Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/jItfBh4ByvkjNLPDvdqhKp6tllQ.roa
File: jItfBh4ByvkjNLPDvdqhKp6tllQ.roa (raw, json)
Hash identifier: iJDIlBgjLB6owEARQep4YycvAq9r1mcneiaSxlitT3Q=
Subject key identifier: 8C:8B:5F:06:1E:01:CA:F9:23:34:B3:C3:BD:DA:A1:2A:9E:AD:96:54
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018CC64B64D62E9AE75CDF313AB3DA094317
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/jItfBh4ByvkjNLPDvdqhKp6tllQ.roa
Signing time: Mon 01 Jan 2024 18:31:18 +0000
ROA not before: Mon 01 Jan 2024 18:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216349
IP address blocks: 2a10:a9c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 16 Apr 2024 05:46:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:64:d6:2e:9a:e7:5c:df:31:3a:b3:da:09:43:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Jan 1 18:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c8b5f061e01caf92334b3c3bddaa12a9ead9654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e7:f9:7e:70:05:21:2d:43:01:53:47:59:76:
9a:9d:25:68:7f:c5:bf:6b:f8:cd:54:f5:51:0c:51:
87:97:ce:07:24:c1:05:e4:3a:1d:19:19:19:34:f6:
17:5e:d0:7b:8f:6f:33:1a:ec:8a:ff:40:20:82:82:
36:84:11:bd:95:24:3c:cc:6c:04:06:5f:05:2f:ac:
33:70:9e:4b:29:88:f6:44:ea:b9:63:c4:a1:e3:e9:
f7:c5:ba:95:d6:47:bf:37:63:34:79:cb:d3:38:ae:
fb:14:bd:57:50:23:66:ea:ff:ba:20:0c:ba:eb:8d:
09:d6:7f:84:bc:18:e0:0c:70:ac:1c:5d:4d:07:eb:
9a:c8:59:95:0f:4f:cd:5f:ae:a3:ba:df:ea:03:7a:
f9:06:be:51:7f:2a:13:27:7d:5e:ab:d3:71:e9:7d:
13:28:8e:50:42:48:0e:c4:da:f1:b3:f4:c3:f3:af:
7f:96:fd:e2:59:28:db:87:45:ab:ad:89:ea:0b:8b:
d2:c3:8b:b8:47:99:21:ef:a9:79:a8:06:48:50:c8:
98:e8:a6:c2:8c:60:4b:38:ad:5b:26:89:80:f1:58:
95:ab:22:fe:b9:84:e3:3f:5b:0a:28:9b:f4:89:02:
99:c8:23:0d:26:ed:04:3f:df:7c:ff:1c:d5:72:7b:
42:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8B:5F:06:1E:01:CA:F9:23:34:B3:C3:BD:DA:A1:2A:9E:AD:96:54
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/jItfBh4ByvkjNLPDvdqhKp6tllQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a9c0::/29
Signature Algorithm: sha256WithRSAEncryption
91:52:03:5f:f9:80:9a:be:9e:be:ce:7b:82:9c:65:62:5b:51:
1e:57:2e:6f:bf:a7:3c:0d:80:fc:01:c6:0f:ee:41:c4:fd:65:
96:fd:88:5d:11:88:ff:fe:a2:9e:b5:a3:2d:cb:69:04:ed:5c:
33:b8:df:67:be:fc:8f:dc:fd:60:b4:67:99:05:ca:86:62:54:
e9:f6:61:61:a4:0b:4e:fc:11:f6:71:c8:d0:81:e9:31:5b:af:
6f:80:87:5a:6f:10:9c:ef:a9:15:eb:2d:57:38:4f:9c:68:c2:
02:dd:e0:71:e8:15:38:55:3b:9a:c4:42:14:05:bd:81:ff:2d:
b0:35:8d:e0:55:64:7c:13:e5:c2:52:bd:df:ab:ae:d2:c8:08:
04:ac:26:18:cd:64:e5:59:83:59:4f:3f:d4:f1:aa:a9:e9:65:
08:69:cc:7b:2c:9f:fa:00:81:da:74:fb:e3:53:53:c1:b6:75:
af:0b:bc:9d:be:7c:3d:29:1b:fd:c1:f9:cc:d7:f1:d1:9b:0e:
3e:46:32:e0:de:23:cb:8f:cc:52:d8:66:f1:ad:d1:79:a3:8a:
e2:c6:d8:ff:27:db:93:d9:a4:39:1b:08:d2:d0:cc:4f:53:f5:
bc:a2:4d:83:82:1c:dd:37:91:b3:1c:aa:15:2b:88:84:50:45:
c9:b6:16:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:07 2024 by rpki-client on console-ams.rpki-client.org