Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e378b2-8864-4710-9674-1fc8f76a806a/1/0vFPLmECXqS3tSKTRKwh1bjtpeU.roa
File: 0vFPLmECXqS3tSKTRKwh1bjtpeU.roa (raw, json)
Hash identifier: O9TWYIvrjncnBLlp5ZNF55be8Mgsj7L/Q7tJXPwxl/A=
Subject key identifier: D2:F1:4F:2E:61:02:5E:A4:B7:B5:22:93:44:AC:21:D5:B8:ED:A5:E5
Certificate issuer: /CN=5f5079e0e587c47ff14d202112f4eef78b078491
Certificate serial: 0188C31B91D3FD54B7B13763C8821BCA034A
Authority key identifier: 5F:50:79:E0:E5:87:C4:7F:F1:4D:20:21:12:F4:EE:F7:8B:07:84:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X1B54OWHxH_xTSAhEvTu94sHhJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e378b2-8864-4710-9674-1fc8f76a806a/1/0vFPLmECXqS3tSKTRKwh1bjtpeU.roa
Signing time: Fri 16 Jun 2023 07:29:03 +0000
ROA not before: Fri 16 Jun 2023 07:29:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25400
IP address blocks: 2a13:9980::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c3:1b:91:d3:fd:54:b7:b1:37:63:c8:82:1b:ca:03:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f5079e0e587c47ff14d202112f4eef78b078491
Validity
Not Before: Jun 16 07:29:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2f14f2e61025ea4b7b5229344ac21d5b8eda5e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f9:57:8e:f4:fc:94:e1:e9:4e:83:45:3b:c0:
84:f8:1e:ad:73:33:25:17:6f:9b:c2:1f:d7:4b:d2:
e7:a8:f0:30:21:81:3c:a6:9e:3b:cb:b6:30:6d:7e:
2f:d3:c6:d4:d6:de:2d:17:48:7f:cc:7c:58:9a:b1:
7e:75:78:e8:90:0e:ee:b3:52:d8:de:41:48:b0:a8:
d7:cd:f7:cb:52:b5:7a:e1:7a:54:07:7d:8a:5c:f2:
d5:02:2e:39:67:b5:2e:8e:7d:58:bc:de:90:95:fb:
89:71:d3:3a:25:a1:3c:1c:66:21:06:93:4e:59:8a:
0e:83:29:2b:3b:30:70:cb:ac:69:88:9d:f3:f2:00:
bf:16:23:72:76:d5:a4:cb:3e:75:f0:7d:3f:50:f8:
45:93:69:83:1a:a3:80:d6:66:d4:73:27:64:9d:1f:
88:1c:4d:f5:fd:3a:78:5c:3e:6d:80:09:0d:1c:7f:
16:e4:fb:29:e8:1c:67:60:b6:2c:00:62:33:78:ca:
22:cf:c1:2d:37:29:da:6f:71:92:0a:e8:1f:2e:0e:
fc:47:0b:05:e0:91:17:b8:b1:ff:8a:15:b2:4c:fa:
df:e2:6a:53:54:ca:9e:52:66:c5:10:a3:30:8c:ac:
c3:c0:b9:64:8d:fd:5c:b5:1e:08:bf:64:94:70:5f:
18:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:F1:4F:2E:61:02:5E:A4:B7:B5:22:93:44:AC:21:D5:B8:ED:A5:E5
X509v3 Authority Key Identifier:
keyid:5F:50:79:E0:E5:87:C4:7F:F1:4D:20:21:12:F4:EE:F7:8B:07:84:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X1B54OWHxH_xTSAhEvTu94sHhJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e378b2-8864-4710-9674-1fc8f76a806a/1/0vFPLmECXqS3tSKTRKwh1bjtpeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e378b2-8864-4710-9674-1fc8f76a806a/1/X1B54OWHxH_xTSAhEvTu94sHhJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9980::/32
Signature Algorithm: sha256WithRSAEncryption
a1:7a:9b:8d:b3:89:f1:36:70:b9:cd:c5:13:a3:8a:68:4c:8e:
06:1e:cb:67:7b:9b:ef:46:cf:60:f0:39:e0:0f:a0:37:de:3c:
31:5d:c0:0e:d2:d7:90:b3:94:ad:7e:2d:2b:ec:d9:d5:19:e3:
09:68:e9:5a:e2:04:5e:52:4b:e3:07:28:37:49:86:14:52:5b:
cc:cf:50:da:1d:95:53:0d:4a:d6:cc:eb:c5:49:18:20:a5:2d:
0b:a6:d4:75:b4:9d:91:88:2b:aa:02:fd:f3:a3:52:4d:c3:75:
cd:d9:a7:7b:eb:7a:53:e8:64:b7:d2:01:57:82:2c:87:c5:51:
d2:39:7f:c1:32:de:b3:53:65:db:2d:df:50:7b:e9:e5:c4:f7:
e1:95:e7:05:19:84:2e:22:2d:c2:c4:a4:6e:3f:1c:68:c0:e9:
b9:6b:4e:f5:7d:5d:21:59:1b:47:b1:10:09:32:a8:09:99:91:
a1:a6:25:f8:37:57:3a:de:cf:91:c5:5c:16:a2:8e:b2:b3:7a:
21:d0:97:53:ea:21:d0:0f:02:9a:1b:ab:39:5f:b6:65:99:6c:
a2:94:49:df:84:92:5f:2d:10:9c:99:f7:9f:ac:f0:59:26:40:
35:f3:de:9f:70:90:61:76:8c:f0:64:da:a2:c7:0f:0a:78:10:
37:9a:68:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:30 2024 by rpki-client on console-ams.rpki-client.org