Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/yzblkiUnb-PlzRGeWI8ojEoSYOM.roa
File: yzblkiUnb-PlzRGeWI8ojEoSYOM.roa (raw, json)
Hash identifier: /Q6C+RstPzD+FNpfzvtAmaddtlgHkl+j0JnfxItia0Q=
Subject key identifier: CB:36:E5:92:25:27:6F:E3:E5:CD:11:9E:58:8F:28:8C:4A:12:60:E3
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018B8B24556E853F621F03319AB6B3906978
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/yzblkiUnb-PlzRGeWI8ojEoSYOM.roa
Signing time: Wed 01 Nov 2023 13:48:16 +0000
ROA not before: Wed 01 Nov 2023 13:48:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216349
IP address blocks: 2a10:a9c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:24:55:6e:85:3f:62:1f:03:31:9a:b6:b3:90:69:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Nov 1 13:48:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb36e59225276fe3e5cd119e588f288c4a1260e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9e:46:31:45:19:1d:6a:40:7a:43:bd:62:25:
18:35:ca:5c:8c:ba:90:6a:fd:ba:a7:ad:d9:ea:6a:
f8:9e:3d:4f:64:e2:50:bb:da:f0:69:db:5b:8f:51:
62:71:fc:61:d3:91:95:48:89:58:f9:81:fa:82:a2:
54:89:db:16:20:ed:ec:69:53:79:b7:09:46:0d:bc:
93:98:39:e2:dd:e0:bb:3f:1e:2b:58:cf:11:2f:8f:
d6:2e:77:f6:d1:80:bc:66:7e:ff:c1:58:1c:66:ce:
6d:b6:4e:89:ef:7b:f6:9a:3a:77:bc:0b:c8:85:98:
e0:5f:0e:69:ba:80:86:b2:b7:62:a8:0a:cb:5a:32:
c3:99:0e:a6:74:09:ec:54:79:11:f9:e8:0a:8d:bb:
85:e1:46:90:96:bc:17:16:8c:06:1d:fc:dd:ac:6b:
c5:88:8e:37:64:bd:75:66:29:ab:33:02:7d:1f:ad:
09:80:82:45:32:85:3a:6f:00:8f:44:40:34:56:46:
19:2f:26:ab:83:1d:e9:ce:e1:aa:c3:e1:44:7c:e2:
b1:1c:a0:29:fb:4a:0a:ec:b4:26:09:0d:09:0b:94:
0c:f9:7e:22:83:45:09:d4:38:1e:d1:71:88:5d:1d:
54:ed:e5:ab:43:f8:ea:14:4f:3d:d1:17:bf:a1:26:
21:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:36:E5:92:25:27:6F:E3:E5:CD:11:9E:58:8F:28:8C:4A:12:60:E3
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/yzblkiUnb-PlzRGeWI8ojEoSYOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a9c0::/29
Signature Algorithm: sha256WithRSAEncryption
7e:0c:2d:9c:c8:fe:32:49:cf:bf:c2:50:ac:8b:db:23:77:45:
b3:1c:da:11:05:17:55:57:29:ce:eb:19:60:9d:69:8f:d5:8d:
b8:87:bb:59:80:b0:51:a6:c0:c5:94:80:51:0f:ff:1d:ca:14:
a3:59:04:25:0c:6f:44:0e:23:1b:43:db:ae:b2:42:26:9e:40:
9a:16:6e:7a:25:4d:03:08:5b:32:c9:c5:1b:bc:4f:88:2d:cc:
45:22:f3:71:9a:8b:c1:84:be:a8:91:c0:bb:03:19:59:f9:33:
75:7f:22:2e:ed:b6:d6:67:f1:d9:1f:09:14:78:09:7f:10:8e:
ad:30:50:d8:4b:e7:27:d9:00:bb:c6:3f:16:8a:39:f8:c7:f2:
25:06:25:e0:96:8a:54:b9:17:ae:e4:c9:46:28:83:36:a3:2a:
92:d8:20:b1:96:da:c0:24:76:a1:9b:ec:1f:3c:61:ee:73:a5:
82:d2:7e:3b:8a:55:03:38:7d:d1:b8:3e:06:5f:ca:38:ff:cb:
fb:cf:d8:7f:80:fe:25:2c:fd:56:cc:ba:61:80:26:b8:7b:7b:
7a:cb:e4:0a:a6:5b:4b:45:71:d1:0b:f7:bf:c7:69:72:8e:4b:
3e:92:be:11:35:7c:e1:64:31:92:08:e3:50:1a:6f:5f:f5:70:
15:68:58:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:43 2024 by rpki-client on console-fra.rpki-client.org