Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/I7qRRN_fGNTK3YIBADuaKWwBg1Q.roa
File: I7qRRN_fGNTK3YIBADuaKWwBg1Q.roa (raw, json)
Hash identifier: isZHcy7/Cq0Vk864t7SNABrZL99Fj+rdiNWPNayWFHI=
Subject key identifier: 23:BA:91:44:DF:DF:18:D4:CA:DD:82:01:00:3B:9A:29:6C:01:83:54
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018FF42C7E904382393CA06F2D538FD71BC8
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/I7qRRN_fGNTK3YIBADuaKWwBg1Q.roa
Signing time: Fri 07 Jun 2024 19:28:27 +0000
ROA not before: Fri 07 Jun 2024 19:28:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216349
IP address blocks: 2a13:be40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 22 Sep 2024 19:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f4:2c:7e:90:43:82:39:3c:a0:6f:2d:53:8f:d7:1b:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Jun 7 19:28:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23ba9144dfdf18d4cadd8201003b9a296c018354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:40:03:55:28:2b:a0:b5:53:0d:69:33:21:90:
7b:bb:6e:cf:a2:50:de:a0:da:03:dd:ac:fc:b3:04:
43:8b:10:60:7e:0a:3b:1d:db:a7:d9:6f:8b:6c:69:
d1:5d:32:76:f8:84:9e:10:c4:2b:7c:1f:76:55:30:
d0:5d:4e:da:91:a5:74:bf:06:ac:ca:79:c1:c9:b8:
1c:2a:86:57:d2:14:50:ae:7b:26:68:38:d8:a5:fb:
4b:86:48:e2:c2:24:88:fa:f2:da:91:43:bc:4c:57:
4e:b0:ea:5b:31:0f:ab:18:f9:cd:ae:a3:b2:01:90:
ef:56:23:40:f9:f4:40:5e:84:e6:e7:81:9d:f7:fa:
db:81:e6:ba:9b:5a:2c:bc:37:d4:0d:89:64:69:89:
b4:ff:4f:14:61:ab:b6:3e:4b:2d:a8:ec:4f:e1:4d:
c1:c4:75:10:25:c5:9e:66:0f:d2:3e:ff:c7:e1:4c:
20:37:f2:0e:99:a9:91:ea:f3:cf:c2:40:0d:3d:42:
a8:44:a4:6a:0c:12:4d:aa:ce:22:35:0b:6a:a2:d9:
79:6a:a4:e2:57:36:7a:6e:44:f1:15:04:48:e2:8a:
56:35:fe:f0:88:f2:9c:91:b3:14:85:49:e9:5c:ed:
fb:33:ee:10:da:11:d1:d6:20:80:22:6b:84:35:af:
23:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BA:91:44:DF:DF:18:D4:CA:DD:82:01:00:3B:9A:29:6C:01:83:54
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/I7qRRN_fGNTK3YIBADuaKWwBg1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:be40::/29
Signature Algorithm: sha256WithRSAEncryption
d0:61:ae:35:e1:03:00:23:e4:4d:01:f8:a8:4c:b4:f9:86:41:
29:0c:b5:f9:c7:66:c4:21:ed:e1:71:fb:c9:c8:0e:81:eb:59:
ab:e3:ad:7f:30:1a:63:0b:f7:19:f6:bb:d5:08:d7:df:94:e7:
1f:ff:99:24:24:79:90:fb:38:bb:1c:c7:5b:a5:c2:c3:87:2b:
65:7d:da:78:cc:f5:0d:4d:4b:f4:48:77:0e:ae:dc:3f:6e:a2:
cc:2a:fb:0a:ce:cc:f7:b7:45:72:2b:08:d9:fe:18:c1:52:09:
a7:ae:bf:e7:a0:50:7c:f2:ef:49:9a:10:49:32:cd:13:ae:6b:
e4:59:08:00:06:f4:19:7c:38:1b:55:f5:a7:5c:97:78:b3:f5:
48:0d:ff:d6:eb:6e:38:f0:c5:b6:fb:7d:a7:bb:12:5e:2a:d1:
6a:d2:c9:a9:fc:10:fc:e2:30:f9:74:ac:1f:38:1b:0f:ff:22:
e7:81:4e:97:e9:07:d9:fe:9e:1d:a2:5a:8f:94:64:6c:55:bc:
25:f4:88:53:a5:ae:b2:01:47:3d:07:37:f3:1e:21:17:7f:21:
24:c1:8e:2c:5f:6c:df:5c:3c:fb:65:4b:de:71:9c:be:ad:79:
13:6e:8d:50:56:97:2e:90:8b:0c:6d:a2:c2:e1:0a:22:f2:8f:
ca:88:e7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 00:52:45 2024 by rpki-client on console-ams.rpki-client.org