Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d4dded-c510-477c-8fad-f616f0094b14/1/13eRuS8oyPOl6aD4UgZ6USYuQ34.roa
File: 13eRuS8oyPOl6aD4UgZ6USYuQ34.roa (raw, json)
Hash identifier: zW9qn50oOMlISKobZAwmEQnb9o8Tm+HtBJgxO4htHAQ=
Subject key identifier: D7:77:91:B9:2F:28:C8:F3:A5:E9:A0:F8:52:06:7A:51:26:2E:43:7E
Certificate issuer: /CN=ceb5929361e1d0de160b871f29bdd5a4040ca111
Certificate serial: 01856C938C36FBD2D589149855AA60BC7814
Authority key identifier: CE:B5:92:93:61:E1:D0:DE:16:0B:87:1F:29:BD:D5:A4:04:0C:A1:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrWSk2Hh0N4WC4cfKb3VpAQMoRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d4dded-c510-477c-8fad-f616f0094b14/1/13eRuS8oyPOl6aD4UgZ6USYuQ34.roa
Signing time: Sun 01 Jan 2023 09:04:47 +0000
ROA not before: Sun 01 Jan 2023 09:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 134.106.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:93:8c:36:fb:d2:d5:89:14:98:55:aa:60:bc:78:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ceb5929361e1d0de160b871f29bdd5a4040ca111
Validity
Not Before: Jan 1 09:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d77791b92f28c8f3a5e9a0f852067a51262e437e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d0:e2:48:2d:c0:0f:b9:64:ca:dd:df:65:7d:
57:8b:6e:75:c9:66:aa:02:1f:23:09:87:11:c7:77:
61:d7:ce:9f:9a:75:0a:e6:df:b7:20:ed:84:75:43:
2e:41:4c:ff:d4:1a:b0:8a:87:64:eb:83:47:d7:18:
07:a8:f4:28:0a:3a:d7:83:9a:09:d1:ae:ae:8b:ca:
8a:3f:6d:b6:5c:73:37:b8:74:5d:0e:4d:82:cd:b8:
37:04:f4:ed:50:c4:5f:46:c4:81:89:2b:da:4c:bc:
31:bd:b3:88:6a:ad:d1:1c:24:a8:34:3d:c3:fa:5e:
cd:45:2f:e7:db:a9:51:89:e8:21:29:7d:90:2e:f6:
f6:5b:ec:30:b5:37:c1:f8:5f:4e:9f:30:cb:46:33:
4c:05:8d:aa:d1:50:92:da:55:ff:bb:01:02:9e:21:
8c:16:c1:35:ca:dc:c5:f9:fb:cb:eb:db:0f:4a:85:
2b:51:90:61:6e:a5:cf:9b:af:66:60:08:96:9f:03:
5d:89:ae:64:0d:50:73:8b:a1:6e:0f:3a:b9:28:11:
4f:7e:46:dc:30:a6:ef:0d:c1:cf:2c:af:64:ac:0c:
f8:ae:a5:ae:5d:c2:3c:1d:2d:4b:08:06:5b:a1:38:
77:9d:ce:82:9b:29:a9:a2:a6:91:4e:8a:5f:94:c7:
dc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:77:91:B9:2F:28:C8:F3:A5:E9:A0:F8:52:06:7A:51:26:2E:43:7E
X509v3 Authority Key Identifier:
keyid:CE:B5:92:93:61:E1:D0:DE:16:0B:87:1F:29:BD:D5:A4:04:0C:A1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrWSk2Hh0N4WC4cfKb3VpAQMoRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d4dded-c510-477c-8fad-f616f0094b14/1/13eRuS8oyPOl6aD4UgZ6USYuQ34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d4dded-c510-477c-8fad-f616f0094b14/1/zrWSk2Hh0N4WC4cfKb3VpAQMoRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.106.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:44:9c:b7:34:b1:b0:1b:51:92:bd:93:b7:4e:0c:d4:ca:74:
46:25:73:6f:04:e5:e5:8a:29:93:95:0e:5c:d6:88:1d:66:a4:
65:40:7f:7c:59:4d:a4:a2:0d:cf:4a:ea:34:b0:fb:f2:7d:e0:
b9:c6:ae:4c:69:3e:34:f2:13:9c:b2:27:6f:80:96:31:4b:47:
3a:4b:f4:ce:c7:e5:0e:7e:4a:2a:c5:e8:75:56:89:53:4b:44:
83:40:88:af:ec:cd:3f:9c:0e:54:6a:7b:c9:7e:21:21:ef:58:
4a:17:e2:c9:b2:b2:ef:da:ff:59:d8:4e:f4:be:a6:1f:07:50:
0f:f7:83:df:18:30:0d:d6:b2:f1:a5:8d:aa:19:f0:bf:d9:86:
22:d8:6d:6c:bf:5b:90:2c:a8:6c:33:37:9e:a8:a9:49:7d:03:
75:f7:13:52:d5:ed:5d:1f:d9:47:45:ea:35:17:03:e0:0d:20:
5c:b6:a7:c4:3b:bf:c9:4c:20:bd:0a:fb:2c:42:90:b1:8f:fa:
1f:98:b4:fc:2f:5a:09:d0:21:dc:00:f6:17:30:40:7e:ce:b1:
73:ee:51:c2:d0:35:2d:d8:17:04:9c:0d:9b:f4:50:95:fe:5d:
c9:bc:65:8d:76:af:17:fc:c3:b8:6e:a9:ed:d9:01:ed:20:b0:
24:f0:af:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:15 2024 by rpki-client on console.sobornost.net