Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/SNmaBxJNabgDG_zwpzvivZXKolU.roa
File: SNmaBxJNabgDG_zwpzvivZXKolU.roa (raw, json)
Hash identifier: 4zFug/i3GxeI8pRjzxkUAh0l5bmwmRqV6s2OW50pCgM=
Subject key identifier: 48:D9:9A:07:12:4D:69:B8:03:1B:FC:F0:A7:3B:E2:BD:95:CA:A2:55
Certificate issuer: /CN=81b65a230d6927dbac201097f949e2eaa2731220
Certificate serial: 01856FB125B1D828D5504146C08E85A783CA
Authority key identifier: 81:B6:5A:23:0D:69:27:DB:AC:20:10:97:F9:49:E2:EA:A2:73:12:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gbZaIw1pJ9usIBCX-Uni6qJzEiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/SNmaBxJNabgDG_zwpzvivZXKolU.roa
Signing time: Sun 01 Jan 2023 23:35:58 +0000
ROA not before: Sun 01 Jan 2023 23:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203218
IP address blocks: 2001:67c:2d80::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:25:b1:d8:28:d5:50:41:46:c0:8e:85:a7:83:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81b65a230d6927dbac201097f949e2eaa2731220
Validity
Not Before: Jan 1 23:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48d99a07124d69b8031bfcf0a73be2bd95caa255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:57:18:12:21:a8:19:05:f0:29:61:8b:2d:f1:
da:a9:92:f3:29:cd:26:52:51:fc:1c:89:66:77:8a:
7a:56:ed:4e:c0:b4:ee:4b:50:f8:81:78:62:e6:5a:
d2:12:87:c1:7b:f3:c8:a8:57:17:c6:22:9f:0f:73:
65:dc:82:8a:ce:b0:10:7c:d5:ff:65:54:fc:0e:97:
19:8d:1c:f8:18:2d:a2:e9:bf:ae:e8:3a:e0:67:86:
46:b1:30:80:89:8a:ce:c9:8f:ea:bb:41:65:16:3e:
d6:8c:dc:0e:12:dc:38:d6:b6:5b:98:4f:31:2c:7d:
24:dd:e3:a8:fe:d8:02:c5:f5:cc:1f:0f:b0:c1:4e:
ce:9a:af:e5:02:43:76:d4:ae:60:06:e8:f4:67:29:
c6:7d:76:42:2d:82:32:69:43:03:22:e8:a1:2a:1c:
2b:28:10:d9:29:32:0c:ad:b1:d7:c5:06:62:df:f8:
da:53:d9:55:60:d4:5d:d9:23:fc:ec:9d:d0:51:ea:
a8:da:ce:41:6f:be:f1:1b:70:71:a8:db:21:c8:fb:
fc:c8:ac:19:87:47:e1:d7:22:70:77:76:db:d9:91:
d2:db:6d:f6:40:eb:53:46:54:6a:9d:15:0a:75:85:
01:7c:b5:87:2f:ec:01:c8:fb:e0:04:6a:be:3b:a5:
e8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D9:9A:07:12:4D:69:B8:03:1B:FC:F0:A7:3B:E2:BD:95:CA:A2:55
X509v3 Authority Key Identifier:
keyid:81:B6:5A:23:0D:69:27:DB:AC:20:10:97:F9:49:E2:EA:A2:73:12:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbZaIw1pJ9usIBCX-Uni6qJzEiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/SNmaBxJNabgDG_zwpzvivZXKolU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/gbZaIw1pJ9usIBCX-Uni6qJzEiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d80::/48
Signature Algorithm: sha256WithRSAEncryption
34:f3:a2:34:2c:b1:a3:dc:76:3a:d7:cc:a6:97:8b:cb:7e:b1:
22:22:57:41:32:4f:19:a4:db:c7:84:d5:7a:d6:39:13:f8:96:
4f:3a:ed:50:7d:5c:44:95:10:d2:11:60:79:d7:e9:d6:e0:39:
a7:48:29:2c:38:f2:53:e8:94:41:f0:b1:bd:0d:72:e6:e5:f0:
98:4b:da:ec:c4:92:46:27:bf:81:e6:32:ab:cd:f4:e5:37:a7:
54:4f:a4:9c:4b:37:be:11:8a:9f:9a:20:8e:23:15:6f:95:4f:
da:0b:4e:e2:8c:cd:0a:8d:65:ed:a6:25:25:ab:35:90:99:27:
bc:ab:9c:a6:1b:b7:8e:37:a0:81:a7:f1:32:92:17:57:41:c8:
27:ca:f1:98:61:85:65:62:e6:d5:40:40:ea:ce:8d:02:fd:7c:
2d:de:65:4e:7d:9c:a8:88:d0:ac:1f:8a:d0:74:3b:21:29:3d:
04:26:0d:aa:e1:2e:96:bc:af:11:a8:e6:f9:03:fc:92:51:31:
64:4d:b4:00:e0:8b:de:27:8e:83:9b:c2:45:cc:b3:76:13:4c:
4c:1d:cb:05:27:76:11:b4:35:12:eb:08:dd:7c:21:48:94:3b:
74:c5:5c:93:0b:49:47:6a:c8:43:ac:0f:81:3a:f8:db:ba:06:
0d:da:c8:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:13 2024 by rpki-client on console-ams.rpki-client.org