Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/z8_fFrkXjLT6FYonUUyJmKQj2Yw.roa
File: z8_fFrkXjLT6FYonUUyJmKQj2Yw.roa (raw, json)
Hash identifier: 8fYFSIyRzqIejZui3SQNAhixUZInQNPPxLUc34o6TB0=
Subject key identifier: CF:CF:DF:16:B9:17:8C:B4:FA:15:8A:27:51:4C:89:98:A4:23:D9:8C
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 01862B7280F48193E5703E5980B531ECFE41
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/z8_fFrkXjLT6FYonUUyJmKQj2Yw.roa
Signing time: Tue 07 Feb 2023 10:36:09 +0000
ROA not before: Tue 07 Feb 2023 10:36:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 2a0e:d785::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:72:80:f4:81:93:e5:70:3e:59:80:b5:31:ec:fe:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Feb 7 10:36:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfcfdf16b9178cb4fa158a27514c8998a423d98c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2f:d3:59:7c:36:ba:8f:db:1e:79:e8:76:14:
bd:b4:8c:8c:78:bc:74:fa:2c:6a:e5:cd:35:e9:53:
2b:ad:a1:8b:8d:46:d1:44:60:c9:95:1e:8c:85:ac:
a1:c0:55:dc:29:ea:ec:4b:05:2a:02:eb:e5:56:e4:
4f:28:a8:e6:29:bc:be:da:00:68:67:35:8a:68:22:
e2:fb:37:a8:b0:80:2f:8d:6c:ff:26:55:ed:e2:81:
02:af:6c:91:60:62:31:62:40:64:c3:1f:f4:3c:cd:
9a:80:dc:bb:85:85:c1:14:07:aa:a9:39:b9:8c:46:
91:81:9a:95:50:41:8c:25:8b:0a:06:83:de:68:ac:
36:74:1a:39:6a:74:92:61:cb:b5:71:5a:f0:3c:07:
25:1a:e9:72:9f:a4:7e:5b:24:1e:95:22:0c:c7:78:
93:d2:46:25:1f:cc:4a:4e:64:1b:9f:0d:52:d8:5d:
68:15:58:53:74:6e:d9:dc:8b:73:31:28:8a:07:85:
df:ff:80:f2:13:3a:ed:9e:b1:82:a3:b9:6a:b0:a1:
70:a5:c3:66:63:02:de:13:d5:6e:e9:e4:59:35:7b:
2a:41:69:f3:72:7c:5b:df:ce:fe:a8:b4:8c:af:84:
68:fd:a4:f3:fe:83:23:c3:ee:8a:45:ae:2d:58:ec:
1a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:CF:DF:16:B9:17:8C:B4:FA:15:8A:27:51:4C:89:98:A4:23:D9:8C
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/z8_fFrkXjLT6FYonUUyJmKQj2Yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d785::/32
Signature Algorithm: sha256WithRSAEncryption
9d:7d:0a:2c:ab:9b:0a:1a:bc:85:62:21:76:b9:8e:06:3e:17:
92:9f:e4:92:0d:37:26:6c:5e:b2:40:19:59:90:ed:92:04:c9:
38:50:c6:6c:29:11:30:9e:e6:95:91:1d:63:4d:d6:a8:5a:f6:
57:ed:43:25:bb:8b:d3:0b:43:e2:4b:ba:fb:77:7e:df:ee:da:
7b:3b:d7:e5:85:af:02:27:c4:4f:5d:38:89:c6:eb:45:c0:00:
25:1b:2a:ec:7a:e8:33:e8:6d:fb:c6:47:10:a4:f9:fd:80:74:
6e:e4:eb:1d:fa:9e:4f:8d:cf:e0:ce:02:f9:6b:c6:b5:35:7e:
e8:60:5d:22:53:d5:04:0a:d5:74:d0:d0:05:3b:a6:37:08:4d:
a2:40:0c:26:e2:e2:12:79:3a:41:71:90:78:49:ca:b3:03:cb:
e5:5c:45:0d:8a:57:e5:a2:67:ce:6c:30:2b:f7:23:e6:0a:e7:
4d:d7:be:0e:bd:45:88:9a:eb:5f:17:47:27:27:a9:05:9f:ed:
c9:7a:ee:23:03:b4:9a:75:09:b1:f6:53:52:e1:d1:45:32:cf:
22:8c:cd:b2:7e:2d:39:7f:af:82:86:25:8f:04:a5:26:43:4f:
ca:8f:be:00:91:25:b7:bd:35:d8:92:07:9c:b6:94:30:ed:ac:
d5:0d:47:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:06 2023 by rpki-client on console-fra.rpki-client.org