Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/lJYZiy9EDiLkeBIfgaOJ05nFH64.roa
File: lJYZiy9EDiLkeBIfgaOJ05nFH64.roa (raw, json)
Hash identifier: SuL8VgZxB/kCh+dvrRXjRqb7wlvppcsf6uRoWSpFyi4=
Subject key identifier: 94:96:19:8B:2F:44:0E:22:E4:78:12:1F:81:A3:89:D3:99:C5:1F:AE
Certificate issuer: /CN=66e92c341e769443fde1d27566044b4b65159060
Certificate serial: 018CC26D7C283D9DA44A448C605D1328641C
Authority key identifier: 66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/lJYZiy9EDiLkeBIfgaOJ05nFH64.roa
Signing time: Mon 01 Jan 2024 00:30:04 +0000
ROA not before: Mon 01 Jan 2024 00:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53755
IP address blocks: 2a0d:da07::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 04 Jan 2024 15:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:7c:28:3d:9d:a4:4a:44:8c:60:5d:13:28:64:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66e92c341e769443fde1d27566044b4b65159060
Validity
Not Before: Jan 1 00:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9496198b2f440e22e478121f81a389d399c51fae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ab:46:7b:14:29:c8:fc:b8:e7:8f:40:5f:bc:
49:2e:49:91:03:7b:a4:12:e8:6e:48:8f:b2:73:f2:
29:bf:78:dc:46:ba:71:22:f9:8c:de:79:d6:fe:a0:
bf:5c:a9:f1:48:3e:2c:40:b8:b4:83:dd:ad:52:7b:
6d:0b:df:15:5f:4f:79:45:4e:13:32:2a:4c:df:f4:
4b:8c:0d:d3:f7:68:14:7c:e6:0e:75:f5:b0:e9:e9:
2c:7a:44:10:c4:fe:c1:d2:eb:b3:38:d6:f5:30:5e:
7a:7f:6c:eb:f2:cd:ea:1d:5d:80:d2:87:d7:b8:44:
56:e8:59:29:2b:6f:e1:2e:8c:cc:40:3c:93:89:85:
f6:f2:00:b4:4a:5c:8a:66:bf:3b:5b:61:df:29:f9:
93:e1:e2:37:4c:c6:8c:2b:83:bf:dc:bd:00:f6:3d:
84:33:d3:50:e2:43:f4:ff:8d:6b:2e:7e:1a:e5:00:
13:7a:f5:d6:8a:24:e0:a7:5a:52:e0:e8:71:c2:71:
14:5a:31:d7:b2:ef:4b:5a:18:21:cf:ee:fb:03:6a:
6d:86:70:51:f9:fb:f1:2d:fd:97:c0:10:84:53:fc:
c8:5b:0f:b5:ca:b0:00:6f:d5:19:44:6b:7f:9e:52:
1f:9b:14:f0:21:99:54:7d:4e:34:37:e1:cd:b4:67:
f7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:96:19:8B:2F:44:0E:22:E4:78:12:1F:81:A3:89:D3:99:C5:1F:AE
X509v3 Authority Key Identifier:
keyid:66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/lJYZiy9EDiLkeBIfgaOJ05nFH64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/ZuksNB52lEP94dJ1ZgRLS2UVkGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:da07::/32
Signature Algorithm: sha256WithRSAEncryption
84:16:9c:fa:c0:17:b5:da:9d:b8:7b:85:c8:96:28:ff:87:c1:
25:10:1c:03:05:f9:78:ec:1f:f4:cb:f1:f2:e4:98:f4:ed:b5:
03:05:e8:5e:6a:f0:e4:45:9e:d6:9e:3d:13:e3:75:f0:d9:c4:
37:35:97:1e:e3:9a:9b:2e:7c:0d:3a:a6:b5:ea:2b:28:a7:f3:
9b:cc:38:de:fd:ab:45:ce:be:70:ff:79:e8:9b:5e:cd:41:57:
ba:6d:5a:63:a4:77:6b:3c:60:0a:c5:a1:1c:11:04:30:53:6e:
ca:16:e0:c0:f1:f4:e1:e4:ed:bc:d5:97:6c:05:73:d2:3c:bf:
0d:e3:9f:66:40:31:64:d7:98:13:d8:57:87:3d:e4:c8:d3:2b:
e5:2c:41:81:71:e1:75:5e:2d:02:53:85:f3:3d:a7:8d:dc:1a:
06:e7:56:63:ab:08:09:5a:f1:96:33:4f:2e:02:d8:bf:37:40:
39:c2:dd:d3:89:41:94:20:5c:a6:e7:e2:64:ca:46:ff:1b:ca:
47:4e:ac:87:23:65:a2:61:21:43:bf:40:f2:4b:7a:c6:ef:b0:
5c:df:4b:e7:9c:fc:ca:b8:65:3f:7b:f7:7b:9b:61:1b:2d:9b:
04:16:1a:c0:84:cc:61:68:af:ed:34:70:d2:75:0f:61:ae:67:
a4:47:66:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:17 2024 by rpki-client on console-ams.rpki-client.org