Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/zuTSr9XnziFDeZLFNPnPvbHvllM.roa
File: zuTSr9XnziFDeZLFNPnPvbHvllM.roa (raw, json)
Hash identifier: 3xdMm2djQcGeouqw/r87aGQB4VZM6uBDzySGhQcO8qQ=
Subject key identifier: CE:E4:D2:AF:D5:E7:CE:21:43:79:92:C5:34:F9:CF:BD:B1:EF:96:53
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 01936D97E0CC3E6137BA5A4594821C0825E5
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/zuTSr9XnziFDeZLFNPnPvbHvllM.roa
Signing time: Wed 27 Nov 2024 12:28:10 +0000
ROA not before: Wed 27 Nov 2024 12:28:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30811
IP address blocks: 2a00:1c50:2003::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Nov 2024 15:32:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:97:e0:cc:3e:61:37:ba:5a:45:94:82:1c:08:25:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Nov 27 12:28:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cee4d2afd5e7ce21437992c534f9cfbdb1ef9653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:76:70:d6:53:bc:32:e4:fd:1b:41:29:98:67:
78:3a:74:56:93:78:8d:5c:be:4b:10:aa:d8:38:d2:
30:a2:7a:fe:7b:cf:d7:2b:a4:7b:e8:16:c2:b2:47:
2c:26:2a:d1:f6:21:90:33:6f:ef:4e:8d:25:d0:49:
99:a2:1d:4b:b3:84:2c:72:c3:1d:50:42:63:54:bb:
b1:7b:14:01:a2:33:cb:58:ce:37:12:73:b2:77:aa:
b0:a4:d7:d6:cb:f0:1c:34:a9:c3:67:87:8a:00:78:
72:9a:7f:a0:20:e9:60:ff:e7:c6:1f:97:f6:44:57:
88:e8:6a:10:85:07:a4:aa:53:fb:d5:6d:62:db:cb:
cf:52:f6:ae:d5:00:07:be:89:1d:be:10:f2:06:c1:
cf:49:64:08:cf:d7:f8:49:7f:91:c9:97:97:69:b1:
03:95:13:5a:22:75:0d:9d:42:95:ae:bb:79:6c:8a:
ce:64:d7:0e:3d:06:b0:97:91:2f:08:5f:d5:67:b8:
3f:ec:86:a0:a8:be:ef:de:a5:f7:6d:59:39:cc:bf:
18:2e:47:28:f3:f3:4f:56:49:7c:37:97:ac:ac:ba:
5f:15:b1:cb:5c:ad:fa:24:9b:d8:5e:98:74:d1:db:
ca:bc:52:1f:72:42:b9:22:30:73:0f:b7:88:24:1b:
3e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E4:D2:AF:D5:E7:CE:21:43:79:92:C5:34:F9:CF:BD:B1:EF:96:53
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/zuTSr9XnziFDeZLFNPnPvbHvllM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1c50:2003::/48
Signature Algorithm: sha256WithRSAEncryption
6c:3b:cd:92:e6:61:c1:53:7a:38:89:15:ea:31:ab:d2:b2:1f:
bf:92:86:17:5c:01:4e:06:91:4f:09:a7:0d:d1:95:bf:61:44:
9c:e7:71:6d:3e:97:7b:e0:16:ce:02:fa:c5:f5:59:0a:9e:f8:
94:2e:58:15:5b:71:0b:91:0d:80:8c:ee:bb:86:5d:24:d6:fb:
ea:d9:f2:69:ee:e3:8e:48:16:42:58:67:4c:05:95:f2:e5:d6:
37:c3:0e:8a:4c:25:f1:0d:16:58:25:cf:f7:54:76:1e:31:06:
0e:f1:da:5a:e5:f4:8c:3e:e0:ba:05:af:f9:69:90:04:2a:41:
d1:fe:e4:9d:ce:d4:02:5a:c7:91:1a:8c:1d:de:80:8d:ce:a0:
85:81:6b:02:dd:cb:02:cb:61:a7:c3:43:2f:6e:fd:ca:7f:0d:
68:53:f1:3b:74:5b:49:3e:c2:b6:3a:45:1e:47:e0:f4:1c:af:
b5:3d:76:a5:9e:57:b0:ab:5d:04:6e:15:b1:19:a9:c0:59:9f:
f2:cc:de:24:29:e2:74:77:0d:30:de:25:96:2b:51:ca:e0:b7:
ec:83:a1:ae:eb:bb:51:a1:cd:b5:76:0d:51:dd:42:1a:af:a4:
dd:21:f5:eb:66:5b:e5:e5:9a:3c:a7:ed:51:17:58:e4:73:35:
c3:45:9a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 20:01:28 2024 by rpki-client on console-ams.rpki-client.org