Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/z4-MJrTZ6U6OHRj0qs8i4qEzlg0.roa
File: z4-MJrTZ6U6OHRj0qs8i4qEzlg0.roa (raw, json)
Hash identifier: v65SUfFdZe48xj17XhIi9wslJNnSGPJEzhNWnlyiV94=
Subject key identifier: CF:8F:8C:26:B4:D9:E9:4E:8E:1D:18:F4:AA:CF:22:E2:A1:33:96:0D
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 018CC86FC3BAF66C2713ACE2E78BD2EF1A41
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/z4-MJrTZ6U6OHRj0qs8i4qEzlg0.roa
Signing time: Tue 02 Jan 2024 04:30:16 +0000
ROA not before: Tue 02 Jan 2024 04:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206873
IP address blocks: 2a0e:4bc3::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 10 Jan 2024 23:24:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:c3:ba:f6:6c:27:13:ac:e2:e7:8b:d2:ef:1a:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 2 04:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf8f8c26b4d9e94e8e1d18f4aacf22e2a133960d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d2:9f:33:94:0a:f7:19:3a:e4:0e:35:53:39:
28:f1:4a:e7:d7:a9:7b:3c:15:f6:80:04:93:38:01:
bd:98:89:6c:50:a8:68:f6:ea:26:01:1c:27:a2:18:
2a:a1:c3:35:fe:2d:60:13:23:88:d6:9c:87:c6:2d:
03:27:b5:7f:67:e2:2d:11:6e:01:ec:a3:fe:4e:2c:
4c:75:2e:5b:06:2a:40:c0:83:45:8b:3b:95:31:d0:
0f:95:e1:b1:3f:5b:04:97:aa:9c:69:9c:ca:cb:28:
b8:e4:d2:80:34:92:8e:40:90:da:bc:c3:5d:de:e5:
04:5b:c9:b0:93:69:c3:21:d7:15:5e:49:03:e2:6e:
f6:66:10:8e:a1:f4:ae:99:b8:29:92:eb:aa:f7:bf:
fa:59:a9:5a:a6:e0:22:b5:5d:6d:33:9e:ce:5e:51:
4b:a7:21:f1:23:e5:26:7d:2d:e8:01:9f:68:e6:3e:
2d:a1:b5:79:76:73:c1:cf:24:e0:05:5f:88:08:51:
95:8a:c4:e1:f9:55:29:64:a2:6b:a6:da:24:be:dd:
0d:bb:c1:36:78:51:d6:cc:6a:56:94:4c:a2:ec:68:
30:64:50:5a:c6:42:c6:7d:1f:38:ab:13:eb:c7:e9:
00:a0:89:76:65:eb:db:21:10:1d:90:10:e4:db:c0:
5c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:8F:8C:26:B4:D9:E9:4E:8E:1D:18:F4:AA:CF:22:E2:A1:33:96:0D
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/z4-MJrTZ6U6OHRj0qs8i4qEzlg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4bc3::/32
Signature Algorithm: sha256WithRSAEncryption
19:78:be:2f:68:06:e6:13:5f:13:8c:e0:50:c9:9b:86:b8:d7:
ba:b4:17:c9:ba:e0:16:9e:da:3a:0b:29:c9:c7:49:f8:a8:17:
4d:7b:1c:d6:78:83:36:6a:bb:bb:54:81:db:8e:c4:45:d5:62:
90:c6:1e:73:0e:77:a7:19:87:2b:81:61:43:62:05:65:f4:5d:
0a:f8:fa:78:e6:94:3d:25:98:84:5d:98:02:e6:2d:fe:63:52:
16:b6:da:0f:32:2b:05:43:d8:f3:b0:78:ef:d9:60:78:b4:9f:
fb:7a:4b:f2:ad:fb:11:e2:78:24:27:25:ba:c0:61:d0:73:b8:
98:c1:3b:a8:22:41:fe:86:63:52:5b:8d:0b:e4:3d:45:df:65:
f5:73:c3:9f:5b:a6:dd:2c:64:fb:b9:15:ad:fa:b7:08:39:cf:
9b:26:7e:ed:eb:b6:22:2b:96:b3:41:3d:e1:c1:8f:0f:ee:30:
2e:81:a1:da:8d:03:70:70:be:21:5c:78:ac:59:c9:20:76:c7:
74:dd:76:c1:c5:d6:e5:5b:87:23:17:3d:56:a0:97:d6:1b:52:
78:82:97:e8:58:12:4d:c9:5f:a5:6f:91:49:35:cb:7d:eb:98:
7d:8a:cb:a4:f8:97:ab:0b:7d:13:7e:a8:a7:6d:95:81:31:a7:
8e:4d:75:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org