Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/RZAkZQwY_m8zeH1KfVhSof9rXcM.roa
File: RZAkZQwY_m8zeH1KfVhSof9rXcM.roa (raw, json)
Hash identifier: e4QU/9EfajxG/1m+xxK5if2cPKVUbZ3IBHDRkeiTKUU=
Subject key identifier: 45:90:24:65:0C:18:FE:6F:33:78:7D:4A:7D:58:52:A1:FF:6B:5D:C3
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018E0D30BAC0CB8A894D9DF718BFC2FF1A96
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/RZAkZQwY_m8zeH1KfVhSof9rXcM.roa
Signing time: Tue 05 Mar 2024 05:58:01 +0000
ROA not before: Tue 05 Mar 2024 05:58:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200216
IP address blocks: 2a13:dd40::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 03 Apr 2024 19:50:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0d:30:ba:c0:cb:8a:89:4d:9d:f7:18:bf:c2:ff:1a:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Mar 5 05:58:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=459024650c18fe6f33787d4a7d5852a1ff6b5dc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:26:11:99:1e:ac:35:4e:77:c5:d9:fb:86:a8:
26:1e:39:ae:c1:4c:1e:ac:47:95:ee:05:5e:de:c2:
58:06:d4:01:d7:92:ca:e5:74:8c:0a:90:1d:5b:83:
9f:11:b7:2d:93:d1:24:ab:f5:fb:33:1b:b3:60:2c:
e0:f6:7c:a4:ee:51:8e:3a:25:b0:0f:58:6e:c2:c3:
c9:d4:ad:2e:69:ca:18:8f:96:17:e2:9c:d7:75:2f:
86:b6:67:98:dc:74:0d:d2:27:b9:e5:1b:72:54:7f:
c9:99:4e:72:dd:d7:1d:fe:9e:b0:13:7b:e8:56:37:
45:8d:2e:a9:f3:67:ed:c9:dc:7b:0f:51:40:a0:9c:
c0:2d:54:25:0a:b5:a9:eb:bd:1e:f6:a1:9a:1f:22:
89:39:2d:c4:a6:87:ba:e3:92:c7:16:29:56:56:a1:
b2:28:01:f3:ac:e6:04:88:f0:de:c9:fc:f3:0b:1e:
25:b0:d8:9f:db:a7:ae:fe:f5:59:04:b2:74:19:6e:
3f:23:3e:9d:ab:c5:89:98:25:17:15:a7:36:4e:6c:
25:03:f3:49:76:c3:c5:38:28:53:52:c3:49:98:27:
61:67:e7:d8:6d:cd:46:e0:a3:bd:58:d9:62:b7:6b:
ac:74:a9:b0:5f:1a:ad:bc:f8:d6:52:62:04:c1:13:
d3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:90:24:65:0C:18:FE:6F:33:78:7D:4A:7D:58:52:A1:FF:6B:5D:C3
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/RZAkZQwY_m8zeH1KfVhSof9rXcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:dd40::/29
Signature Algorithm: sha256WithRSAEncryption
53:b2:2b:97:6f:c1:7b:96:b4:65:c1:5a:d8:ad:08:eb:3e:65:
0c:30:b1:3c:a3:0c:db:64:c2:4b:b5:6c:0f:69:9c:25:93:13:
a3:41:7c:d2:99:93:93:db:b8:d4:c3:71:72:09:72:93:c8:04:
37:0c:ef:07:55:90:24:c1:98:b6:f4:72:5d:e6:6b:6a:15:93:
6d:56:67:30:07:8c:f0:ca:b9:d6:02:3b:22:a5:4e:7c:de:90:
e6:23:1e:ed:57:b8:b1:5b:a1:f0:7c:b1:05:d2:ad:f9:02:a8:
8a:3a:d7:9a:15:a8:47:aa:9e:66:18:a1:5e:b3:7c:bc:05:a9:
b7:fe:9e:c4:26:8d:4c:71:64:76:92:0e:70:22:0b:ae:3d:9c:
33:2e:64:57:8f:ee:a0:ff:6f:d6:fe:e7:3e:d6:db:83:88:4c:
0d:2c:60:a2:8e:0a:e5:b6:cc:88:75:a9:33:8c:08:07:8b:36:
5e:32:e5:ff:68:2d:1d:ee:d0:b5:ae:55:51:50:84:bb:ce:77:
5f:7d:41:59:92:0e:e0:e9:c0:7a:f3:f5:6d:36:92:93:54:62:
8b:6c:97:89:76:02:2f:fb:75:d3:a5:d5:20:e8:b5:ad:04:92:
7c:da:98:b3:26:80:bb:f4:b5:f0:06:4a:1b:29:19:e3:69:f2:
25:a3:ed:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:07 2024 by rpki-client on console-ams.rpki-client.org