Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Zv0IXwQwPfv_OYrKtsygLws62zU.roa
File: Zv0IXwQwPfv_OYrKtsygLws62zU.roa (raw, json)
Hash identifier: xWVuOMuaFDHRrCNfSbyNQ/CE02wwr6bIknPeCe8TR2A=
Subject key identifier: 66:FD:08:5F:04:30:3D:FB:FF:39:8A:CA:B6:CC:A0:2F:0B:3A:DB:35
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E6B342BBEE61A611E63AF0B7C2714
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Zv0IXwQwPfv_OYrKtsygLws62zU.roa
Signing time: Mon 02 Jan 2023 06:14:57 +0000
ROA not before: Mon 02 Jan 2023 06:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209606
IP address blocks: 2a0c:b641:320::/44 maxlen: 48
2a0c:b641:200::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:6b:34:2b:be:e6:1a:61:1e:63:af:0b:7c:27:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66fd085f04303dfbff398acab6cca02f0b3adb35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:49:02:1e:68:b7:f4:c7:6d:7e:67:15:f6:16:
e3:f4:3c:9a:a0:2d:49:20:8a:5f:5a:81:79:3f:4d:
ec:bc:ec:4b:55:34:d4:92:1d:ca:7b:da:f9:d9:d2:
d9:2a:3f:ac:65:d6:d7:e8:b3:61:55:da:e1:0f:b1:
03:25:e2:77:c8:e8:a3:29:08:94:28:2b:fa:e9:f6:
e2:b9:78:5f:ce:0f:1a:8e:67:04:ea:a7:5e:d9:1f:
6c:de:54:76:a4:33:40:db:2a:6b:b1:d9:f5:85:b3:
dd:64:a9:8b:14:cf:4b:26:bc:60:c1:6d:ce:b3:31:
69:e1:71:4a:77:21:d2:fb:e9:1f:b4:24:67:6e:86:
5b:a4:07:e5:75:4d:66:ff:e5:b7:c3:a3:74:3e:12:
2f:97:6c:f7:85:f0:52:bc:8b:e1:7b:76:60:67:d4:
8d:12:db:06:d8:f1:53:6f:86:77:c7:e8:b1:7a:1f:
67:e3:01:49:ab:02:74:40:4b:68:08:b4:22:d5:02:
95:1b:1f:d1:7e:23:e7:90:8e:c2:c9:19:18:6e:41:
b2:a2:17:eb:c1:19:92:54:dc:f8:f7:f2:00:60:67:
5c:02:cd:92:ea:e6:9c:cc:cb:ec:09:0e:af:a5:d0:
f6:c7:fe:29:88:43:88:29:2c:33:12:78:95:c3:a3:
39:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:FD:08:5F:04:30:3D:FB:FF:39:8A:CA:B6:CC:A0:2F:0B:3A:DB:35
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Zv0IXwQwPfv_OYrKtsygLws62zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:200::/44
2a0c:b641:320::/44
Signature Algorithm: sha256WithRSAEncryption
01:65:c1:8c:de:ed:6a:d7:0b:05:dc:fe:85:6f:52:22:9e:08:
01:e0:62:58:af:46:59:e7:24:8b:df:f2:31:61:75:60:0e:f3:
bf:ab:52:e8:a8:58:68:81:1c:a2:ec:a8:8b:59:50:d1:22:e1:
ac:24:55:1e:a9:3a:06:dd:1b:77:f2:20:c7:4c:56:db:67:51:
42:5d:bd:9a:db:ed:4d:8c:ef:1c:23:b4:26:ec:6e:96:93:1f:
d6:40:65:f2:4e:98:15:df:13:8c:4b:47:08:b8:19:59:86:ef:
19:ec:17:07:7d:11:f0:d4:d6:61:1c:e6:f7:a3:29:25:d6:ce:
22:6d:aa:32:75:5b:b6:a2:ca:94:e6:d3:2e:ff:a4:3e:2d:b5:
23:94:bb:23:51:ec:63:39:63:2d:35:4f:5e:96:56:97:9c:02:
f2:5f:45:00:64:2b:30:57:5c:07:30:50:de:1d:03:f5:d3:d4:
d0:77:dc:ab:c7:d5:7c:92:50:29:d3:57:1b:21:a6:ee:ce:27:
45:21:af:f5:62:fe:44:c3:02:ac:d7:1e:8a:6c:3e:c6:6b:db:
78:51:ef:70:0d:08:5e:26:cc:11:99:aa:5f:89:ba:43:a1:ba:
5b:e3:f1:a0:8f:84:d4:9c:d4:6c:da:6e:0a:68:73:71:3b:47:
89:23:f2:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org