Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/iZq7_5RstK5YpZsq-SAUhgSdxmE.roa
File: iZq7_5RstK5YpZsq-SAUhgSdxmE.roa (raw, json)
Hash identifier: 9mV8N2FO7QCKb3E5v5ACXR7owKf6bqHd/UHqDVmRbuQ=
Subject key identifier: 89:9A:BB:FF:94:6C:B4:AE:58:A5:9B:2A:F9:20:14:86:04:9D:C6:61
Certificate issuer: /CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Certificate serial: 018D129A3B25DAFAE7B2C66657928E92D66F
Authority key identifier: F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/iZq7_5RstK5YpZsq-SAUhgSdxmE.roa
Signing time: Tue 16 Jan 2024 14:08:34 +0000
ROA not before: Tue 16 Jan 2024 14:08:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56534
IP address blocks: 2a0e:dfc3::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 13 Mar 2024 14:42:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:12:9a:3b:25:da:fa:e7:b2:c6:66:57:92:8e:92:d6:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Validity
Not Before: Jan 16 14:08:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=899abbff946cb4ae58a59b2af9201486049dc661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:14:47:ab:44:fe:74:76:ce:4a:f2:7c:24:ed:
02:ff:13:67:05:8f:86:95:ab:c6:47:9c:17:62:92:
11:1d:6b:4e:d8:20:f6:b6:0e:3f:b9:6d:54:35:3f:
1d:21:2e:ce:ca:af:c9:d3:ee:1e:00:56:b3:d1:12:
14:b8:f0:74:e5:55:6e:bb:71:a8:be:1e:ae:15:15:
4c:be:38:2d:f1:80:0e:61:dd:07:2f:b7:b5:d4:fe:
ee:88:e9:dc:58:71:15:db:b3:c8:c0:4a:48:db:e8:
5b:c3:cf:e1:74:2a:9e:f8:13:ac:25:f2:84:b3:d9:
6a:53:33:61:5b:1e:43:b9:94:4b:d6:46:b2:e8:2d:
6e:b7:49:cf:ae:62:34:1e:bb:e7:30:a5:35:8d:90:
4f:04:57:34:0e:81:53:42:97:ad:cf:0f:50:fe:ce:
73:74:92:14:a4:f7:c1:e7:97:8d:19:f7:95:c5:f4:
f8:89:54:4e:d8:00:86:1f:f8:61:56:c0:e7:01:ae:
7e:34:a8:55:5e:22:16:1e:87:aa:21:d0:bf:a5:5d:
c6:6e:d7:6a:78:d8:6d:82:5b:b4:34:fe:de:6a:8e:
a4:bc:c9:22:78:e8:dd:1c:97:98:e7:90:3b:96:87:
5b:82:96:b1:15:40:50:d4:2c:95:bf:e8:f3:08:72:
48:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:9A:BB:FF:94:6C:B4:AE:58:A5:9B:2A:F9:20:14:86:04:9D:C6:61
X509v3 Authority Key Identifier:
keyid:F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/iZq7_5RstK5YpZsq-SAUhgSdxmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/912LUoFfPyYT6UiZLsn-Zg9pSbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:dfc3::/32
Signature Algorithm: sha256WithRSAEncryption
0a:d5:97:13:d7:29:42:98:cb:11:67:6f:95:c4:28:65:79:c6:
54:85:cf:91:c5:68:18:ce:70:c8:f7:7e:8c:83:5b:b0:c4:00:
2a:d0:d1:ba:b1:db:22:a4:e5:9d:61:ba:dc:be:db:e3:8f:81:
d9:1e:1d:b3:d8:7c:ac:f5:80:3a:15:b7:37:7b:dc:02:31:b3:
e6:ff:90:0f:f1:fe:24:18:77:7a:69:2e:8b:dc:de:41:e4:b7:
8a:f7:ce:d5:6a:86:61:57:eb:6b:3a:b8:6f:bc:0b:e2:97:1d:
7d:ce:16:23:bf:d9:75:35:1f:05:00:c7:cb:4b:d9:e8:5f:24:
1a:e8:a0:9f:54:34:5c:0e:6d:7b:f7:15:d6:f3:e6:2f:6b:4e:
90:25:cb:4e:68:95:f6:cb:60:b0:f5:66:c7:3f:33:bb:f9:ef:
31:4a:d1:af:aa:d5:da:cd:46:3a:1f:37:13:5e:d3:53:d8:d6:
12:7a:c1:da:8b:84:ed:7b:b2:88:db:67:e0:ef:d1:b7:14:b6:
63:94:71:38:3b:6f:44:7b:07:11:30:2e:58:b3:54:c5:97:87:
96:b3:2c:31:49:6a:13:e5:af:de:be:a2:0d:ea:b3:56:a5:41:
06:2a:40:72:36:c7:de:dc:bb:f4:dd:f3:91:41:31:9d:16:31:
4d:b5:1d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 19:43:28 2024 by rpki-client on console-fra.rpki-client.org