Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/ZMP_zNQEKG35Ohal-eWkv8oIt3M.roa
File: ZMP_zNQEKG35Ohal-eWkv8oIt3M.roa (raw, json)
Hash identifier: bvOe/Hbg2RApoyRlNudV/QI+CgOF+ydtd6qHb4buzLE=
Subject key identifier: 64:C3:FF:CC:D4:04:28:6D:F9:3A:16:A5:F9:E5:A4:BF:CA:08:B7:73
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018CC794739B884BAE14BD81798D8E93A3E9
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/ZMP_zNQEKG35Ohal-eWkv8oIt3M.roa
Signing time: Tue 02 Jan 2024 00:30:44 +0000
ROA not before: Tue 02 Jan 2024 00:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56534
IP address blocks: 2a11:f185::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 10 Jan 2024 23:32:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:73:9b:88:4b:ae:14:bd:81:79:8d:8e:93:a3:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Jan 2 00:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64c3ffccd404286df93a16a5f9e5a4bfca08b773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4e:8f:c4:3d:c5:06:0c:b1:06:66:b9:3b:97:
73:a8:7e:67:b9:15:b5:56:4f:9e:29:a8:13:03:5a:
ee:4d:ba:5d:17:b4:59:28:f7:6a:f6:d6:db:7c:5d:
76:df:dd:ba:0c:60:bf:e5:77:a2:1a:d2:ad:25:25:
20:42:20:e1:e0:0a:ae:38:73:35:99:e6:61:78:c5:
a0:bb:a2:35:82:87:69:ad:18:fe:47:81:19:f0:88:
7d:fc:d5:60:5b:bf:f9:ba:a6:d0:89:7b:b6:ba:a9:
e7:f6:e2:48:d4:7e:0a:f1:af:13:e6:f7:54:44:87:
34:24:b4:ce:1d:a0:22:6a:ec:28:e5:39:db:6a:cc:
a7:5b:4e:0e:8a:cb:32:dc:79:78:90:41:d3:0b:99:
e3:de:c0:d2:fd:47:53:e7:cf:98:3e:cf:90:23:26:
ef:24:d2:81:86:0c:72:3b:23:63:94:78:79:9d:e5:
f8:94:43:d3:1d:25:3e:73:e4:eb:b6:5b:12:d5:fd:
0f:38:5a:ce:33:7e:b1:36:e0:43:5a:79:3d:98:b1:
8e:7c:e8:b1:72:66:f8:2e:ed:46:bd:af:e5:b9:64:
0a:1e:77:85:d4:6d:4c:84:f8:b2:f7:3a:48:2e:85:
51:ac:5c:29:e4:77:4a:b5:5f:87:12:a0:fa:9c:84:
b5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C3:FF:CC:D4:04:28:6D:F9:3A:16:A5:F9:E5:A4:BF:CA:08:B7:73
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/ZMP_zNQEKG35Ohal-eWkv8oIt3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f185::/32
Signature Algorithm: sha256WithRSAEncryption
b5:33:af:5f:a4:86:42:cb:be:72:10:3e:4c:63:49:76:3d:af:
a0:8e:e4:ff:be:e8:78:85:89:04:7e:e7:e2:1e:ab:1a:1d:8c:
13:21:73:22:fe:d2:c3:15:27:ea:ce:e1:aa:16:ff:d6:03:49:
58:09:5c:27:59:52:d1:2a:5d:e5:5e:a9:6d:51:7a:67:f1:4d:
49:50:08:58:41:cc:c9:27:c9:66:05:0b:36:10:81:b4:23:32:
ab:c2:65:16:07:f7:75:27:34:1b:52:d9:8c:20:f9:f0:37:39:
d1:5c:7c:f4:d3:6f:84:43:1b:8b:11:fc:f2:5c:8d:14:71:b4:
7d:c7:89:cf:17:e6:da:4c:c6:7d:a3:cd:44:2c:d6:2c:06:cf:
9b:8b:17:17:fb:fe:4d:e4:7c:5c:79:dd:bb:10:8c:4c:f7:86:
63:fb:ea:cb:2a:10:cd:91:48:c6:d5:af:11:f7:56:dc:a3:25:
f4:0d:b4:3b:95:0b:2a:16:7e:b4:c5:d6:e2:91:0c:2a:0a:d3:
e2:3a:82:0f:9d:5e:db:dd:04:b2:29:b6:ca:b5:13:a1:05:ce:
a1:27:ed:fe:b6:1b:35:76:8e:17:3d:c5:89:3d:5f:b4:c8:aa:
ab:20:09:85:e1:51:10:43:0e:5b:66:6d:d0:41:37:f6:2e:66:
a1:6c:13:49
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzHlHObiEuuFL2BeY2Ok6PpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwZjYxOWVmMjAwODQwZGZhOGZkNDM1NjdjN2E5NzhjMTUz
MTJkN2YwHhcNMjQwMTAyMDAzMDQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGMzZmZjY2Q0MDQyODZkZjkzYTE2YTVmOWU1YTRiZmNhMDhiNzczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAik6PxD3FBgyxBma5O5dzqH5nuRW1
Vk+eKagTA1ruTbpdF7RZKPdq9tbbfF123926DGC/5XeiGtKtJSUgQiDh4AquOHM1
meZheMWgu6I1godprRj+R4EZ8Ih9/NVgW7/5uqbQiXu2uqnn9uJI1H4K8a8T5vdU
RIc0JLTOHaAiauwo5TnbasynW04Oissy3Hl4kEHTC5nj3sDS/UdT58+YPs+QIybv
JNKBhgxyOyNjlHh5neX4lEPTHSU+c+TrtlsS1f0POFrOM36xNuBDWnk9mLGOfOix
cmb4Lu1Gva/luWQKHneF1G1MhPiy9zpILoVRrFwp5HdKtV+HEqD6nIS11wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGTD/8zUBCht+ToWpfnlpL/KCLdzMB8GA1UdIwQY
MBaAFLD2Ge8gCEDfqP1DVnx6l4wVMS1/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1BZWjd5QUlRTi1vX1VOV2ZIcVhqQlV4TFg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wZTE4ZDItZDgwYi00YWEwLWFhZWYt
MDY5NjYxNjc1MTA2LzEvWk1QX3pOUUVLRzM1T2hhbC1lV2t2OG9JdDNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8wZTE4ZDItZDgwYi00YWEwLWFhZWYtMDY5NjYxNjc1MTA2
LzEvc1BZWjd5QUlRTi1vX1VOV2ZIcVhqQlV4TFg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhHxhTAN
BgkqhkiG9w0BAQsFAAOCAQEAtTOvX6SGQsu+chA+TGNJdj2voI7k/77oeIWJBH7n
4h6rGh2MEyFzIv7SwxUn6s7hqhb/1gNJWAlcJ1lS0Spd5V6pbVF6Z/FNSVAIWEHM
ySfJZgULNhCBtCMyq8JlFgf3dSc0G1LZjCD58Dc50Vx89NNvhEMbixH88lyNFHG0
fceJzxfm2kzGfaPNRCzWLAbPm4sXF/v+TeR8XHnduxCMTPeGY/vqyyoQzZFIxtWv
EfdW3KMl9A20O5ULKhZ+tMXW4pEMKgrT4jqCD51e290Esim2yrUToQXOoSft/rYb
NXaOFz3FiT1ftMiqqyAJheFREEMOW2Zt0EE39i5moWwTSQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:50 2024 by rpki-client on console-fra.rpki-client.org