Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/ze0gYzDaonDGkTn2pRG7mkKTydU.roa
File: ze0gYzDaonDGkTn2pRG7mkKTydU.roa (raw, json)
Hash identifier: uYDtjBUFSCw6yHlCwfNDLTyheBXKzCZxXCxVA+4iuLc=
Subject key identifier: CD:ED:20:63:30:DA:A2:70:C6:91:39:F6:A5:11:BB:9A:42:93:C9:D5
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 01856E0B1357D7ED148B758A826C26A7F70A
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/ze0gYzDaonDGkTn2pRG7mkKTydU.roa
Signing time: Sun 01 Jan 2023 15:54:57 +0000
ROA not before: Sun 01 Jan 2023 15:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34164
IP address blocks: 2a01:3e0:402::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:13:57:d7:ed:14:8b:75:8a:82:6c:26:a7:f7:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 15:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cded206330daa270c69139f6a511bb9a4293c9d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e8:c4:8e:33:3f:03:6b:b9:03:6d:4d:80:fa:
49:03:63:b0:ab:17:8f:89:27:5e:8b:be:0a:ae:3c:
ea:27:57:ee:2d:f1:aa:52:39:93:69:d6:f7:ef:b4:
63:e8:9c:54:1b:39:1e:be:99:df:f9:9d:48:52:18:
17:6d:b6:e5:3d:fb:38:9e:b3:f6:cd:b5:24:fc:96:
3b:c6:02:30:68:a2:c5:02:c8:d9:5e:27:cd:ab:77:
94:c4:c8:1a:24:7d:e1:0b:9f:18:17:2c:c0:df:66:
86:81:da:29:3b:62:a0:46:c4:a6:53:51:4b:0b:d8:
1b:b8:80:8c:a6:68:31:19:eb:60:f0:6c:2c:8b:06:
37:d8:ba:9a:65:98:d6:df:45:c2:61:1b:48:5a:8c:
06:b7:f3:c3:45:cf:e5:b1:2d:41:e3:e9:e8:b0:e5:
34:44:78:1d:6c:4b:d1:ad:c6:d1:e5:f6:3b:7f:cd:
bf:4d:70:08:d7:4f:25:e8:24:3b:a8:ac:36:d7:5a:
67:e8:4e:1d:b9:95:29:f3:bb:d6:1e:a8:95:9d:e2:
d4:b2:dc:7e:20:88:d3:39:d1:4e:25:58:e4:81:d1:
3d:85:2f:5d:be:03:24:5d:e6:d0:d7:c2:42:1f:5e:
2e:7b:bf:38:4c:6c:9b:ca:18:79:ed:ca:b8:73:8c:
f7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:ED:20:63:30:DA:A2:70:C6:91:39:F6:A5:11:BB:9A:42:93:C9:D5
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/ze0gYzDaonDGkTn2pRG7mkKTydU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:3e0:402::/48
Signature Algorithm: sha256WithRSAEncryption
e2:1e:3f:12:6d:a5:33:da:f3:bf:24:33:14:d1:32:7b:c7:47:
77:80:62:cb:42:7a:8e:cd:fc:c9:74:ad:13:79:d9:92:c6:07:
0f:89:17:0e:b8:4e:ce:4d:f9:b5:a4:69:c7:07:e0:8f:87:e5:
99:63:26:fd:99:d1:bb:7f:06:22:ff:0a:54:ba:5b:a6:6c:7c:
6a:bc:4c:88:2c:83:bd:a7:7c:e9:51:ea:67:33:71:95:31:25:
aa:f9:cf:7a:8b:e4:fb:76:2d:56:b9:7d:d2:eb:56:30:d7:b8:
ad:77:e9:e0:69:c6:4b:9e:ae:5c:fe:52:9e:7f:d8:26:6d:0d:
a6:ea:51:3f:a4:ca:fa:95:bb:dd:10:ce:49:05:c7:74:42:a1:
3a:76:7a:1c:a2:ee:e6:02:1f:3d:73:a7:77:ee:43:ea:db:4e:
34:5e:05:88:63:84:c1:ba:14:51:dc:ad:3d:fc:a7:c6:40:33:
d7:04:c1:8c:56:24:35:13:aa:40:8a:7f:dc:9b:49:31:ef:2d:
90:2b:ff:19:d6:47:f1:0d:03:7f:82:08:e6:a9:bb:22:c6:48:
95:c8:19:81:42:70:5f:cf:e2:ca:d3:df:c8:cb:2a:dc:d0:ab:
6b:40:f0:8c:45:39:a1:e2:56:1d:72:fb:88:7e:2a:54:94:ba:
63:27:0b:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org