Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/ZI9SBiz-8eWYpljdq6SGTt2uQNg.roa
File: ZI9SBiz-8eWYpljdq6SGTt2uQNg.roa (raw, json)
Hash identifier: NHrHCbEgjbghvBOzwspuH6L14NvGLdcUhtI5S4x0p3I=
Subject key identifier: 64:8F:52:06:2C:FE:F1:E5:98:A6:58:DD:AB:A4:86:4E:DD:AE:40:D8
Certificate issuer: /CN=644f033f782eaf32ab09088775d64ac4b94b5b11
Certificate serial: 0186E578D844E2AE6AC42DFE42CCAF0A21B4
Authority key identifier: 64:4F:03:3F:78:2E:AF:32:AB:09:08:87:75:D6:4A:C4:B9:4B:5B:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZE8DP3gurzKrCQiHddZKxLlLWxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/ZI9SBiz-8eWYpljdq6SGTt2uQNg.roa
Signing time: Wed 15 Mar 2023 13:32:27 +0000
ROA not before: Wed 15 Mar 2023 13:32:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58192
IP address blocks: 2a05:2580::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e5:78:d8:44:e2:ae:6a:c4:2d:fe:42:cc:af:0a:21:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644f033f782eaf32ab09088775d64ac4b94b5b11
Validity
Not Before: Mar 15 13:32:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=648f52062cfef1e598a658ddaba4864eddae40d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f7:ea:20:88:11:83:38:33:87:5b:97:d2:47:
ae:9a:45:83:78:ea:94:b6:71:f9:5e:14:3d:8a:49:
03:b1:ef:30:ba:fa:2b:00:2a:79:f9:4e:2a:ff:bf:
22:36:eb:a0:fc:a7:3f:f0:aa:54:93:7c:54:09:9c:
c2:e9:7e:02:bb:a6:95:20:07:4a:d8:c8:aa:61:c1:
43:c5:b8:63:c9:0f:ae:28:b6:63:06:6d:14:80:17:
b0:d1:21:f0:ef:c4:34:30:c2:2d:ff:c6:87:04:5d:
f9:a3:b2:ec:65:f4:1a:c9:67:2d:a7:86:3d:34:77:
77:d2:43:e9:87:06:2f:23:c0:5a:f0:1e:8b:36:2a:
54:cd:a1:50:bf:a7:36:75:4d:9d:2e:6a:c3:0f:3c:
aa:3e:f7:5d:c8:68:43:79:68:e1:19:30:01:75:59:
f9:23:3d:68:e4:20:3d:6b:90:68:dc:bd:2a:18:60:
b8:00:dd:8b:3a:cf:2c:2d:26:b8:6a:18:5c:c0:b8:
9f:4d:67:cc:c4:1d:c0:00:47:1b:1f:88:06:e3:00:
d0:9c:5e:c3:83:a1:39:44:cd:59:b6:6b:8b:83:f6:
52:0a:93:82:8a:c2:13:f8:33:6a:2d:17:6c:53:3a:
84:1b:64:2d:70:25:dc:ed:ec:68:f9:03:48:3f:10:
6d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:8F:52:06:2C:FE:F1:E5:98:A6:58:DD:AB:A4:86:4E:DD:AE:40:D8
X509v3 Authority Key Identifier:
keyid:64:4F:03:3F:78:2E:AF:32:AB:09:08:87:75:D6:4A:C4:B9:4B:5B:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZE8DP3gurzKrCQiHddZKxLlLWxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/ZI9SBiz-8eWYpljdq6SGTt2uQNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/ZE8DP3gurzKrCQiHddZKxLlLWxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:2580::/30
Signature Algorithm: sha256WithRSAEncryption
98:cb:a4:87:15:1d:c8:6d:54:e9:fa:18:e8:ae:be:28:48:42:
65:df:41:68:33:4c:b6:1d:15:50:45:7e:e9:1b:8a:92:91:28:
10:8e:20:d2:28:b5:58:9c:ec:96:34:55:77:6c:90:e6:3b:87:
94:6b:bb:2b:82:e1:30:94:1d:a7:9a:9e:e7:b5:8e:fe:cc:75:
ca:9f:57:11:2d:00:91:6c:55:ba:9f:f6:ed:9e:05:54:3e:62:
d8:3c:b9:ae:76:b2:71:a9:f3:87:94:d5:4c:8e:2f:46:b4:9d:
6e:9d:a2:cf:46:bc:d5:64:95:49:e1:04:99:fb:6d:0d:1c:87:
6c:d5:ca:a5:74:27:f9:29:40:58:aa:a9:1c:77:eb:75:28:02:
64:3a:d5:5b:be:ec:98:92:2d:68:9d:8c:ff:f9:de:88:7a:bb:
7f:78:98:72:d9:e8:ec:af:fe:b5:51:9f:88:c0:ec:e9:ed:df:
29:ec:13:93:40:c5:8b:83:73:8a:34:ad:7e:e0:4d:51:25:6f:
4d:99:3d:b8:4c:d6:82:c8:a4:80:fd:f2:ea:f4:fd:24:d9:b5:
f4:1b:14:71:11:7d:23:50:95:77:ba:c5:6a:ed:9b:cd:1b:2e:
59:d0:4a:54:24:60:ff:35:fb:3c:7c:cb:6d:cb:36:51:57:d3:
27:e6:d3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:57 2024 by rpki-client on console-ams.rpki-client.org