Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/VZb4ZVqAn4BY6JcmHR3E7YUQEYY.roa
File: VZb4ZVqAn4BY6JcmHR3E7YUQEYY.roa (raw, json)
Hash identifier: ykykjbaAHNGPzCrNFmsfgd/e/cfjmuUVPQIUha8hx0M=
Subject key identifier: 55:96:F8:65:5A:80:9F:80:58:E8:97:26:1D:1D:C4:ED:85:10:11:86
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 0189FED82292ED0E9CED4D5D752958AD14E0
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/VZb4ZVqAn4BY6JcmHR3E7YUQEYY.roa
Signing time: Wed 16 Aug 2023 14:55:24 +0000
ROA not before: Wed 16 Aug 2023 14:55:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202044
IP address blocks: 2a0b:b480::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Nov 2023 13:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fe:d8:22:92:ed:0e:9c:ed:4d:5d:75:29:58:ad:14:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Aug 16 14:55:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5596f8655a809f8058e897261d1dc4ed85101186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:64:81:2f:ae:0e:56:0e:c2:4d:9b:44:a8:b7:
1d:5b:cc:1b:f8:ce:4b:dc:d2:e1:28:d4:0b:df:64:
0f:6c:00:0f:e9:f2:c7:73:2e:e7:96:4b:6f:cb:35:
40:fe:94:90:07:42:1e:5c:a4:e9:18:17:91:92:4f:
7a:18:d3:67:cf:7f:e9:e7:3f:ea:03:ca:05:fc:a5:
ff:23:80:5a:fb:bd:a2:2d:cb:8f:31:30:21:40:fa:
35:49:fb:90:2a:66:d9:81:18:7a:38:59:c7:d5:f8:
1c:62:fa:ca:1b:50:f9:43:e9:ad:dd:4a:31:b1:12:
77:2a:52:b7:7a:82:b4:2c:b7:e6:83:20:01:22:e7:
00:f2:4b:4b:bb:2d:05:34:6d:93:ce:2f:9d:e9:a3:
f2:b1:99:28:04:92:ad:07:b5:1a:76:fd:38:2b:e2:
f2:16:6d:de:da:e9:89:d3:2d:bc:6d:84:a3:d4:d9:
2c:14:84:5c:f6:d2:8c:c5:86:0f:85:4c:7c:43:7d:
66:f1:09:ec:9d:cf:92:6f:dd:5d:c6:c1:38:1f:3c:
27:fe:a2:5c:84:3a:0e:ac:da:39:ad:39:74:64:1b:
dd:98:ec:5c:d6:42:bb:f4:7b:77:34:6a:c2:fa:0c:
88:4d:67:ae:4e:12:cb:54:11:49:65:7f:fd:29:94:
dd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:96:F8:65:5A:80:9F:80:58:E8:97:26:1D:1D:C4:ED:85:10:11:86
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/VZb4ZVqAn4BY6JcmHR3E7YUQEYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b480::/29
Signature Algorithm: sha256WithRSAEncryption
a0:e4:76:a4:4e:1e:a5:dd:00:e1:8e:78:00:05:99:c0:89:a8:
12:94:3f:26:05:bf:ec:1d:34:f2:bb:4c:0e:dc:a1:87:4d:22:
20:cc:f7:ab:eb:01:13:f7:05:a9:87:87:f1:5d:7f:da:f4:10:
24:7d:58:47:3a:bf:33:6d:ed:42:31:a1:f7:4d:00:1f:6b:da:
42:b1:a5:5b:a4:99:92:e9:b8:7d:fc:26:ea:5b:f1:67:31:18:
15:2d:1a:55:83:f8:c0:74:28:7b:f8:2c:2c:c4:63:c2:63:b7:
e4:0c:45:b6:d4:09:70:d3:5b:ca:e8:4a:65:2e:f6:fb:68:09:
26:b5:c3:06:36:f8:93:c7:e8:68:35:d6:52:50:e5:0c:9d:b2:
75:9c:d9:38:cf:9a:08:15:f8:af:b0:d4:00:6e:7d:3b:7b:7a:
ed:7d:dd:9c:02:09:42:63:72:e5:88:a0:29:1a:17:49:3f:16:
2e:ca:29:1a:4f:7a:d5:2e:da:da:5d:31:9e:de:af:8a:55:cc:
57:20:8d:d1:24:af:b8:31:48:6c:e1:f9:6e:b4:23:a5:d2:63:
20:0f:f9:e6:21:5d:2f:b6:66:3e:8a:9b:9c:9e:55:79:e6:a6:
17:ec:9a:e5:5c:01:bf:46:35:73:d4:da:08:22:8d:5a:49:90:
a3:ea:07:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:07 2024 by rpki-client on console-ams.rpki-client.org