Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/za65-DruQ5PS8JvpIZPYJ-kyQMg.roa
File: za65-DruQ5PS8JvpIZPYJ-kyQMg.roa (raw, json)
Hash identifier: 0UEdrTW6KGLpbpQ4R3SMtDb8U9l/S8MaX17cGgu2lKc=
Subject key identifier: CD:AE:B9:F8:3A:EE:43:93:D2:F0:9B:E9:21:93:D8:27:E9:32:40:C8
Certificate issuer: /CN=9c28a6ed0f5cfce772d5ce5b03bb42932c8a64d0
Certificate serial: 0189266CC83C683329E18F20B872706FC4E6
Authority key identifier: 9C:28:A6:ED:0F:5C:FC:E7:72:D5:CE:5B:03:BB:42:93:2C:8A:64:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nCim7Q9c_Ody1c5bA7tCkyyKZNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/za65-DruQ5PS8JvpIZPYJ-kyQMg.roa
Signing time: Wed 05 Jul 2023 14:20:10 +0000
ROA not before: Wed 05 Jul 2023 14:20:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206075
IP address blocks: 2a07:e041::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 28 Jul 2023 08:42:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:26:6c:c8:3c:68:33:29:e1:8f:20:b8:72:70:6f:c4:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c28a6ed0f5cfce772d5ce5b03bb42932c8a64d0
Validity
Not Before: Jul 5 14:20:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdaeb9f83aee4393d2f09be92193d827e93240c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:51:b2:66:fe:87:4e:94:99:22:6d:08:7a:f0:
42:d2:11:3d:3a:1a:df:17:3a:d4:86:54:d5:28:27:
45:34:4a:80:d5:f6:40:80:97:ee:c0:62:8a:23:05:
a9:60:15:81:56:d5:fd:68:79:55:21:f8:af:95:74:
f1:13:aa:08:eb:d3:21:ea:22:6b:09:b6:31:8e:11:
e6:8a:63:7f:ce:15:2d:4f:7e:de:c2:82:d7:58:4e:
d4:7b:ed:d4:35:b1:64:34:ee:44:b3:95:8f:01:66:
90:7b:49:f8:6c:ff:a8:1f:52:7e:02:e9:79:02:12:
81:91:d7:96:13:fc:e9:50:fd:3a:f6:ad:cc:13:c9:
98:6d:d4:dc:5b:27:14:7c:b6:eb:85:17:f5:f8:4b:
ac:2a:ae:d3:1f:68:5e:58:13:86:00:c7:0c:36:85:
b5:ae:06:d3:47:0f:6c:5d:2e:c6:15:99:fc:86:d9:
e0:f0:8e:64:5f:92:9b:fe:5a:58:5d:00:b3:f2:9f:
2a:4c:15:62:44:78:32:ec:1c:53:62:00:a1:b8:35:
e8:a9:f7:4c:7a:07:13:f1:7c:7e:71:6c:55:46:94:
c9:69:f4:10:df:e7:f4:66:90:2c:5d:e1:7d:92:ea:
c0:4b:66:e7:a1:12:b1:35:f7:71:c0:88:93:00:e6:
68:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:AE:B9:F8:3A:EE:43:93:D2:F0:9B:E9:21:93:D8:27:E9:32:40:C8
X509v3 Authority Key Identifier:
keyid:9C:28:A6:ED:0F:5C:FC:E7:72:D5:CE:5B:03:BB:42:93:2C:8A:64:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nCim7Q9c_Ody1c5bA7tCkyyKZNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/za65-DruQ5PS8JvpIZPYJ-kyQMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/nCim7Q9c_Ody1c5bA7tCkyyKZNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e041::/32
Signature Algorithm: sha256WithRSAEncryption
76:88:fa:be:a7:b8:f3:c7:a3:83:d0:66:ad:ac:36:ed:1f:8a:
2d:af:fe:41:b1:ec:23:90:46:70:29:94:5f:b2:72:78:0c:73:
59:b1:92:3f:3d:b6:05:e5:0b:cb:51:0e:1b:ea:35:d8:e1:db:
d7:8a:61:fc:be:ed:c3:49:2a:bf:e6:ae:71:62:77:30:3a:92:
dd:74:44:4d:2e:1a:50:b2:ab:ae:d7:66:e1:83:73:6c:29:4e:
9f:e8:61:9e:76:06:04:be:f9:8b:be:cc:bb:13:b4:b9:96:84:
27:e7:de:45:ad:34:db:2d:77:1a:99:62:ee:e8:ec:eb:64:ce:
3b:ba:db:a0:79:bb:be:f5:1d:ed:b8:27:14:b7:21:f0:27:64:
bc:81:b3:64:b7:aa:48:14:59:01:0e:b9:69:e4:f7:8c:c0:a2:
bf:01:1e:e9:d6:19:67:c0:3a:3c:ae:62:3b:ed:46:71:ae:79:
6b:11:da:91:2d:1b:37:43:11:82:03:45:79:9d:47:b9:86:7c:
16:4d:f3:1a:cf:5e:64:a5:a9:ba:0d:41:b4:7d:3a:8c:c2:38:
f4:2f:70:70:60:29:02:1f:da:13:e2:dc:67:08:13:ea:62:f6:
9f:16:a1:9b:c5:33:92:0e:b6:10:70:70:08:68:24:2f:5f:9a:
2d:c5:2e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:33 2024 by rpki-client on console-fra.rpki-client.org