Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zdzm_XO64-YT5A_XyqfbM2ozahU.roa
File: zdzm_XO64-YT5A_XyqfbM2ozahU.roa (raw, json)
Hash identifier: /Gla1O4RwVraE/T6+BJfN1UQs8yNHyX/GU0/MWIz7xY=
Subject key identifier: CD:DC:E6:FD:73:BA:E3:E6:13:E4:0F:D7:CA:A7:DB:33:6A:33:6A:15
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CCC230ECFBA0C90E73A7963FE77107EC1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zdzm_XO64-YT5A_XyqfbM2ozahU.roa
Signing time: Tue 02 Jan 2024 21:44:58 +0000
ROA not before: Tue 02 Jan 2024 21:44:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211738
IP address blocks: 2a0e:b107:fd0::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Jan 2024 08:04:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cc:23:0e:cf:ba:0c:90:e7:3a:79:63:fe:77:10:7e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 21:44:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cddce6fd73bae3e613e40fd7caa7db336a336a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:80:ff:91:b9:be:af:2c:4c:93:02:5d:40:d9:
44:02:67:78:da:1c:8f:3a:46:2e:e7:f9:05:26:17:
d3:7d:9e:7d:2e:c7:d1:11:6b:9a:46:95:a8:7a:5a:
29:29:c1:4b:fc:15:8a:18:1f:7d:46:1e:54:de:7b:
ab:ec:f2:da:7f:5c:e0:53:c9:55:6a:7e:c4:92:86:
9c:81:55:13:88:2b:5f:a3:ce:45:fa:cc:fc:c8:2c:
92:d3:91:dd:5e:d7:57:5b:50:88:0c:93:06:7d:b2:
25:3c:7e:7e:67:08:b0:d2:bc:1b:48:c1:6f:0f:6b:
e9:98:18:c7:9d:1f:3d:03:cb:9b:44:f2:62:4e:3d:
40:8e:d8:f6:ad:9f:a7:00:9f:e6:66:af:a5:66:99:
76:5e:1a:ac:89:d3:0f:36:a6:28:76:22:cf:66:2c:
6f:11:22:c3:f9:37:01:0e:c9:9f:e2:3d:dc:d4:bb:
39:c2:61:ff:80:c2:ec:b2:e7:4f:7d:31:eb:5c:42:
26:bc:b8:63:fb:23:a4:f5:cd:c7:c9:b4:23:4b:5f:
3b:e7:15:0a:72:9b:e5:8b:ea:52:97:6c:d5:63:13:
41:f4:6d:9c:66:b6:5a:3a:10:a6:9c:c2:68:77:bc:
94:35:c1:3b:56:c1:47:55:e4:04:a1:a9:e5:e1:fc:
ad:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:DC:E6:FD:73:BA:E3:E6:13:E4:0F:D7:CA:A7:DB:33:6A:33:6A:15
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zdzm_XO64-YT5A_XyqfbM2ozahU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:fd0::/44
Signature Algorithm: sha256WithRSAEncryption
7c:6b:14:70:8c:3c:90:af:6a:e8:be:c0:e9:50:96:47:de:7b:
c4:bd:78:28:94:91:38:81:11:37:a2:9d:5f:e0:57:a9:2c:c8:
fe:03:b9:c6:51:63:77:64:97:96:82:b0:63:00:9d:49:16:19:
c7:4c:12:dd:bf:5a:df:c6:af:65:c0:dd:d9:48:a6:03:e5:15:
c1:ef:28:ea:f9:e4:c9:af:56:db:04:7c:4f:fc:35:c4:92:2a:
65:c5:40:33:1e:eb:ab:a3:7a:e4:eb:f9:5f:33:b1:11:15:03:
3f:b9:cf:0b:5d:9c:f3:5e:3f:c9:b1:50:1f:b6:fd:72:f9:f9:
e0:e8:96:1b:19:5b:c3:3d:8d:b1:cb:8e:28:13:59:dc:b2:c0:
d3:27:e0:07:7f:28:c3:bc:3b:6f:0d:a2:f8:14:b1:c5:5c:74:
ab:be:54:1b:ed:c2:3b:1b:9e:69:b7:9d:3f:67:6d:f6:5d:4a:
47:ae:5b:5d:93:fc:68:8e:54:6b:78:5a:29:30:48:10:5f:23:
61:4b:5e:5d:50:fd:b9:20:45:ff:3a:a6:7a:f4:ef:92:fa:4a:
c0:7f:35:65:e3:89:20:41:0f:ba:54:ba:74:20:f9:92:2d:82:
5d:64:0d:51:9e:43:ca:45:63:ae:15:c5:1e:df:01:6f:42:2b:
2e:2c:62:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 11:10:26 2024 by rpki-client on console-ams.rpki-client.org