Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/b72cb0-0e57-468c-89f0-abcb1e7582b3/1/zVPEgM1afSRZRjRHHJjDtdSa8Qw.roa
File: zVPEgM1afSRZRjRHHJjDtdSa8Qw.roa (raw, json)
Hash identifier: Mutl5K5tX1sx24f5St3lGOZQSfTkeAvvcdMT2RB1eXI=
Subject key identifier: CD:53:C4:80:CD:5A:7D:24:59:46:34:47:1C:98:C3:B5:D4:9A:F1:0C
Certificate issuer: /CN=a55cf89ee562797e775aa4d1d1f7e45f466a73c3
Certificate serial: 018CC2DB0AAA4256B4106845E32BA13BAFCA
Authority key identifier: A5:5C:F8:9E:E5:62:79:7E:77:5A:A4:D1:D1:F7:E4:5F:46:6A:73:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVz4nuVieX53WqTR0ffkX0Zqc8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/b72cb0-0e57-468c-89f0-abcb1e7582b3/1/zVPEgM1afSRZRjRHHJjDtdSa8Qw.roa
Signing time: Mon 01 Jan 2024 02:29:44 +0000
ROA not before: Mon 01 Jan 2024 02:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208058
IP address blocks: 2a13:5a40::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 29 Jan 2024 12:24:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:0a:aa:42:56:b4:10:68:45:e3:2b:a1:3b:af:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55cf89ee562797e775aa4d1d1f7e45f466a73c3
Validity
Not Before: Jan 1 02:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd53c480cd5a7d24594634471c98c3b5d49af10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:07:99:70:e0:39:cf:67:2d:2f:1a:0f:42:35:
98:60:a2:10:e1:65:46:2a:2a:f7:78:17:1a:e3:e4:
1d:60:c9:2b:85:e9:de:30:88:2c:85:fa:9a:cc:23:
90:3c:3b:3a:58:eb:11:f8:88:9d:9f:ca:91:04:3f:
b5:1b:57:38:f9:63:37:80:42:2f:b9:d4:19:04:8b:
7f:5f:24:60:a2:3a:b5:60:c7:f7:17:ad:a6:79:a5:
5c:3e:8f:c7:ef:d5:06:6e:3d:84:c3:22:e1:26:d4:
f9:b4:96:d2:40:81:fb:25:dc:8c:58:3f:b4:55:fd:
14:45:eb:46:eb:37:21:91:f4:e5:dd:01:34:24:34:
e2:43:74:0c:44:98:39:3d:e5:44:0c:a7:1f:56:5e:
70:9b:5d:cc:28:80:9d:c9:24:9a:49:4b:fb:b0:ec:
28:5c:24:30:ac:03:27:ca:9b:5f:1e:f7:30:d3:ba:
df:c8:19:b9:5a:82:29:4a:ff:88:2a:f2:19:94:3a:
4a:34:c7:14:44:59:2b:0f:a7:7d:65:4a:5d:d3:98:
4f:ea:d8:8b:ff:6d:6c:6d:5a:85:b2:27:83:5a:0b:
ed:01:ca:62:4f:b1:b0:63:b8:fd:e4:17:11:1f:95:
06:1e:1e:9f:d7:45:22:d6:b6:0e:a0:9f:a6:66:ed:
1c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:53:C4:80:CD:5A:7D:24:59:46:34:47:1C:98:C3:B5:D4:9A:F1:0C
X509v3 Authority Key Identifier:
keyid:A5:5C:F8:9E:E5:62:79:7E:77:5A:A4:D1:D1:F7:E4:5F:46:6A:73:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVz4nuVieX53WqTR0ffkX0Zqc8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b72cb0-0e57-468c-89f0-abcb1e7582b3/1/zVPEgM1afSRZRjRHHJjDtdSa8Qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b72cb0-0e57-468c-89f0-abcb1e7582b3/1/pVz4nuVieX53WqTR0ffkX0Zqc8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5a40::/29
Signature Algorithm: sha256WithRSAEncryption
00:9c:15:31:63:fe:39:9d:c7:36:1f:72:23:70:87:b2:f3:87:
b7:77:8a:55:77:8a:2a:f1:c3:7c:63:6b:bf:b2:e0:29:82:28:
94:79:e6:67:e8:e1:46:07:49:70:f2:b8:65:2a:6b:f7:84:97:
dc:22:33:ee:2a:38:8c:d9:b7:c7:6b:b5:72:90:be:5b:b2:da:
77:a1:04:f8:ff:73:d7:59:c8:65:db:9e:88:20:b9:19:69:26:
07:4b:09:5c:67:ed:c5:f4:91:3e:3d:4f:49:3c:31:33:70:77:
70:a4:d9:cb:37:45:32:d1:7d:cf:42:fe:d8:c9:85:21:fd:61:
90:83:1c:16:8a:bc:c5:a8:97:04:68:c1:e3:4c:92:f0:86:b8:
49:aa:4b:85:ce:df:5f:48:62:ae:09:38:42:11:89:44:1d:b7:
38:92:ec:89:ff:69:94:fd:ea:e4:0b:d5:fb:e5:36:00:e4:8b:
f8:85:0e:1a:7e:98:70:2b:57:d2:32:6d:b1:81:e9:15:ac:71:
58:c3:91:d9:9e:2f:2b:5b:7b:58:ae:2a:1e:e4:44:08:85:02:
e8:f1:e9:7c:36:10:4b:2e:29:c1:6d:29:f5:0e:aa:a1:ae:24:
e5:4a:8a:19:d7:cd:c3:dd:3a:a7:27:fa:9e:40:2e:8c:d6:da:
9a:11:c4:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:10 2024 by rpki-client on console-fra.rpki-client.org