Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/9ZKKgRUH0SYsiVu1dObhiuB8iJI.roa
File: 9ZKKgRUH0SYsiVu1dObhiuB8iJI.roa (raw, json)
Hash identifier: eGxaro32g9rT3NIB9WpmUN0ts72V9R3eqpcRJZe3GOw=
Subject key identifier: F5:92:8A:81:15:07:D1:26:2C:89:5B:B5:74:E6:E1:8A:E0:7C:88:92
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 01889AD15C9FA725EB9F4B687BD162654B5E
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/9ZKKgRUH0SYsiVu1dObhiuB8iJI.roa
Signing time: Thu 08 Jun 2023 11:43:11 +0000
ROA not before: Thu 08 Jun 2023 11:43:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46308
IP address blocks: 2a12:8fc6:700::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:d1:5c:9f:a7:25:eb:9f:4b:68:7b:d1:62:65:4b:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Jun 8 11:43:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5928a811507d1262c895bb574e6e18ae07c8892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:af:a6:30:9a:5f:bb:04:fc:a7:4d:e0:f7:3a:
e1:88:b0:30:7d:82:df:28:bf:3e:60:23:a4:15:c5:
20:b4:4a:46:aa:7c:9e:6d:fb:dc:76:cf:29:41:7d:
3a:fb:79:a6:e5:77:23:d3:9d:3b:1e:6a:9f:8c:97:
61:df:c1:08:f2:8a:e0:e7:25:29:a8:f7:82:f2:4e:
f8:98:f1:2b:e2:e3:c9:6b:d4:21:fe:c9:8c:3c:ca:
70:8e:e6:08:5a:8f:95:77:88:ad:56:e5:8d:37:42:
42:e2:89:6a:67:88:bc:1d:3e:5e:45:3c:0d:f4:6e:
9a:fa:3e:36:ee:73:6e:39:2d:aa:62:fe:7f:50:e0:
6e:ab:21:a9:4f:bb:14:78:15:fb:3c:29:04:44:36:
06:6c:a8:b9:ca:5d:26:b4:46:f1:e0:c1:af:d6:c1:
77:82:26:46:6e:6d:7e:8f:20:eb:22:fe:7d:4b:07:
70:41:fb:02:a3:d8:d3:04:2d:17:4a:19:45:05:a0:
9c:16:83:54:36:9c:3a:9a:2b:9d:d9:8b:5e:01:5e:
51:0c:45:2c:22:90:a1:a4:0c:0a:06:b0:f5:0d:a2:
c0:dd:02:9d:81:76:bb:ee:50:5b:7d:d8:a4:62:6c:
a7:b8:52:ec:65:2f:32:90:d4:b8:0e:60:64:12:33:
48:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:92:8A:81:15:07:D1:26:2C:89:5B:B5:74:E6:E1:8A:E0:7C:88:92
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/9ZKKgRUH0SYsiVu1dObhiuB8iJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8fc6:700::/48
Signature Algorithm: sha256WithRSAEncryption
ac:cf:06:ba:de:d3:ef:95:37:a1:44:69:56:ee:90:01:00:dd:
75:d3:dc:72:0f:b8:0b:46:b0:9d:e3:bf:85:b9:e3:b0:3a:77:
06:36:ea:d6:68:d8:d3:94:14:18:41:54:68:0f:f1:5b:e7:13:
ec:df:9a:2f:e1:02:f2:ec:99:3d:a2:0c:7c:1b:0e:be:71:2e:
7c:81:00:94:1a:88:cb:06:9d:03:2b:35:bf:cb:8c:5a:17:92:
78:d1:9d:d2:79:d9:49:d4:cd:90:9c:6f:78:45:5d:19:ed:14:
46:49:ee:6f:59:cf:6b:3c:80:8e:f0:8d:2d:3b:9f:93:ca:b7:
52:c0:52:ab:47:d5:86:77:e5:b9:c6:2d:d8:fa:ab:63:31:e1:
c8:78:ee:89:dc:87:d8:b6:00:d6:71:34:d8:50:21:92:7e:d7:
f4:19:35:9d:b7:cd:0d:c9:cb:be:bf:88:c7:26:07:b1:05:c1:
f4:02:b8:e6:95:e8:af:4b:56:6c:95:5d:53:07:b2:a5:92:b9:
53:9f:16:55:ba:d5:10:e4:21:a4:7e:96:f2:12:2b:74:cd:fd:
1d:2e:e6:98:20:c7:36:b2:b2:d3:33:c4:09:4e:e9:e7:af:dc:
76:42:69:59:78:5c:20:a3:15:97:99:f6:9a:d8:e1:1b:87:79:
57:86:15:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:04 2024 by rpki-client on console-ams.rpki-client.org