Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/4e52f1-13b2-45df-8a43-1a39e6a6de93/1/ZhbfwMO_m6PMxQzmrg2ntbDsvbU.roa
File: ZhbfwMO_m6PMxQzmrg2ntbDsvbU.roa (raw, json)
Hash identifier: 0aBAUtUmig/pu1Y9v222DY+oLJ/epw4jJuH47+Ff2uI=
Subject key identifier: 66:16:DF:C0:C3:BF:9B:A3:CC:C5:0C:E6:AE:0D:A7:B5:B0:EC:BD:B5
Certificate issuer: /CN=cddbefba8fe3c1f668c8444384fe4a3a9f4d87f1
Certificate serial: 01929C194DB5699A99E5001F4019051DE6FC
Authority key identifier: CD:DB:EF:BA:8F:E3:C1:F6:68:C8:44:43:84:FE:4A:3A:9F:4D:87:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdvvuo_jwfZoyERDhP5KOp9Nh_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/4e52f1-13b2-45df-8a43-1a39e6a6de93/1/ZhbfwMO_m6PMxQzmrg2ntbDsvbU.roa
Signing time: Thu 17 Oct 2024 20:09:16 +0000
ROA not before: Thu 17 Oct 2024 20:09:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57271
IP address blocks: 2a0f:4301::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 25 Oct 2024 10:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9c:19:4d:b5:69:9a:99:e5:00:1f:40:19:05:1d:e6:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddbefba8fe3c1f668c8444384fe4a3a9f4d87f1
Validity
Not Before: Oct 17 20:09:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6616dfc0c3bf9ba3ccc50ce6ae0da7b5b0ecbdb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bb:a9:a9:a2:57:91:f0:6a:c6:cf:80:00:0d:
bb:db:a5:58:3c:4c:c1:76:8c:3a:fe:3b:f7:f8:28:
3d:b7:32:e8:35:e4:8f:82:b6:36:05:fb:22:b2:86:
b8:2b:83:25:01:ca:18:00:1a:94:b9:47:22:17:1a:
fa:57:b9:ca:4d:f5:d9:c0:ea:c1:1b:e3:3f:5f:b5:
af:12:d9:44:51:24:57:9e:24:45:6c:c5:4d:79:62:
8f:f0:9a:76:77:a9:b1:8b:10:9c:70:47:a9:19:5b:
4e:a2:b2:3f:5c:8b:04:4c:12:80:da:1a:6c:bc:bc:
3b:5d:cc:45:9f:19:60:17:50:4a:ae:d5:f5:bf:83:
3e:08:77:c6:72:ae:5d:b4:e3:c8:92:e3:16:ae:1d:
c9:e7:ad:0a:df:96:6b:16:86:92:12:6a:2d:29:13:
4b:a7:72:09:f9:dc:70:23:54:51:f7:2f:09:28:bf:
a9:93:56:fb:61:2a:e6:c1:e7:92:89:d7:52:cb:bf:
af:4b:16:c9:0b:51:54:58:05:34:1e:52:71:3b:ae:
0d:3d:dc:e7:82:73:55:20:66:b0:b7:f5:de:6a:c9:
17:cf:19:f6:a9:94:bd:70:49:4b:19:35:f4:92:b2:
4f:b8:83:e8:b0:84:31:9d:af:b9:d2:3a:67:4c:da:
0f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:16:DF:C0:C3:BF:9B:A3:CC:C5:0C:E6:AE:0D:A7:B5:B0:EC:BD:B5
X509v3 Authority Key Identifier:
keyid:CD:DB:EF:BA:8F:E3:C1:F6:68:C8:44:43:84:FE:4A:3A:9F:4D:87:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdvvuo_jwfZoyERDhP5KOp9Nh_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/4e52f1-13b2-45df-8a43-1a39e6a6de93/1/ZhbfwMO_m6PMxQzmrg2ntbDsvbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/4e52f1-13b2-45df-8a43-1a39e6a6de93/1/zdvvuo_jwfZoyERDhP5KOp9Nh_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:4301::/32
Signature Algorithm: sha256WithRSAEncryption
3f:e3:39:12:f7:76:59:20:e4:0d:cf:b4:6f:dd:45:78:a8:a6:
a2:48:27:bf:69:da:4d:d4:4a:1b:0c:9a:e1:bd:ac:ed:89:59:
90:a3:7a:8b:f9:ab:59:89:57:19:8d:48:3c:5b:62:f2:ab:58:
92:3b:7d:84:be:6c:dd:64:16:17:e3:25:c3:bb:d0:cb:1d:dc:
96:ca:6f:cf:c4:6a:7b:62:98:7e:67:58:d0:aa:61:c6:c5:25:
59:43:a5:26:83:49:e1:e5:b1:98:12:32:8e:62:ac:a6:e0:e3:
f9:11:7e:53:6a:2b:4c:8c:6c:08:1a:45:01:eb:8f:aa:81:06:
d6:18:f0:4b:c0:d4:7b:50:80:3c:cc:13:c1:08:2c:c9:b0:46:
f5:da:65:85:3d:04:48:83:1b:49:00:1e:2a:b9:b0:0a:ac:4f:
f8:2b:29:f9:59:22:00:73:1c:73:7f:a0:ae:e4:bd:0a:b3:98:
78:07:cd:3b:d0:28:56:f0:b6:d0:7e:62:c5:8d:e1:37:7a:33:
e5:74:11:27:a2:71:44:af:73:44:b4:78:4b:93:c0:52:d8:e7:
eb:dd:0c:87:24:e3:cc:e9:17:bc:d3:48:bb:69:c7:2c:2a:6f:
d2:42:8f:83:f1:19:8b:73:57:ad:ff:9c:f9:ef:b5:ca:15:19:
66:96:8e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 25 12:38:02 2024 by rpki-client on console-ams.rpki-client.org