b8:b4:3d:34:50:
cd:e9:cd:64:df:1e:be:28:3c:46:c3:2a:49:a5:40:
c2:77:88:a6:75:20:c0:7b:e4:fe:27:8d:ec:e3:b0:
b3:15:24:76:8e:3d:49:d2:07:f3:59:d6:0a:3d:c6:
de:74:32:b9:e0:4e:85:6e:0d:c1:76:4e:93:54:12:
a9:ce:0c:7f:07:6b:ea:82:5a:b8:f6:75:4a:75:44:
11:59:b5:33:39:16:b8:e0:29:cd:59:58:28:74:29:
6b:3c:fd:cc:ab:2c:c2:c1:85:99:a0:ad:da:65:b2:
c7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:53:A1:36:08:0D:6E:43:BE:6F:FF:CF:1F:BC:A6:5B:73:9F:59:71
X509v3 Authority Key Identifier:
keyid:4C:3B:88:CD:B1:3F:3E:B1:2A:9B:E5:4A:B1:9B:AA:90:55:9B:39:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDuIzbE_PrEqm-VKsZuqkFWbOWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/RVOhNggNbkO-b__PH7ymW3OfWXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/TDuIzbE_PrEqm-VKsZuqkFWbOWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a0c0::/32
Signature Algorithm: sha256WithRSAEncryption
0e:d5:99:40:e5:04:cd:db:1d:ed:41:d5:7c:fc:bb:67:75:06:
ec:aa:3e:a8:2c:74:aa:f3:65:21:ee:d0:58:c3:e6:2d:43:cd:
95:50:ea:4d:12:c2:13:90:c9:5a:5b:ed:ab:51:84:a8:eb:77:
b1:ad:1e:7c:c9:1e:e5:84:18:39:19:9f:d2:b1:4e:20:f3:ea:
b7:d9:5d:80:9e:1e:5b:b1:05:2f:d2:b6:67:6f:92:65:22:a4:
d5:13:5a:5b:3b:95:50:7c:07:ba:12:30:32:61:58:13:fe:51:
de:42:be:3c:1b:c5:d4:16:d4:d2:39:33:92:bc:f2:1e:f9:e3:
fa:5f:e6:d4:d4:f5:58:95:3a:92:12:fd:95:d1:21:60:6a:29:
cf:19:1e:36:4d:88:34:49:11:e4:7b:bd:56:10:2e:c4:9b:b5:
58:26:be:53:5c:e2:88:60:8d:09:c2:3d:8f:76:24:b0:70:42:
ed:07:3d:89:62:68:b6:08:78:3c:68:68:ac:8d:1b:fd:e4:36:
19:c0:59:67:87:cb:ef:e7:77:c1:da:39:c7:72:3c:9d:de:d0:
de:b8:d5:40:49:43:bf:34:f3:90:cc:6d:f6:75:eb:47:26:b0:
ff:37:77:96:81:c3:56:6d:4d:f7:3d:2c:60:18:0e:24:6d:ff:
81:74:5c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:34 2024 by rpki-client on console-fra.rpki-client.org