Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Zry0t3sd8T5NznfOG3Z-lzbvdk4.roa
File: Zry0t3sd8T5NznfOG3Z-lzbvdk4.roa (raw, json)
Hash identifier: ZGpI4Ghz4odHHcc44Veg73POpnhuugYvuT7z4mHmItE=
Subject key identifier: 66:BC:B4:B7:7B:1D:F1:3E:4D:CE:77:CE:1B:76:7E:97:36:EF:76:4E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E77885385F33FE73D535AB413A1AE0
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Zry0t3sd8T5NznfOG3Z-lzbvdk4.roa
Signing time: Mon 02 Jan 2023 05:14:55 +0000
ROA not before: Mon 02 Jan 2023 05:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31898
IP address blocks: 2a0e:b107:f50::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:78:85:38:5f:33:fe:73:d5:35:ab:41:3a:1a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66bcb4b77b1df13e4dce77ce1b767e9736ef764e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2b:25:46:43:e7:cb:e1:08:b2:14:6e:4e:37:
32:6c:f3:90:bb:a1:74:c7:ba:ff:5f:ec:05:d2:db:
c8:b6:dc:4c:24:ef:36:dd:49:32:5b:4b:7d:c0:d1:
4e:26:7d:69:c1:e5:fc:7b:1c:6e:c1:78:4a:04:04:
77:93:81:bb:f9:cf:f4:8e:4c:a2:9b:cd:5c:45:6e:
53:b0:9b:1a:47:14:ae:b2:82:ec:16:bf:04:53:ac:
4c:eb:89:90:99:67:99:f1:70:9e:e9:b8:7b:a4:9c:
7b:5a:e8:63:3c:ff:78:28:01:d3:f5:87:67:27:5b:
4b:d2:a4:2c:85:44:e7:06:60:06:9a:bb:62:b5:37:
70:fa:8c:93:cc:6b:0a:61:3d:be:fc:8f:9e:7b:12:
53:4e:e2:e1:dc:d1:20:5d:49:bf:ab:66:66:c6:8b:
42:ea:5e:c1:8f:97:15:67:59:d9:8f:c3:91:2b:f5:
de:3a:06:01:f2:c3:75:78:52:8c:2f:41:a3:69:fb:
ba:f3:b0:ed:80:8b:6d:7a:1a:65:1c:b0:30:e7:54:
50:59:8c:31:27:eb:ee:3a:83:30:9e:df:1b:12:20:
cf:49:b2:f0:4c:39:61:f8:e5:69:08:e8:68:08:dd:
38:ff:05:03:75:56:b5:a9:25:ad:87:94:4d:76:ab:
46:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:BC:B4:B7:7B:1D:F1:3E:4D:CE:77:CE:1B:76:7E:97:36:EF:76:4E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Zry0t3sd8T5NznfOG3Z-lzbvdk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:f50::/44
Signature Algorithm: sha256WithRSAEncryption
a5:30:9f:82:20:be:dd:fe:c8:ea:ba:7f:c8:79:eb:f6:48:2b:
6f:e4:18:3a:b0:d4:5d:c9:d5:33:87:32:fc:74:19:4a:28:7e:
ee:4d:8b:d3:c5:50:1e:ca:42:00:a0:3e:02:e9:c8:3a:8e:91:
a3:99:3f:9b:af:e0:c3:9d:14:26:6a:43:0c:37:25:c6:5b:1c:
a8:e8:c9:6d:dc:fa:e8:a2:70:8f:9d:48:b4:74:ea:ca:98:b5:
10:1e:c4:25:73:3d:08:f1:4f:1b:65:48:14:38:bf:e1:51:d5:
44:f4:d0:4f:b0:d5:f6:b3:ee:1d:d6:01:ef:45:cb:8d:30:f8:
61:03:e0:dc:d9:dd:88:df:0b:24:cc:b5:59:b7:3a:f8:ac:16:
f5:cd:24:44:34:4b:5e:87:12:c1:ec:b2:c2:bc:c5:34:bb:cf:
dc:80:aa:a2:68:75:99:cf:45:bd:6e:fd:b8:ce:71:b1:54:3d:
12:e8:fe:09:72:a9:5b:b7:1e:1d:cd:87:89:76:05:59:ae:8f:
14:55:eb:7e:58:6c:c8:ec:fd:2d:10:bb:8d:fe:27:91:2e:9d:
7b:e9:96:7d:14:7d:71:c3:18:67:ce:09:ee:b4:d5:77:85:a3:
ea:0b:5a:0e:66:27:5c:77:2f:41:43:b8:69:8c:ce:a0:90:b6:
b0:7f:94:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org