Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/Z1VwGVBkeDR1lFZlxMim8ZXFABU.roa
File: Z1VwGVBkeDR1lFZlxMim8ZXFABU.roa (raw, json)
Hash identifier: 2vXxbqCFDXqB7omIIAS5bPZjRLe13ThvylJHOPY3VL8=
Subject key identifier: 67:55:70:19:50:64:78:34:75:94:56:65:C4:C8:A6:F1:95:C5:00:15
Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Certificate serial: 018571C308832D8DC35C874F1E1313CDF723
Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/Z1VwGVBkeDR1lFZlxMim8ZXFABU.roa
Signing time: Mon 02 Jan 2023 09:14:45 +0000
ROA not before: Mon 02 Jan 2023 09:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39335
IP address blocks: 2a0b:6b86:900::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:08:83:2d:8d:c3:5c:87:4f:1e:13:13:cd:f7:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Validity
Not Before: Jan 2 09:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=675570195064783475945665c4c8a6f195c50015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:73:5b:87:47:75:9f:ea:67:48:0a:5e:38:56:
10:ba:17:74:3a:4d:d7:9c:c6:ad:58:8b:b8:f6:2b:
88:38:e0:75:7b:49:de:d5:cf:f6:30:af:75:84:6e:
5c:6f:59:78:f0:5e:1c:0a:30:84:ba:99:01:59:d9:
4a:b1:68:00:a5:1a:da:93:e7:7a:5d:4a:31:10:d8:
7d:27:c0:48:2a:b6:5a:ee:9a:f6:86:53:dc:19:8f:
dd:8d:1d:69:f6:81:7c:f0:93:73:7c:25:0a:ac:03:
d1:c9:c1:09:01:2d:f8:71:11:35:4c:ae:6c:4c:6c:
5b:93:b0:7d:f2:69:70:b8:e7:7f:71:11:e3:93:6e:
0b:da:bf:8d:2c:d1:be:db:db:2d:7f:0b:fd:fb:d9:
c7:17:d8:93:24:f0:55:ed:4c:19:78:90:c3:be:7f:
fd:46:33:de:a2:b5:f3:2b:ef:3e:cd:dc:c0:09:c2:
62:3d:59:88:3d:d2:41:4b:cc:ce:23:64:9a:29:2f:
0f:17:c6:4e:de:63:5d:16:1b:1c:76:23:45:bc:1e:
4e:c4:d8:94:d1:a7:26:b8:bb:c9:6d:19:45:19:70:
cb:4d:dd:46:8f:e2:0a:38:f7:6e:d4:b6:f6:74:9d:
6d:74:8f:d5:cb:05:da:be:4a:be:4e:b5:9c:95:ab:
81:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:55:70:19:50:64:78:34:75:94:56:65:C4:C8:A6:F1:95:C5:00:15
X509v3 Authority Key Identifier:
keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/Z1VwGVBkeDR1lFZlxMim8ZXFABU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6b86:900::/40
Signature Algorithm: sha256WithRSAEncryption
5f:3c:a4:de:a3:0e:bc:19:a4:ab:23:03:f2:22:f2:b5:fd:4f:
65:ba:c6:0e:2b:a2:1c:d4:2e:14:3a:d3:1d:82:4d:ce:3d:7b:
b3:3a:18:66:29:40:7d:de:71:ab:8f:39:06:ab:a6:52:84:2e:
34:78:62:68:38:58:ee:3b:19:a9:1b:29:08:94:0b:bb:8e:ff:
22:60:d6:68:b3:9a:26:71:00:15:50:2b:99:86:d0:aa:87:5b:
b2:af:bd:22:8a:a1:c4:95:b4:eb:7b:36:0b:63:19:36:70:6b:
bb:73:f8:f8:58:a5:1b:6a:6a:79:34:04:97:1f:19:4a:b7:e4:
93:92:58:71:fc:69:a8:75:df:83:10:b1:62:fc:62:c7:da:41:
76:6a:88:22:12:29:53:78:23:f3:81:09:2c:99:91:ce:7f:87:
2f:90:2e:8a:f3:0c:ca:a8:19:12:a7:ac:23:5e:1d:d9:c8:d5:
6b:80:eb:f4:30:4f:6d:7c:f0:d7:2f:f6:75:e5:f3:bc:96:0b:
8e:a9:c0:f6:a7:c0:b6:c8:41:54:c6:71:b2:4a:2d:2b:74:37:
cc:a2:7e:48:8a:86:fa:4c:66:f9:36:1b:0d:7b:43:20:dd:52:
cb:c6:6b:4b:56:51:cd:c4:48:6d:45:ce:d1:ec:6c:42:06:ef:
4d:43:44:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 20 22:01:36 2023 by rpki-client on console-fra.rpki-client.org