Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ZltMy-afdI7BmyiZ79mYCDi2JoM.roa
File: ZltMy-afdI7BmyiZ79mYCDi2JoM.roa (raw, json)
Hash identifier: aQbL/WaEW144ORbN9yrxzgT9dJoLGM7KWSOWJaKFQnk=
Subject key identifier: 66:5B:4C:CB:E6:9F:74:8E:C1:9B:28:99:EF:D9:98:08:38:B6:26:83
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01859FCD73D8FCA555ACC878934C3D36CD9C
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ZltMy-afdI7BmyiZ79mYCDi2JoM.roa
Signing time: Wed 11 Jan 2023 07:48:39 +0000
ROA not before: Wed 11 Jan 2023 07:48:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200240
IP address blocks: 2a0e:8f02:f052::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9f:cd:73:d8:fc:a5:55:ac:c8:78:93:4c:3d:36:cd:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 11 07:48:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=665b4ccbe69f748ec19b2899efd9980838b62683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4e:b0:cf:65:4e:44:f4:80:9a:ce:35:fa:0c:
83:f2:3b:74:d7:81:fc:70:90:de:61:89:8a:78:2c:
be:a8:f2:37:63:6f:3d:26:bc:bd:60:85:e5:77:41:
8e:b9:d1:ad:b1:71:51:f3:69:1b:34:22:fe:87:a2:
b7:9a:fb:b2:eb:c2:55:b6:dc:db:a8:0c:d4:f7:4b:
6f:91:37:e4:de:41:af:8f:2c:0e:e4:49:14:34:68:
07:48:79:7c:dd:b4:ab:75:33:50:2d:45:9e:48:49:
9a:bc:be:81:98:4f:dc:ca:b5:60:d2:5c:76:54:85:
5e:ab:cd:e6:6e:d7:35:56:4d:8f:b4:e3:43:5e:04:
14:6c:9a:3d:8a:6d:36:78:af:94:68:69:15:fd:7f:
59:3a:8a:88:00:fc:ec:d7:67:55:8b:16:46:34:35:
c8:df:1a:f0:19:bc:3f:87:c5:51:6e:5a:b3:92:46:
a2:b8:1d:5c:44:83:0f:2a:bb:db:9a:27:23:ad:65:
ab:f3:2b:b0:43:ee:61:40:a7:46:7a:56:cf:ad:d1:
10:cc:73:68:8f:a9:8f:2d:56:ac:36:82:ba:54:02:
bb:58:17:bf:0a:6e:c2:00:61:ec:e8:32:c4:51:f4:
95:5f:62:68:fd:2b:1b:ca:b7:6e:25:cc:81:54:87:
46:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5B:4C:CB:E6:9F:74:8E:C1:9B:28:99:EF:D9:98:08:38:B6:26:83
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ZltMy-afdI7BmyiZ79mYCDi2JoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f052::/48
Signature Algorithm: sha256WithRSAEncryption
4c:a1:af:43:90:73:44:ed:3d:80:a9:a8:72:89:01:a1:53:24:
95:81:28:20:d3:77:9d:80:d5:e5:bf:f1:da:39:20:94:3d:b0:
af:d7:e3:7a:2c:68:79:47:ff:b8:0a:e8:68:22:01:30:be:e3:
47:fa:c0:b8:39:6f:1e:b9:4d:74:f3:4c:eb:b7:1b:0b:52:71:
62:48:75:55:63:a4:27:d1:f1:3f:f5:74:e1:19:04:f9:af:f2:
5c:11:99:f5:97:27:c8:55:a1:12:a5:0f:b8:c0:d1:86:56:87:
44:64:7c:27:e8:03:c9:1f:cd:fc:a9:1c:78:85:9a:cd:3c:36:
d3:a6:e7:61:64:6c:5e:b8:1b:92:55:64:6d:ad:9d:78:4a:42:
bf:84:f0:58:d5:90:5b:6d:43:38:3b:c6:e2:5a:e4:cb:b8:d3:
7e:b9:2b:8b:5b:2e:4c:ab:bc:5a:3f:21:51:b3:89:15:4f:37:
56:93:dc:55:48:d1:8f:f6:28:70:a9:8c:13:91:03:2b:0e:23:
86:cf:b6:de:6e:37:59:76:c4:8c:3b:dd:17:66:f8:74:f9:a2:
71:21:68:9a:20:fa:37:c1:52:2f:7e:c6:48:1b:9a:6a:82:ff:
d0:af:20:59:4e:83:1f:4c:ac:af:a5:da:8a:c3:4a:c9:77:f6:
26:62:df:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org