Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/feeef5-c96f-4652-94e0-ed38f649e39f/1/Zw54fJ2HvTcvmK_bUJ5YFE1Rlh0.roa
File: Zw54fJ2HvTcvmK_bUJ5YFE1Rlh0.roa (raw, json)
Hash identifier: vMyQna9nJSd/494hhTw5iVn+VI2hkUPrrtxWsc6soSg=
Subject key identifier: 67:0E:78:7C:9D:87:BD:37:2F:98:AF:DB:50:9E:58:14:4D:51:96:1D
Certificate issuer: /CN=dbc8f2ff98f610fe83830d18918f4c9037272411
Certificate serial: 0191FF2CE3712BE8873862A87152814E722C
Authority key identifier: DB:C8:F2:FF:98:F6:10:FE:83:83:0D:18:91:8F:4C:90:37:27:24:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28jy_5j2EP6Dgw0YkY9MkDcnJBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/feeef5-c96f-4652-94e0-ed38f649e39f/1/Zw54fJ2HvTcvmK_bUJ5YFE1Rlh0.roa
Signing time: Tue 17 Sep 2024 08:50:17 +0000
ROA not before: Tue 17 Sep 2024 08:50:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210079
IP address blocks: 2a06:78c0:db::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 20 Sep 2024 17:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ff:2c:e3:71:2b:e8:87:38:62:a8:71:52:81:4e:72:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc8f2ff98f610fe83830d18918f4c9037272411
Validity
Not Before: Sep 17 08:50:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=670e787c9d87bd372f98afdb509e58144d51961d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:26:62:85:bc:b6:21:a0:c7:4f:c6:15:11:1e:
7d:80:c0:9f:f6:87:23:76:0e:a5:f0:86:74:61:16:
ce:7b:8a:3b:10:1b:c4:41:89:36:5d:dd:58:18:d0:
db:5d:3e:b9:85:24:20:e8:a8:eb:49:88:92:6f:fb:
2c:d7:90:86:11:bc:08:37:fc:cc:e0:75:de:d1:7c:
00:ae:35:ac:19:cd:d5:53:05:9a:6b:c5:06:12:f8:
26:dc:ef:61:7b:9b:5f:44:a2:18:30:d2:5f:5a:60:
5a:0a:37:98:8a:a9:c5:a1:76:34:ed:41:bf:ec:5a:
07:e6:c2:ca:1e:71:52:bd:ee:1e:cc:a0:27:81:05:
03:44:84:b1:0f:d0:7a:1a:3a:94:36:a9:ef:ec:0e:
b3:ba:27:56:68:2c:43:c8:8a:31:82:ba:e7:4d:73:
31:1f:b3:e3:e4:c2:0c:93:b4:0e:d6:db:f1:39:8e:
a5:bb:30:0d:9b:b5:8c:b2:fd:dd:f5:50:ab:d0:80:
a9:b3:11:8b:70:56:ab:84:a7:38:af:ee:5a:13:f6:
d3:c3:3b:95:c6:a1:11:68:f9:50:e5:c7:2f:56:3e:
91:15:36:d3:a5:5c:06:0f:26:58:71:25:dc:cc:98:
58:27:dc:f4:ab:2c:3c:18:c9:06:f1:e9:a1:b8:1f:
02:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:0E:78:7C:9D:87:BD:37:2F:98:AF:DB:50:9E:58:14:4D:51:96:1D
X509v3 Authority Key Identifier:
keyid:DB:C8:F2:FF:98:F6:10:FE:83:83:0D:18:91:8F:4C:90:37:27:24:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28jy_5j2EP6Dgw0YkY9MkDcnJBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/feeef5-c96f-4652-94e0-ed38f649e39f/1/Zw54fJ2HvTcvmK_bUJ5YFE1Rlh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/feeef5-c96f-4652-94e0-ed38f649e39f/1/28jy_5j2EP6Dgw0YkY9MkDcnJBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:78c0:db::/48
Signature Algorithm: sha256WithRSAEncryption
38:38:76:1a:6c:e2:1d:4e:58:c6:3d:54:ad:c8:42:17:b1:03:
08:13:aa:1f:24:dc:1b:9f:87:7e:d6:c8:57:36:86:3a:09:61:
6a:88:a0:9a:05:19:70:a8:8e:6c:ca:b5:b5:8c:2d:88:24:eb:
14:f5:05:79:ff:5c:3a:4e:f9:fc:ef:01:c4:1d:fd:04:d3:c1:
86:08:f6:7f:b1:d3:74:f4:7f:0f:2a:f1:ef:37:ac:2c:ae:84:
12:46:a0:30:ff:cf:ab:49:ca:97:3e:f8:66:65:d0:b2:fc:b2:
8d:ba:ab:c1:4b:ed:f1:c6:ff:7d:6e:5c:cc:ba:dc:f6:06:82:
83:26:67:a5:69:48:ad:0a:17:a0:f7:0c:5d:c1:38:7d:28:d6:
85:29:01:94:fe:1c:c5:64:5e:c7:af:52:f4:71:54:ba:21:89:
e8:33:fd:ea:ad:cf:7b:65:4d:13:68:77:b2:f9:97:86:99:a4:
8b:a8:bf:1c:15:ef:9c:8e:f5:7d:62:f8:0d:ba:06:df:1d:b1:
36:f2:4d:5f:88:15:22:20:65:e5:e7:4a:97:e4:07:4b:c9:ca:
35:8e:48:8a:f9:b3:c1:86:ba:b0:0a:5e:d9:ed:de:35:af:e9:
7d:3c:98:0b:6e:9b:b6:65:33:45:a6:11:a0:e5:ee:a5:4d:c9:
bf:3f:73:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 19:25:34 2024 by rpki-client on console-fra.rpki-client.org