Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/ZLnDZ79KdqgyaufkE8WNBWa9fqc.roa
File: ZLnDZ79KdqgyaufkE8WNBWa9fqc.roa (raw, json)
Hash identifier: 60/v1fajyEM81MElU5Cx9p9jwDljCEbBNz0LGbBeRdY=
Subject key identifier: 64:B9:C3:67:BF:4A:76:A8:32:6A:E7:E4:13:C5:8D:05:66:BD:7E:A7
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 0185ACA623967F27B7B80A0BC7C2B332A85B
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/ZLnDZ79KdqgyaufkE8WNBWa9fqc.roa
Signing time: Fri 13 Jan 2023 19:40:47 +0000
ROA not before: Fri 13 Jan 2023 19:40:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58192
IP address blocks: 2a13:3cc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Nov 2023 13:10:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ac:a6:23:96:7f:27:b7:b8:0a:0b:c7:c2:b3:32:a8:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Jan 13 19:40:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64b9c367bf4a76a8326ae7e413c58d0566bd7ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fd:67:a8:00:d6:c8:5f:93:f2:4a:48:98:1b:
5d:f0:16:d8:1c:6f:a8:82:ac:b7:6c:9a:d6:6c:ca:
38:3f:5e:1f:89:80:8e:6b:f0:01:4e:0b:20:84:cd:
5e:98:aa:5d:e9:ec:75:9a:7e:94:9f:3e:47:39:e7:
b8:19:1f:6a:e9:b7:ca:7e:a8:74:73:ce:a7:f3:6b:
9b:9c:87:cc:6f:75:7d:b7:30:d4:2c:d3:f8:af:79:
40:1c:ec:af:72:cc:3d:02:d6:fe:e9:72:56:35:4e:
2c:55:36:3f:a4:3a:57:5d:4b:63:d6:c3:ff:f1:9d:
e7:5b:65:e0:10:a3:30:32:5d:17:5d:27:83:ad:9b:
0c:7a:3a:cb:e8:a6:37:d1:d5:3f:09:5c:7a:fa:e2:
dc:31:99:af:77:a3:b4:21:0f:f5:23:3f:6a:2d:73:
ad:90:59:4b:6d:0f:7f:dc:df:5f:61:3e:50:e7:5c:
8f:45:55:59:1f:65:34:87:74:4f:1d:c0:07:2f:e9:
5e:62:43:ad:d2:b9:a3:04:dd:32:ab:7a:ab:f3:dd:
57:81:b9:85:70:d9:b6:73:3e:da:e7:a9:93:ef:c7:
ac:7c:77:31:0b:0a:51:5f:57:f3:a4:a0:26:5c:c5:
94:8f:6d:da:cb:3f:5f:be:a2:84:fb:70:c2:e2:e8:
34:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B9:C3:67:BF:4A:76:A8:32:6A:E7:E4:13:C5:8D:05:66:BD:7E:A7
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/ZLnDZ79KdqgyaufkE8WNBWa9fqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3cc0::/29
Signature Algorithm: sha256WithRSAEncryption
80:22:eb:76:f1:26:7c:f3:4b:53:fc:f3:c4:e0:98:d8:43:e8:
b3:ae:e2:a7:80:46:4c:86:f8:50:df:de:17:0d:58:1e:ab:53:
bf:7b:ec:b1:01:e4:bd:82:c4:06:9d:7f:8e:f6:9c:9d:3c:a6:
0e:8f:5d:b3:27:a9:3a:27:1b:29:63:58:e3:32:6d:92:ea:7d:
2e:bd:6b:bb:af:f1:25:be:73:d0:dd:31:09:b6:90:ee:3b:bf:
58:1f:ad:cd:68:f1:ac:b8:77:2f:bf:37:8e:cb:33:fe:4c:c1:
dd:f3:5d:b3:f0:2f:4e:61:57:79:ba:74:47:bb:fe:51:13:11:
7c:93:dd:ca:8e:b7:74:ef:3f:70:6c:24:81:bc:9d:00:96:64:
ec:a6:9f:0b:a4:d0:50:eb:87:e4:e2:e3:af:cb:92:dc:93:df:
fe:c7:a7:9f:2e:cc:1e:36:1e:1d:ad:08:d3:f6:c2:d6:b3:db:
0f:9d:51:ae:b8:58:c2:68:07:d9:87:1e:eb:3b:af:16:e3:04:
17:85:44:0d:cb:d1:4f:ea:77:45:14:b2:7e:17:ea:9f:88:a9:
69:3e:21:de:00:82:27:b0:85:ca:95:2b:91:0d:e9:f7:6e:f6:
c2:f7:3f:b1:5c:5a:00:d6:a2:24:12:10:07:f3:26:9b:c9:27:
96:d1:ca:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:24 2024 by rpki-client on console-ams.rpki-client.org