Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/zLws_nAgXq52u0C69rxvLnAIffM.roa
File: zLws_nAgXq52u0C69rxvLnAIffM.roa (raw, json)
Hash identifier: 8EdjEK902WcZyG6Bc/rYEnJhwi5NEfdjkGbeBLQ5z/Y=
Subject key identifier: CC:BC:2C:FE:70:20:5E:AE:76:BB:40:BA:F6:BC:6F:2E:70:08:7D:F3
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 01856DC1D1863EB008B21AF33461A0A00860
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/zLws_nAgXq52u0C69rxvLnAIffM.roa
Signing time: Sun 01 Jan 2023 14:34:56 +0000
ROA not before: Sun 01 Jan 2023 14:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52048
IP address blocks: 2a06:c3c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:d1:86:3e:b0:08:b2:1a:f3:34:61:a0:a0:08:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 14:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccbc2cfe70205eae76bb40baf6bc6f2e70087df3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:56:d5:fe:7c:99:40:f7:5b:fe:3d:b6:de:d1:
37:76:d4:dc:b2:80:9a:03:e1:b8:3b:1a:ae:6e:a3:
ab:45:06:a1:b9:31:9f:6e:ba:17:84:90:18:5a:e4:
56:a9:20:39:b0:dd:87:8b:2c:60:76:49:0c:40:45:
e9:f6:b5:d1:65:e5:de:64:4f:db:43:96:ae:11:ac:
6b:70:a8:18:ca:d6:77:2f:9c:e9:53:a7:fd:ee:7d:
f7:8a:59:1a:22:07:e7:e6:1e:aa:2b:0d:75:b2:da:
5e:71:7b:f2:59:9d:bc:85:da:c0:64:f1:f7:51:7d:
76:95:5a:fc:82:1f:55:5a:03:fa:74:da:e8:26:2a:
25:72:fe:18:ee:9a:ca:aa:2c:d7:35:55:dc:51:29:
97:53:a2:1f:ee:04:cc:b6:e8:5b:92:44:e9:e6:57:
1b:e0:dd:fa:fc:36:cf:1c:0e:21:ca:ff:33:ea:8b:
07:70:8a:89:36:ed:64:e9:76:6b:e3:21:e9:97:f6:
1a:7a:39:5f:d5:fc:af:6d:ff:e0:8c:41:0e:fc:0a:
9e:d2:44:2d:df:8e:ef:96:5a:6d:03:3f:10:92:1e:
35:95:43:ba:c0:f8:1f:be:40:04:62:d7:26:46:0a:
b5:31:e9:d5:f1:c7:51:f8:a4:04:fd:48:a0:21:03:
86:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BC:2C:FE:70:20:5E:AE:76:BB:40:BA:F6:BC:6F:2E:70:08:7D:F3
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/zLws_nAgXq52u0C69rxvLnAIffM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c3c0::/48
Signature Algorithm: sha256WithRSAEncryption
94:f3:b2:50:7a:ba:cb:09:a8:02:c9:42:10:86:12:07:9d:ea:
f4:30:2e:80:e7:7e:d0:be:f5:6b:9d:92:1e:b6:33:b3:96:80:
38:42:49:a0:a8:5c:7a:a5:91:e4:27:5c:f9:76:6e:76:e9:cb:
47:98:a6:e1:72:80:b1:1a:7f:5c:8d:a5:a8:f2:72:61:f6:75:
79:20:0e:ea:0c:83:b2:41:24:1f:f3:14:0b:36:69:d1:c9:a4:
36:40:b9:d1:04:a6:57:69:8f:f0:02:d8:d9:ea:6a:73:86:08:
43:6e:0d:2d:4e:b0:bf:37:bd:6f:95:19:c4:95:8d:81:62:6e:
ba:aa:62:01:46:30:48:d1:35:16:9a:49:2e:96:74:91:54:52:
33:df:96:09:04:30:ea:9e:6e:53:34:d0:ba:4e:5c:dc:5e:ae:
25:12:48:93:25:44:37:c2:10:3f:33:25:1f:c9:91:59:b3:86:
1a:95:d2:4f:5c:0c:0d:cf:c3:5a:c3:64:b0:ef:6f:43:3c:88:
14:22:10:a4:af:08:dd:85:76:d5:e4:53:d3:1c:8d:26:52:69:
da:ac:12:89:1e:da:35:93:24:9d:2e:cc:b9:8d:fd:9e:4f:4e:
00:3f:d2:cd:d1:91:b3:a4:d1:c7:07:0d:7d:09:69:32:9d:dd:
26:09:d7:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:35 2024 by rpki-client on console-fra.rpki-client.org