Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Hwn5VglEIBhJacxOGaXE39Z-9Tc.roa
File: Hwn5VglEIBhJacxOGaXE39Z-9Tc.roa (raw, json)
Hash identifier: 3E3F9MFnU/cVkDYPrQigwKlyRLvVNfosN3/jjI3p5k4=
Subject key identifier: 1F:09:F9:56:09:44:20:18:49:69:CC:4E:19:A5:C4:DF:D6:7E:F5:37
Certificate issuer: /CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e
Certificate serial: 018C0BEF4D69283358DC8B7D5C76EE95262B
Authority key identifier: 56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Hwn5VglEIBhJacxOGaXE39Z-9Tc.roa
Signing time: Sun 26 Nov 2023 14:01:21 +0000
ROA not before: Sun 26 Nov 2023 14:01:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212077
IP address blocks: 2a13:7b40:2::/48 maxlen: 48
2a13:7b40:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0b:ef:4d:69:28:33:58:dc:8b:7d:5c:76:ee:95:26:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e
Validity
Not Before: Nov 26 14:01:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f09f956094420184969cc4e19a5c4dfd67ef537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:37:6f:52:26:57:c9:10:d5:d6:d3:aa:f8:98:
ea:80:75:81:6a:73:88:84:7b:34:b5:14:3e:f3:08:
af:d3:37:2b:b3:f0:f3:6e:8c:c1:80:03:1a:41:ac:
31:00:23:36:45:54:53:2b:e2:fd:91:f7:65:70:31:
04:a4:da:49:68:0b:7e:c8:73:44:88:92:69:01:a7:
dc:ca:ad:c5:a7:53:c8:62:53:cb:eb:e5:c8:1b:22:
b6:31:9c:19:40:0d:e5:34:fc:c2:98:15:e8:7a:ad:
8a:8e:4d:df:d6:89:7f:99:22:5b:15:df:dc:87:ef:
97:a2:cb:65:eb:56:d6:cb:85:1c:50:1f:1f:7a:7f:
31:67:c6:7b:82:c0:51:86:51:24:ee:09:e8:94:17:
9e:61:a8:6d:98:47:b6:c6:43:19:49:ba:02:f5:ff:
a1:e7:66:f9:4f:26:bb:c4:a3:f6:75:51:fc:f7:40:
b6:d5:94:7c:42:fb:b5:30:6b:25:ea:9c:0a:ae:e4:
b3:a3:0f:c1:27:d5:d6:8f:a1:a3:e4:b6:24:39:76:
b1:9e:64:4c:20:79:aa:04:76:f9:40:e5:78:26:95:
0d:d9:23:d6:df:92:8b:2e:f7:18:ad:d2:d6:c3:df:
d9:21:19:c0:d6:1b:ac:a4:62:6d:98:a3:7b:4f:29:
c4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:09:F9:56:09:44:20:18:49:69:CC:4E:19:A5:C4:DF:D6:7E:F5:37
X509v3 Authority Key Identifier:
keyid:56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Hwn5VglEIBhJacxOGaXE39Z-9Tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Voi0IXXWIUoxpUB9uLbJXx7GDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7b40:1::-2a13:7b40:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
13:eb:dd:d0:1f:ea:7d:fb:13:93:3d:d3:fb:52:69:b1:47:f8:
a4:f7:19:ac:7e:c5:7b:46:be:3d:57:b2:66:10:3d:b7:17:78:
50:93:d7:b2:31:44:8d:fa:18:2c:0c:02:37:5c:ea:3a:ca:b9:
e6:b7:d7:fa:0d:b6:e3:14:03:47:f6:9c:66:91:af:6c:c5:d0:
73:d0:c5:e5:c3:a9:50:2c:d0:c3:1a:92:2e:3b:3d:f3:90:9c:
1d:d9:eb:3e:5b:5f:31:7f:f6:72:9a:49:d4:8e:92:53:3f:bd:
be:4d:b4:2b:97:69:75:e7:84:e4:a5:24:38:ac:77:95:bd:a6:
f1:a1:77:ea:98:e5:d3:13:09:dd:3b:9c:30:39:cb:ca:57:e9:
1e:5d:ac:1e:8f:6e:23:09:45:00:63:f1:8f:0a:dc:4e:c4:39:
e5:e8:ac:4d:5f:4a:a2:6d:1a:4a:2b:48:8b:65:39:13:37:a2:
fa:69:ce:15:5e:34:30:19:95:eb:31:fa:d4:a7:cd:8d:2c:04:
29:32:be:a8:b7:eb:2f:ae:58:85:05:c6:f4:00:33:47:e6:4f:
97:65:de:7a:de:e8:c0:93:b0:11:cb:90:5e:18:de:7a:99:ee:
45:5e:d3:0f:e5:13:50:55:4f:fb:45:77:4e:66:f3:82:55:1d:
72:84:13:e7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:21 2023 by rpki-client on console.sobornost.net