Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/ZyVfW29MgZ-ZocFPfJLL0-9izm8.roa
File: ZyVfW29MgZ-ZocFPfJLL0-9izm8.roa (raw, json)
Hash identifier: deo3+K5+o4wpS0QFuocDPx6boWFKjfCz328lOE0FTVw=
Subject key identifier: 67:25:5F:5B:6F:4C:81:9F:99:A1:C1:4F:7C:92:CB:D3:EF:62:CE:6F
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 01899D24E032111A4DEB7D671F395A7B8F59
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/ZyVfW29MgZ-ZocFPfJLL0-9izm8.roa
Signing time: Fri 28 Jul 2023 15:36:26 +0000
ROA not before: Fri 28 Jul 2023 15:36:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202564
IP address blocks: 2a07:3d80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9d:24:e0:32:11:1a:4d:eb:7d:67:1f:39:5a:7b:8f:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jul 28 15:36:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67255f5b6f4c819f99a1c14f7c92cbd3ef62ce6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:4f:37:4a:d8:b6:f4:e6:fe:67:78:c3:37:b1:
39:4a:12:fd:1a:aa:6b:b8:96:51:0d:70:db:1c:75:
c7:5b:02:44:77:95:04:3e:8a:9b:90:e2:1a:36:3e:
e4:6a:10:d9:6e:b3:fe:15:c0:c5:4b:90:d1:48:a2:
bf:65:43:7a:3c:8e:2e:26:8f:2a:0d:4b:9c:64:9d:
87:88:66:80:9c:3f:30:c0:c9:5f:4f:b8:70:e1:90:
c8:8b:c6:f1:3c:f0:13:d4:4d:3f:59:d1:ce:68:e0:
d5:a9:6a:0b:39:cd:56:28:4a:39:57:69:17:f2:cf:
a1:b9:e1:2e:84:e4:b6:5c:0f:46:d0:3c:73:56:26:
3e:80:80:86:87:e7:ff:f0:56:77:3d:c9:1f:70:07:
f0:63:f7:53:56:ab:87:3e:cd:75:e5:bf:02:0f:55:
9b:f8:39:2d:69:71:24:b8:21:b3:b8:76:17:4b:7a:
ec:31:43:e1:59:06:2c:f1:e1:62:0a:e3:d2:9b:ea:
f5:03:a2:a8:7d:5b:cf:e3:3a:ae:71:7b:ba:00:c0:
cd:88:64:7a:a2:11:43:cb:87:3c:8c:a6:6e:fc:e7:
5d:89:b4:e2:60:6d:c7:11:2d:75:ca:d4:20:28:d3:
ae:90:05:c5:8f:18:3d:71:13:6b:f0:79:7a:31:9d:
82:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:25:5F:5B:6F:4C:81:9F:99:A1:C1:4F:7C:92:CB:D3:EF:62:CE:6F
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/ZyVfW29MgZ-ZocFPfJLL0-9izm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3d80::/29
Signature Algorithm: sha256WithRSAEncryption
19:5e:99:ea:50:91:89:d4:80:75:5d:65:ab:11:59:cf:fb:8e:
a8:31:38:17:70:56:47:96:6f:66:09:56:eb:85:61:e8:f2:9a:
ff:3d:61:a6:ac:e7:ab:2e:00:54:3c:74:25:99:ab:76:d4:81:
60:a9:cf:c9:b1:ec:01:08:df:af:a8:4b:8f:f3:c9:8b:ce:d3:
25:56:96:8a:b9:7b:05:86:a9:a3:d5:b2:82:ce:68:3c:30:70:
1d:f5:ab:52:d0:03:dc:8f:d7:ae:73:06:04:6e:32:99:81:9f:
98:ef:d5:6c:07:d0:26:e7:23:b9:5b:81:fc:40:60:30:f3:0c:
3b:cd:e5:31:18:fc:70:75:97:ae:3f:74:ff:97:ce:cc:16:db:
49:3f:da:4c:0d:d7:c0:2a:a2:78:11:78:d2:c1:e3:ce:4c:f0:
6a:75:5b:7a:72:ea:53:98:0b:7c:03:27:45:b3:f9:d4:20:c9:
a9:d1:11:c8:5f:4e:0f:29:7d:78:b0:6c:8c:28:e0:36:de:9c:
74:26:79:fb:57:c2:87:22:ed:0b:22:af:88:9a:c7:d8:aa:09:
e8:d0:28:41:6b:3c:1e:09:3a:cd:a3:33:86:f4:7e:b6:4c:c2:
1d:ba:71:5d:78:cd:f1:77:a8:ef:10:5e:55:8a:f2:fa:ed:da:
18:4b:93:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 1 12:37:27 2023 by rpki-client on console-ams.rpki-client.org