Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/ZyfD0bpKJuPJRcM3aeyP0r6mjuI.roa
File: ZyfD0bpKJuPJRcM3aeyP0r6mjuI.roa (raw, json)
Hash identifier: vD8y1ZPNTw+nLr/ZW91GBZ2/clMMVN7XIpY4ZrkFn88=
Subject key identifier: 67:27:C3:D1:BA:4A:26:E3:C9:45:C3:37:69:EC:8F:D2:BE:A6:8E:E2
Certificate issuer: /CN=bbd2dc1d2c8fbdc08516ab0bb2088c37eb002863
Certificate serial: 0190E450E524EAD2A6D2735ABC6DAFAE4AE9
Authority key identifier: BB:D2:DC:1D:2C:8F:BD:C0:85:16:AB:0B:B2:08:8C:37:EB:00:28:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u9LcHSyPvcCFFqsLsgiMN-sAKGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/ZyfD0bpKJuPJRcM3aeyP0r6mjuI.roa
Signing time: Wed 24 Jul 2024 10:37:04 +0000
ROA not before: Wed 24 Jul 2024 10:37:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 702
IP address blocks: 2a13:84c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 30 Sep 2024 16:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e4:50:e5:24:ea:d2:a6:d2:73:5a:bc:6d:af:ae:4a:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbd2dc1d2c8fbdc08516ab0bb2088c37eb002863
Validity
Not Before: Jul 24 10:37:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6727c3d1ba4a26e3c945c33769ec8fd2bea68ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9d:82:e0:03:ab:8b:6f:cf:88:9c:39:17:50:
22:ff:13:91:89:e1:c7:7d:1e:6b:b9:38:8e:34:32:
97:ba:3b:62:96:a1:8e:86:e3:9c:39:5b:d8:ad:db:
e0:1b:4f:64:ab:1d:8e:85:85:8a:b6:9d:79:ab:ab:
6d:a6:b9:92:51:fb:70:83:d5:21:fc:15:24:d3:48:
fc:f6:15:44:1e:ff:b8:b9:9b:aa:1c:0e:69:c8:20:
4c:70:16:78:d5:04:3e:4d:e9:b9:b9:3b:a0:7d:51:
eb:f8:99:68:f7:36:97:2d:f8:a3:3e:e9:b1:75:c7:
4c:a2:30:3e:a7:87:fc:21:1d:70:c0:46:96:9c:ef:
53:0d:98:bc:72:c8:c2:05:a5:f6:cb:b8:73:f5:32:
9c:8d:b7:25:81:a8:db:cd:fa:ac:16:b9:3a:da:94:
15:27:ad:32:33:5e:3d:0b:f2:9f:2a:2e:18:07:41:
9e:03:11:8e:19:ef:3e:8b:6b:4c:db:e7:65:05:4f:
64:70:5e:75:9c:f0:05:2e:a2:ec:d3:1c:cf:ac:5b:
51:61:ce:c5:b4:e9:1f:39:3f:dc:9b:42:75:a8:fb:
3c:28:9a:ab:b7:0d:b3:f4:3f:fe:dd:e2:bd:0b:1e:
84:40:5b:dc:fb:b5:55:f8:fa:1a:5d:3c:fc:cf:89:
ac:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:27:C3:D1:BA:4A:26:E3:C9:45:C3:37:69:EC:8F:D2:BE:A6:8E:E2
X509v3 Authority Key Identifier:
keyid:BB:D2:DC:1D:2C:8F:BD:C0:85:16:AB:0B:B2:08:8C:37:EB:00:28:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u9LcHSyPvcCFFqsLsgiMN-sAKGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/ZyfD0bpKJuPJRcM3aeyP0r6mjuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/u9LcHSyPvcCFFqsLsgiMN-sAKGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:84c0::/32
Signature Algorithm: sha256WithRSAEncryption
6f:1e:2f:9b:79:8f:71:84:43:4c:ea:6f:dd:39:e0:7d:f3:95:
af:c2:9e:48:54:97:3e:54:66:a3:a5:9a:58:43:78:bf:ad:58:
cf:dc:24:6b:f2:d4:0a:a7:5c:3c:8a:bb:5d:75:bb:3e:5d:2b:
5a:ab:e6:27:ab:ac:db:85:96:7d:a2:32:41:fe:cd:53:90:4f:
f9:5a:cc:7d:fe:91:34:86:86:e1:69:34:68:75:2f:b8:08:6d:
59:d6:84:8c:99:f6:a0:ac:0c:f3:a6:83:b6:b9:bc:fc:7a:f8:
20:3c:ac:e8:35:02:d2:87:dd:56:f0:8c:96:f2:5e:d9:e1:fd:
f4:91:e7:12:46:93:c2:d6:8c:15:6c:5c:4a:27:5b:d0:62:72:
57:18:6c:bb:93:79:47:7c:5a:4f:27:d0:44:f3:7d:31:3f:4a:
0f:c2:6a:40:02:ce:7d:ae:43:fb:7e:a4:dc:2b:b1:9c:e4:4c:
09:de:48:d1:12:f7:b6:eb:4c:70:19:25:58:b7:cd:bd:11:93:
66:6d:27:fa:fd:a6:85:01:2c:0e:81:9e:04:8c:12:65:54:2e:
86:33:c8:c4:27:31:a3:58:a5:06:8c:a7:28:dc:e5:54:f2:a4:
2f:ef:94:34:e5:1c:f7:cc:8b:dd:c9:af:f0:ee:1b:70:de:5a:
d5:bb:1c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 20:13:08 2024 by rpki-client on console-ams.rpki-client.org