Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/ZnMKj0kMpasgdpTi-sQ_PMu1SVY.roa
File: ZnMKj0kMpasgdpTi-sQ_PMu1SVY.roa (raw, json)
Hash identifier: FGNdYY+lYzQK9Eyne64X6CQYFxqf4EYPTACHVWYTEKg=
Subject key identifier: 66:73:0A:8F:49:0C:A5:AB:20:76:94:E2:FA:C4:3F:3C:CB:B5:49:56
Certificate issuer: /CN=1c37a9026e45b68fe4735a469b75636130ad125c
Certificate serial: 0186DF2739E1AEED9186B78D94100BF094A6
Authority key identifier: 1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/ZnMKj0kMpasgdpTi-sQ_PMu1SVY.roa
Signing time: Tue 14 Mar 2023 08:05:35 +0000
ROA not before: Tue 14 Mar 2023 08:05:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210625
IP address blocks: 2a13:54c0::/29 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:df:27:39:e1:ae:ed:91:86:b7:8d:94:10:0b:f0:94:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c37a9026e45b68fe4735a469b75636130ad125c
Validity
Not Before: Mar 14 08:05:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66730a8f490ca5ab207694e2fac43f3ccbb54956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:44:16:74:1b:b1:b7:ae:ae:dd:8d:64:d0:b3:
53:2c:d4:34:6a:a3:59:a1:e9:14:7f:47:5f:ba:c9:
36:f3:b0:8b:4e:4b:ff:a5:e0:96:3c:8c:1b:2f:0c:
e5:cc:2a:fc:d3:b0:00:e9:2c:d2:b8:ca:c1:0c:44:
91:d2:3c:e7:49:00:6c:d3:f4:b4:13:1b:14:07:bd:
8c:e3:ce:60:09:3f:87:93:f8:cb:7f:09:c3:03:3c:
15:d9:a3:62:79:30:8b:a3:73:c4:86:9b:29:ed:2b:
02:71:1f:7d:7d:2c:1a:78:ee:97:30:44:3f:a9:46:
0c:2e:75:fb:f8:03:34:f1:75:a6:de:4c:dd:e4:2d:
26:a8:1a:80:9d:e8:f3:5f:87:12:61:99:f7:dc:9c:
d5:d2:b7:de:d7:93:a7:ad:a3:bd:39:3a:0f:51:41:
1a:72:13:98:e4:01:06:8d:7e:c9:c5:d8:c9:7a:07:
2b:bc:6a:b5:2c:7c:2d:17:30:c0:d7:2c:48:a8:a5:
54:f2:1e:99:6a:52:bf:52:70:22:f1:23:2e:2d:48:
21:2d:82:21:02:64:25:ff:35:ff:28:7a:37:53:63:
40:01:b7:ff:8b:f2:93:ba:fe:88:62:79:2a:fc:83:
7f:2e:7c:69:22:69:2a:41:cd:06:e1:97:3b:b2:c3:
7b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:73:0A:8F:49:0C:A5:AB:20:76:94:E2:FA:C4:3F:3C:CB:B5:49:56
X509v3 Authority Key Identifier:
keyid:1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/ZnMKj0kMpasgdpTi-sQ_PMu1SVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:54c0::/29
Signature Algorithm: sha256WithRSAEncryption
72:61:5d:9c:e6:d4:5c:55:b1:df:21:94:65:b3:29:75:1a:41:
d5:f9:e3:8f:c9:7f:c3:46:be:d8:7a:af:de:e7:70:8a:f0:48:
3d:b4:7d:df:4b:8d:0e:79:b3:99:25:0f:72:94:e2:6c:c6:cc:
c7:e0:d9:6a:c5:c4:76:c5:7f:19:b3:fd:7c:1a:e9:a8:4b:12:
f3:e5:45:18:a4:58:37:a4:49:d7:19:5c:a4:35:43:4f:98:45:
48:48:7e:fa:b2:e8:7c:b2:70:4a:f4:c8:03:7d:b2:cf:4f:b1:
6e:9f:bb:68:51:3f:af:81:92:1a:7a:2a:b1:79:5f:a7:fa:f0:
b9:a0:2f:1c:47:82:fb:1c:1f:77:a0:82:f0:e4:04:c9:b2:f0:
26:8b:53:9e:7a:38:4f:5a:7d:68:d6:c3:33:bc:c6:68:fc:42:
67:f8:41:8b:d2:7a:39:19:01:c9:28:69:cb:06:fe:e1:ba:f4:
53:99:48:0a:f2:d4:24:d0:b1:e3:3f:fa:54:fd:bd:b8:ab:d2:
23:56:8a:7e:27:09:d2:6f:b5:72:5f:8b:32:69:ee:2e:13:df:
14:4a:d8:a0:71:28:47:f3:44:57:fa:56:de:f1:db:ff:24:3f:
fe:f5:d6:42:0a:44:df:54:f7:6e:18:80:4e:ad:57:d1:dd:0a:
ed:16:45:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:39 2023 by rpki-client on console-fra.rpki-client.org