Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/Lzx-ZjapfpQ9B51Rr4rVkiOvkaw.roa
File: Lzx-ZjapfpQ9B51Rr4rVkiOvkaw.roa (raw, json)
Hash identifier: 7ucbE9nLrw+8os8YXjBymcxm8bhmxmvLqwZ4tQwKR+c=
Subject key identifier: 2F:3C:7E:66:36:A9:7E:94:3D:07:9D:51:AF:8A:D5:92:23:AF:91:AC
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 01856F429C72B8BE79237A574F3260DAC35B
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/Lzx-ZjapfpQ9B51Rr4rVkiOvkaw.roa
Signing time: Sun 01 Jan 2023 21:35:14 +0000
ROA not before: Sun 01 Jan 2023 21:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202827
IP address blocks: 2a05:4140:1000::/36 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:9c:72:b8:be:79:23:7a:57:4f:32:60:da:c3:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Jan 1 21:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f3c7e6636a97e943d079d51af8ad59223af91ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:84:ed:7a:e8:85:81:e8:f9:24:a6:d4:fb:b4:
06:29:1a:4f:28:a9:44:82:f2:df:aa:ae:49:65:9e:
60:53:e5:d1:08:13:ed:0e:51:a5:2b:d7:d3:06:fb:
70:c5:77:52:63:ff:20:7c:00:06:b1:21:e7:94:3a:
d7:fb:a1:08:c8:e3:ee:de:bc:eb:d0:bf:3c:d0:bf:
54:0d:fc:e8:34:4b:d4:7c:5d:9d:34:1a:39:8e:1d:
c5:f3:fd:66:42:d5:b6:bb:8e:38:78:3a:68:cb:e2:
9c:bc:01:9f:00:72:5e:f3:04:dc:9c:d7:12:cd:e5:
de:92:bf:e8:8d:76:3c:03:47:50:3d:63:60:11:96:
53:f3:78:9b:d9:9e:a4:91:71:bf:04:35:9a:6b:23:
d0:f2:76:27:7e:ca:c4:a9:05:d9:66:18:7a:c0:8e:
58:e7:ff:39:cd:cb:b4:dd:a8:e3:55:bb:1f:d9:73:
ed:1b:b4:c8:4d:cd:de:fd:2c:5d:a5:39:15:dc:4c:
27:3b:61:e3:78:ec:93:d6:f0:fa:e0:94:d2:e7:ce:
bc:d9:bb:75:a8:75:65:c8:15:08:2b:66:cb:89:26:
98:25:22:74:f4:04:b6:bc:17:ff:57:8d:63:36:ee:
87:e6:24:9f:1c:fb:80:db:92:32:41:9d:56:67:ec:
c5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:3C:7E:66:36:A9:7E:94:3D:07:9D:51:AF:8A:D5:92:23:AF:91:AC
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/Lzx-ZjapfpQ9B51Rr4rVkiOvkaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:1000::/36
Signature Algorithm: sha256WithRSAEncryption
21:37:00:e5:09:54:a2:ae:4e:70:f8:20:df:2b:d1:58:28:ea:
6b:58:b5:1f:87:8b:6f:09:19:7c:5f:17:81:27:73:68:c2:24:
45:b3:22:95:76:ee:c2:7c:ff:45:67:42:8a:72:60:3f:88:11:
2e:62:a8:73:d3:ee:81:a0:c3:74:0b:a0:c7:18:b2:ef:d5:a7:
9d:83:a9:26:48:9f:b1:82:88:73:cc:df:f6:26:76:f3:ae:fb:
1f:cb:5d:6e:8a:8a:92:cf:ce:b1:17:9e:29:8a:44:81:2f:04:
f7:14:75:e0:42:f3:b6:06:e1:0a:6c:67:65:80:90:1a:b4:ad:
b1:9e:33:d4:ca:d1:e7:e8:52:47:89:81:ec:52:33:6c:ea:7e:
8d:97:39:3a:53:d0:c1:b5:0a:71:6f:b0:31:78:49:c4:07:16:
a4:7b:8b:bf:0a:26:0d:e5:7e:47:2e:be:8b:88:5e:17:43:cc:
5a:8e:67:0e:42:4d:92:85:d6:66:53:12:53:24:19:91:24:a2:
30:b4:c4:60:c6:84:84:75:3c:22:1d:6c:62:f2:28:e8:6e:f2:
c5:3a:c6:26:59:81:95:b1:b4:a6:73:3e:f3:84:27:b0:fe:39:
df:7e:c9:89:5c:8c:6a:6d:05:32:70:a7:ff:03:a1:4a:77:a4:
4d:57:51:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:26 2024 by rpki-client on console-fra.rpki-client.org