Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Z8z3Y8yQrX4hdeRVepJwJ7VbW68.roa
File: Z8z3Y8yQrX4hdeRVepJwJ7VbW68.roa (raw, json)
Hash identifier: +OsCSK7THcwgnosmktnzO0PeE5f3yVQGHhZklMmGMoM=
Subject key identifier: 67:CC:F7:63:CC:90:AD:7E:21:75:E4:55:7A:92:70:27:B5:5B:5B:AF
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E87E64FCF98FA58EFD915E966CAFB
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Z8z3Y8yQrX4hdeRVepJwJ7VbW68.roa
Signing time: Mon 02 Jan 2023 06:15:04 +0000
ROA not before: Mon 02 Jan 2023 06:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212201
IP address blocks: 2a0c:b641:c0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:87:e6:4f:cf:98:fa:58:ef:d9:15:e9:66:ca:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67ccf763cc90ad7e2175e4557a927027b55b5baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:19:94:ba:f9:32:21:92:94:61:60:5e:10:ee:
13:0c:3b:e0:ee:fa:c6:29:93:b9:5c:bb:fb:1f:2f:
61:54:77:5b:e3:f2:91:91:fe:0a:e7:de:2f:5c:00:
f6:72:71:1d:ed:aa:0b:f2:52:46:d4:ef:27:71:fa:
0d:05:b8:42:f5:e0:18:c7:dc:96:30:20:dc:ed:a6:
08:52:99:65:de:25:26:a8:b6:6c:1d:09:be:06:33:
cb:71:19:18:1e:2c:5a:8a:fe:37:cd:73:e6:0d:b4:
33:1d:6f:76:e9:f4:78:e3:b8:ed:cf:8b:6c:0a:f4:
79:9f:18:26:e5:4c:ee:20:94:2b:54:52:7d:7b:77:
fd:4e:41:cb:32:4b:93:16:59:e5:13:8b:15:d9:4a:
77:18:e1:7e:b0:ab:89:b5:5b:db:a6:65:3f:2d:26:
8f:ba:2c:17:d6:1c:c4:60:73:85:21:3f:01:d4:2f:
9f:08:b4:44:ba:29:b1:49:31:6e:75:75:a9:40:c1:
e3:4d:db:57:57:0c:f2:3e:a3:35:4c:b4:ad:ea:da:
c3:24:fb:f0:8c:df:7a:dc:4d:60:f5:d2:84:73:1e:
d5:89:5f:b9:fa:ba:b5:45:81:a3:27:05:b2:4f:48:
12:21:e4:75:32:22:37:56:8d:8d:36:d9:d8:ee:11:
5c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:CC:F7:63:CC:90:AD:7E:21:75:E4:55:7A:92:70:27:B5:5B:5B:AF
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Z8z3Y8yQrX4hdeRVepJwJ7VbW68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:c0::/44
Signature Algorithm: sha256WithRSAEncryption
7f:c8:07:33:7a:5a:a4:47:78:67:49:c8:64:f6:ee:3f:7e:45:
f8:c5:ef:21:cf:52:33:ac:29:9a:31:cf:6c:21:65:65:c9:35:
cc:1d:62:79:c4:ac:72:fd:1d:bc:b1:90:ff:b1:f7:b5:c0:36:
e8:02:42:f5:4c:12:70:9e:a1:7a:53:e5:8f:04:11:99:ae:96:
1f:3d:f9:39:ea:b5:b6:29:38:c9:03:54:c1:f1:c8:53:25:da:
29:ed:94:d4:f7:00:0a:76:d9:1d:78:94:eb:7f:e1:a4:fd:5a:
33:a5:79:4c:b7:80:33:6b:58:b9:3d:e4:50:1d:6d:91:e5:dc:
b3:fe:e9:67:e5:39:cf:73:da:02:5e:ed:eb:15:04:35:8b:d7:
a3:88:48:d2:b2:c7:cf:6a:b6:ec:cb:f3:6d:de:0a:17:c2:cd:
71:54:74:30:3d:28:74:5e:25:b8:a8:5b:88:c3:3f:ff:61:94:
07:c8:42:bb:4a:fc:37:02:52:bd:9d:a0:4a:31:91:65:5a:a1:
43:ce:f6:5c:5c:ca:bc:db:8f:1a:66:14:02:eb:86:12:d5:dd:
a5:41:22:7b:ea:94:af:5d:2f:38:17:38:5a:d5:1e:8a:3a:a2:
9c:4c:b1:35:1c:89:38:eb:d6:aa:5c:59:1a:03:61:26:59:9c:
43:82:42:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org