Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/z3_sAszqDhdILwKPYVsar7UZ-DI.roa
File: z3_sAszqDhdILwKPYVsar7UZ-DI.roa (raw, json)
Hash identifier: j0V/phkRtDrWw6hgZNMAoz288iRV7v+9jU4XqTZWcoM=
Subject key identifier: CF:7F:EC:02:CC:EA:0E:17:48:2F:02:8F:61:5B:1A:AF:B5:19:F8:32
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E89A4660DAFFA01DF8844B81F9C2F
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/z3_sAszqDhdILwKPYVsar7UZ-DI.roa
Signing time: Mon 02 Jan 2023 06:15:04 +0000
ROA not before: Mon 02 Jan 2023 06:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212510
IP address blocks: 2a0c:b641:2c0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:89:a4:66:0d:af:fa:01:df:88:44:b8:1f:9c:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf7fec02ccea0e17482f028f615b1aafb519f832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:38:70:15:d3:59:d1:f3:ef:ec:cd:28:94:49:
72:33:62:19:13:89:e3:b4:05:2e:8a:ba:29:d0:4e:
5d:fa:b1:c2:e3:bc:d9:8c:52:2e:9e:40:2f:72:97:
8c:76:27:1e:7a:d8:da:23:bf:80:53:1e:a8:dc:cd:
ee:27:8b:11:39:01:07:97:31:df:26:c0:a3:48:d6:
c0:33:d8:1e:57:ce:ef:23:b2:61:f8:c9:95:32:e6:
9e:f7:f4:8d:2a:ec:cf:f5:23:f7:ba:ca:12:97:dc:
55:66:c2:53:d5:1c:8c:94:1b:f7:c8:cf:cd:97:08:
52:3e:bd:d7:b6:0b:f0:51:48:9d:86:63:d8:c5:f2:
83:d0:8d:fc:20:d6:c7:43:c0:36:50:38:96:72:7b:
c9:28:18:61:5e:a6:24:e4:dc:b8:b7:ec:4c:44:4b:
ab:e3:1e:91:96:80:44:6a:8d:d3:1c:84:1a:aa:0e:
c3:fd:39:ae:a4:4c:10:69:02:e6:e2:2d:61:6b:f0:
f2:87:6b:50:63:67:a4:75:59:e4:58:67:b6:7a:12:
3f:fc:70:73:22:13:ac:d1:6a:af:91:72:e7:70:0d:
d2:6a:dd:dd:86:c8:ef:c6:b3:b5:1e:87:46:92:1a:
93:e8:cc:47:22:5f:60:79:94:bd:0f:8e:c0:b0:0f:
f1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7F:EC:02:CC:EA:0E:17:48:2F:02:8F:61:5B:1A:AF:B5:19:F8:32
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/z3_sAszqDhdILwKPYVsar7UZ-DI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:2c0::/44
Signature Algorithm: sha256WithRSAEncryption
88:d0:c9:08:2e:e5:ac:41:b6:3a:3b:69:89:93:79:22:ed:d4:
c6:30:ca:87:75:39:f9:a5:ed:cd:97:d2:ab:0f:17:7d:41:a0:
10:92:53:c4:4a:ed:78:3b:3e:df:37:ed:f9:dd:24:a7:b4:cd:
b3:bc:1d:be:8a:9e:dc:b1:2c:b8:88:52:bb:c6:41:c2:b5:fa:
59:2f:24:d4:f3:cc:12:a5:c4:2b:d3:5c:2b:92:a2:5c:ad:e7:
f5:4e:96:4d:6e:33:a5:13:af:6b:53:f9:4b:ae:02:4a:90:40:
42:23:db:8e:d2:1f:6c:cd:b1:d1:44:f7:c1:c4:b2:fc:26:0f:
76:cb:32:11:24:d7:b9:bd:19:f5:b5:72:ea:fa:13:a9:28:bf:
73:a8:a2:9e:b2:d5:88:3b:a6:cd:80:82:30:8a:10:84:c9:13:
82:db:ed:c2:5a:0c:44:e5:aa:44:f7:db:77:58:af:c6:80:9b:
5c:91:b6:c1:d9:bb:63:54:55:99:c1:90:e0:71:75:45:56:f8:
36:a7:6c:3b:cf:07:86:03:3e:ab:de:87:16:c7:93:1f:6e:84:
5b:de:00:f1:5b:62:79:1a:ea:9b:12:f7:d0:46:a1:08:dd:0e:
b2:a2:9b:40:db:63:7a:d2:eb:f0:88:2b:31:71:75:58:6b:24:
0a:e3:10:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 1 13:45:06 2023 by rpki-client on console-fra.rpki-client.org