Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/wzcz-yn8_5vZlglVyRxYd_8IAcQ.roa
File: wzcz-yn8_5vZlglVyRxYd_8IAcQ.roa (raw, json)
Hash identifier: RNb/BXUYlh0SOXKbs25zHXiUtRAUHqF66G77s9X3zPE=
Subject key identifier: C3:37:33:FB:29:FC:FF:9B:D9:96:09:55:C9:1C:58:77:FF:08:01:C4
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96A7BB4A7E807E8B9209E05B044B8B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/wzcz-yn8_5vZlglVyRxYd_8IAcQ.roa
Signing time: Tue 06 Feb 2024 18:03:16 +0000
ROA not before: Tue 06 Feb 2024 18:03:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44817
IP address blocks: 2a0f:b241:63::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:a7:bb:4a:7e:80:7e:8b:92:09:e0:5b:04:4b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c33733fb29fcff9bd9960955c91c5877ff0801c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0e:46:dd:b7:c9:bd:01:f2:2e:c5:1f:c9:98:
cd:e6:34:b7:e0:64:f4:09:f3:ad:19:8e:90:81:da:
4c:35:9c:5e:d0:02:41:35:01:a1:d3:56:b2:7c:b1:
eb:0f:63:29:f4:39:f3:23:7d:ad:aa:17:79:ea:25:
1b:86:7f:11:9f:5d:15:25:e8:b6:86:f3:65:47:e5:
46:14:b6:67:cf:22:07:6f:cf:cd:3a:c1:6f:68:89:
a2:a1:08:82:be:a4:68:ac:2f:32:a4:63:40:e7:b9:
1a:fe:eb:17:87:1f:3f:51:fe:29:58:cc:2a:b6:2d:
6f:42:d2:33:93:1e:af:51:42:b2:e1:74:97:44:5f:
81:83:a5:69:cd:86:a4:48:07:24:5e:c1:36:6a:41:
54:66:7b:27:ba:a2:2a:a5:49:1c:27:21:59:9f:86:
31:1c:0a:d7:25:c2:84:5d:5c:a1:a2:f2:9c:a1:85:
a9:53:08:2a:3f:0c:4c:2d:a7:93:43:e1:66:86:61:
af:a8:0a:52:b5:51:b4:6c:b9:f4:82:99:7f:71:ad:
46:13:9f:f9:12:99:41:dd:dd:10:9d:fd:b2:0c:c2:
09:fc:2a:5a:80:71:3c:f0:57:99:e5:30:57:84:97:
e4:76:22:44:46:c2:0e:c6:4b:10:dc:cb:0f:97:a4:
a6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:37:33:FB:29:FC:FF:9B:D9:96:09:55:C9:1C:58:77:FF:08:01:C4
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/wzcz-yn8_5vZlglVyRxYd_8IAcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:63::/48
Signature Algorithm: sha256WithRSAEncryption
2e:07:cc:6a:46:7b:b1:ae:b0:b4:04:c4:73:0f:79:64:c1:06:
fd:98:66:ed:e6:0c:8c:70:43:fb:16:1c:4d:46:a2:3b:5b:0d:
98:94:35:2c:45:56:af:30:bf:4f:27:07:ca:27:8d:16:99:d2:
30:6a:31:48:07:df:7a:65:96:e8:1d:5e:21:22:65:3e:6a:dd:
56:4e:b4:0e:83:4d:a5:ef:c0:8c:88:6a:ee:d6:37:85:c5:63:
01:0d:92:44:92:60:86:6e:9e:3d:8e:0a:4a:94:d2:02:9f:10:
ab:b8:6f:79:b2:fe:94:d0:34:6d:5d:d5:47:7e:ee:12:62:fd:
ac:19:13:e0:fd:ad:2d:ba:2b:19:2a:8c:21:03:0d:1b:4c:ae:
9c:f2:6c:0e:13:53:ec:e2:2b:c4:3e:27:e9:71:e6:82:a9:e5:
00:54:69:53:c6:55:d7:ec:73:22:2f:29:20:ad:22:c3:e0:8d:
bc:50:3c:cc:0e:bb:81:fe:cd:5a:38:02:6d:88:5d:ae:58:ad:
7c:13:f8:c0:5a:b0:02:b4:ca:4d:80:26:e7:c2:08:e1:df:99:
c5:c8:ea:d1:f9:d2:e3:ae:b9:0d:a3:59:85:f7:f6:aa:a0:1e:
23:93:f6:c7:3f:6a:28:d6:e8:29:e1:6f:13:5b:ba:93:54:54:
3c:37:0e:47
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/lqe7Sn6AfouSCeBbBEuLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgwMzE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzM3MzNmYjI5ZmNmZjliZDk5NjA5NTVjOTFjNTg3N2ZmMDgwMWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQ5G3bfJvQHyLsUfyZjN5jS34GT0
CfOtGY6QgdpMNZxe0AJBNQGh01ayfLHrD2Mp9DnzI32tqhd56iUbhn8Rn10VJei2
hvNlR+VGFLZnzyIHb8/NOsFvaImioQiCvqRorC8ypGNA57ka/usXhx8/Uf4pWMwq
ti1vQtIzkx6vUUKy4XSXRF+Bg6VpzYakSAckXsE2akFUZnsnuqIqpUkcJyFZn4Yx
HArXJcKEXVyhovKcoYWpUwgqPwxMLaeTQ+FmhmGvqApStVG0bLn0gpl/ca1GE5/5
EplB3d0Qnf2yDMIJ/CpagHE88FeZ5TBXhJfkdiJERsIOxksQ3MsPl6SmYQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMM3M/sp/P+b2ZYJVckcWHf/CAHEMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvd3pjei15bjhfNXZabGdsVnlSeFlkXzhJQWNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQBj
MA0GCSqGSIb3DQEBCwUAA4IBAQAuB8xqRnuxrrC0BMRzD3lkwQb9mGbt5gyMcEP7
FhxNRqI7Ww2YlDUsRVavML9PJwfKJ40WmdIwajFIB996ZZboHV4hImU+at1WTrQO
g02l78CMiGru1jeFxWMBDZJEkmCGbp49jgpKlNICnxCruG95sv6U0DRtXdVHfu4S
Yv2sGRPg/a0tuisZKowhAw0bTK6c8mwOE1Ps4ivEPifpceaCqeUAVGlTxlXX7HMi
LykgrSLD4I28UDzMDruB/s1aOAJtiF2uWK18E/jAWrACtMpNgCbnwgjh35nFyOrR
+dLjrrkNo1mF9/aqoB4jk/bHP2oo1ugp4W8TW7qTVFQ8Nw5H
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org