Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/ZLTUZMr5gybK3XvJ6y-I1ivwmEc.roa
File: ZLTUZMr5gybK3XvJ6y-I1ivwmEc.roa (raw, json)
Hash identifier: 6WkuaCNujF8mPTijDdYN3C1DMkQFjqN9i6TCcUeOMIg=
Subject key identifier: 64:B4:D4:64:CA:F9:83:26:CA:DD:7B:C9:EB:2F:88:D6:2B:F0:98:47
Certificate issuer: /CN=310b05251378994cfa8088d23b6eeed4e9e6ab08
Certificate serial: 018F2AEFB131895C9AE2EC42D576C7F46AB2
Authority key identifier: 31:0B:05:25:13:78:99:4C:FA:80:88:D2:3B:6E:EE:D4:E9:E6:AB:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQsFJRN4mUz6gIjSO27u1Onmqwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/ZLTUZMr5gybK3XvJ6y-I1ivwmEc.roa
Signing time: Mon 29 Apr 2024 17:38:22 +0000
ROA not before: Mon 29 Apr 2024 17:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a12:2740::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 May 2024 16:04:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2a:ef:b1:31:89:5c:9a:e2:ec:42:d5:76:c7:f4:6a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=310b05251378994cfa8088d23b6eeed4e9e6ab08
Validity
Not Before: Apr 29 17:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64b4d464caf98326cadd7bc9eb2f88d62bf09847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:51:c3:47:09:8d:ce:b2:7f:8e:2b:40:c9:6f:
5f:a7:be:8b:3a:29:c8:a9:62:48:6e:ee:be:44:df:
f3:18:9c:0b:9d:28:e2:0a:af:a1:39:f9:ba:32:cc:
92:c4:64:a6:20:a6:af:be:ac:70:6f:9b:be:43:5f:
b3:a4:0c:1c:47:f0:70:22:9e:f0:41:cd:af:ab:e6:
9b:51:f6:a2:a0:fa:7e:6f:29:6f:12:7c:e8:f4:d6:
1c:69:78:f7:6b:fc:cc:56:71:58:67:20:ff:b4:9d:
07:80:17:53:78:e4:e8:aa:9a:ec:f5:48:c3:97:4a:
02:f8:04:d7:69:81:d2:e2:0a:ee:f6:23:21:9b:e8:
7a:eb:49:b0:71:a9:cb:53:66:4d:d7:2f:cb:78:0a:
59:38:cc:23:27:76:6f:de:f1:17:62:df:e3:4a:77:
29:48:ae:82:b8:8f:2c:d1:23:c3:4a:6f:8d:7e:2d:
34:13:59:90:d4:10:e7:5f:8f:af:18:55:a3:98:47:
46:ae:b9:45:13:cc:c2:95:28:a0:fc:ae:9a:66:32:
04:3d:6f:a7:27:7a:f8:6b:25:a5:76:1f:33:47:47:
f6:91:74:80:7a:7e:1d:a0:62:77:4f:73:6f:81:f6:
1b:c7:0e:7d:be:09:be:49:89:e8:56:5f:81:c5:41:
43:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B4:D4:64:CA:F9:83:26:CA:DD:7B:C9:EB:2F:88:D6:2B:F0:98:47
X509v3 Authority Key Identifier:
keyid:31:0B:05:25:13:78:99:4C:FA:80:88:D2:3B:6E:EE:D4:E9:E6:AB:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQsFJRN4mUz6gIjSO27u1Onmqwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/ZLTUZMr5gybK3XvJ6y-I1ivwmEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/MQsFJRN4mUz6gIjSO27u1Onmqwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:2740::/29
Signature Algorithm: sha256WithRSAEncryption
29:f2:fa:0c:45:33:4d:a5:8d:a0:6c:d8:dd:f6:c0:40:da:e5:
4a:51:65:8e:bf:12:81:08:e9:2b:14:77:1a:9e:2b:bf:4e:ff:
ef:17:40:9d:54:ea:09:ad:ec:9f:e3:fb:ee:6e:0a:81:95:34:
b6:a9:9f:6d:60:51:b4:09:d7:94:0f:14:c2:34:27:20:55:27:
22:c9:a8:38:bd:4f:62:d3:8d:7c:a6:9e:a3:fa:9e:09:a9:3d:
1b:fa:a6:71:6c:04:6b:2d:40:5b:ad:35:0a:18:de:3c:65:c9:
d8:25:87:f1:b2:6e:11:a4:a1:dd:29:46:cd:d9:39:c0:fa:88:
6d:8f:0a:b7:9c:76:a1:f2:e6:c5:2d:7d:02:70:87:52:a5:65:
47:1b:6f:65:98:3e:17:62:87:a6:ab:65:19:76:15:28:24:71:
44:35:7d:7b:03:27:f6:b5:00:f4:49:b5:ac:d3:04:e4:6c:30:
13:74:62:76:46:0b:e8:45:bf:fc:79:e2:8f:32:a2:c3:bf:1f:
11:f7:20:c9:a1:ca:62:0b:dc:82:dd:d3:6d:5c:f2:f5:41:f3:
e0:e2:2a:09:96:08:de:83:c9:58:f0:0f:60:9d:bc:7d:6e:db:
7f:8a:74:18:2d:64:fd:94:3d:59:19:18:e9:ce:56:9c:ad:cf:
56:a5:0f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:48 2024 by rpki-client on console-fra.rpki-client.org