Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/z1bzFGjHnd8CulrekRl_d3lUQFo.roa
File: z1bzFGjHnd8CulrekRl_d3lUQFo.roa (raw, json)
Hash identifier: NFhosoF+8Dg+9saJF5qARHFo6L0B5U7njpjQwVQ/fVQ=
Subject key identifier: CF:56:F3:14:68:C7:9D:DF:02:BA:5A:DE:91:19:7F:77:79:54:40:5A
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0186C60B26C4C13D9ACCA48C27070536BB37
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/z1bzFGjHnd8CulrekRl_d3lUQFo.roa
Signing time: Thu 09 Mar 2023 11:04:24 +0000
ROA not before: Thu 09 Mar 2023 11:04:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210645
IP address blocks: 2a0a:280:1900::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c6:0b:26:c4:c1:3d:9a:cc:a4:8c:27:07:05:36:bb:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Mar 9 11:04:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf56f31468c79ddf02ba5ade91197f777954405a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:36:a3:ad:05:4f:c2:bc:a2:a2:e4:ac:69:3a:
c7:55:64:2c:21:9a:c8:c5:74:cd:d0:bb:04:fc:2b:
66:ca:fb:8d:29:73:22:97:a0:79:5b:4a:ff:ab:bd:
d8:94:84:a9:c7:22:21:fb:52:42:9a:81:75:ee:b8:
6a:88:fc:3b:d3:87:bf:fe:db:98:86:a1:ce:ce:c6:
dd:30:d6:64:09:e2:3d:2f:76:a3:22:3b:8c:ef:26:
22:24:d8:bc:2f:13:cc:5a:08:95:88:68:f3:48:a6:
a1:6a:6b:cd:83:40:ae:49:7e:79:46:85:d6:15:5a:
fc:d5:21:0c:3a:46:b8:f5:37:15:15:ac:59:81:82:
44:4e:e1:79:31:98:39:d7:c3:ba:62:f1:5c:cc:16:
9d:a3:ab:e4:9d:96:fc:7c:04:74:5d:a6:67:f4:94:
96:22:0f:d5:b3:d1:31:47:24:da:72:1b:10:42:a6:
b9:00:cb:63:7e:1c:bb:c6:d8:54:0d:e2:51:dd:0f:
9d:02:08:a7:83:83:0e:10:48:12:bb:af:06:6a:21:
9d:6a:98:7b:3a:98:0f:31:cd:51:fe:81:51:f6:8f:
71:d8:d4:49:e4:ad:16:91:11:c8:d2:d1:ad:bb:b8:
19:bf:0e:9e:15:84:81:bd:dc:b9:88:da:61:4b:d7:
1d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:56:F3:14:68:C7:9D:DF:02:BA:5A:DE:91:19:7F:77:79:54:40:5A
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/z1bzFGjHnd8CulrekRl_d3lUQFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1900::/40
Signature Algorithm: sha256WithRSAEncryption
9c:24:e0:e7:ee:4a:7a:e0:cd:b0:53:98:9d:ea:d2:69:95:5c:
b8:16:be:d8:03:c3:41:4d:28:76:5a:de:d7:8d:4b:cb:4a:43:
b9:a6:99:34:80:5c:92:42:e7:77:a7:f4:62:c9:f3:75:a4:b7:
ac:9b:17:bb:33:03:f5:7b:90:a4:31:7a:19:cb:83:6f:70:75:
70:32:83:d0:e7:10:5d:3d:ab:f4:15:8a:b0:cb:16:38:b0:12:
fb:80:9d:26:00:80:35:54:53:54:1d:e3:60:85:d1:67:0e:d8:
3e:0b:50:0f:8e:c0:ad:fd:8b:c6:32:15:12:68:76:52:73:b4:
d7:fb:f0:82:3e:fa:88:c3:3d:fb:2d:2e:0b:45:14:b1:d0:0a:
ca:d1:68:c1:e9:f8:07:80:ed:ea:7c:63:8a:09:e9:e2:ac:ef:
94:2e:8f:ac:99:82:95:5d:23:ac:b8:3c:a4:ff:4f:c3:30:16:
ba:30:b2:d2:7c:96:9c:ae:af:65:c6:ca:b7:cf:ac:63:57:6d:
6f:58:5e:ac:08:49:79:30:f8:7a:e3:78:90:4d:9d:16:f9:7c:
dc:b0:8a:0c:89:3a:06:75:50:0a:b4:d4:d7:bd:99:13:b0:5e:
a1:b4:87:09:9a:c5:7f:39:08:2c:a4:80:a5:74:f1:6c:92:b5:
62:1c:de:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org