Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ZZFOffJ0Lo06gGg9wKlbgf_42zU.roa
File: ZZFOffJ0Lo06gGg9wKlbgf_42zU.roa (raw, json)
Hash identifier: xBfLtx7/ovWKfd1pPj+ckZTVaoXtrpFBjIrzyMWqyqI=
Subject key identifier: 65:91:4E:7D:F2:74:2E:8D:3A:80:68:3D:C0:A9:5B:81:FF:F8:DB:35
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0186088C37B2F47DB68530080516A89A7DF1
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ZZFOffJ0Lo06gGg9wKlbgf_42zU.roa
Signing time: Tue 31 Jan 2023 15:57:32 +0000
ROA not before: Tue 31 Jan 2023 15:57:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200111
IP address blocks: 2a12:bec0:120::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:8c:37:b2:f4:7d:b6:85:30:08:05:16:a8:9a:7d:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 31 15:57:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65914e7df2742e8d3a80683dc0a95b81fff8db35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:bc:26:c4:e9:7a:3c:da:e2:09:1f:dc:f5:4f:
74:d0:53:07:7d:31:92:01:2b:83:98:f9:c6:fe:33:
1b:d0:3e:66:06:28:f5:d3:57:1a:7f:fc:ab:f0:ca:
f7:45:7e:69:cd:bf:8e:63:cc:f0:40:b3:de:56:bd:
7b:67:43:24:9e:dc:fe:6c:a8:d7:87:57:35:85:87:
40:c1:71:b7:1c:f6:6b:71:e4:ad:fc:46:1f:c6:d5:
86:bf:c3:37:3c:79:d4:41:a2:3b:8e:0f:3a:1b:92:
d7:a3:fd:84:fa:2c:ed:02:94:f2:3f:3a:40:dc:d9:
e7:ba:8d:a4:6b:cb:1a:82:72:31:da:a9:46:84:47:
98:e4:f5:eb:a4:0a:38:d3:3b:ee:08:5b:48:41:b7:
f6:3b:9e:76:5f:ea:35:b7:4d:47:e0:40:df:41:d9:
30:68:19:c5:42:59:38:ab:97:e2:b6:e9:cb:01:ca:
e3:90:2f:49:ee:2d:77:78:af:38:20:77:ef:60:93:
f9:a3:df:29:30:fe:1f:f2:ed:c5:e3:27:8f:ea:81:
3c:e2:d7:17:65:16:b7:81:7d:78:e5:20:48:fa:8a:
a6:0d:65:d9:38:3e:52:b0:9c:60:49:a8:d6:09:ef:
56:8e:94:a3:dd:6c:6b:d5:e4:7a:b4:c3:37:d9:7c:
77:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:91:4E:7D:F2:74:2E:8D:3A:80:68:3D:C0:A9:5B:81:FF:F8:DB:35
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ZZFOffJ0Lo06gGg9wKlbgf_42zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:120::/44
Signature Algorithm: sha256WithRSAEncryption
5b:62:bc:48:a7:44:78:f9:23:e3:51:81:b8:d0:ea:f8:2c:1a:
76:8b:d2:a3:70:6b:06:ee:b9:e6:b9:a5:80:2f:c2:78:ef:f0:
cf:aa:a8:d0:96:6a:c0:d6:74:4a:3b:35:3e:83:48:15:2c:3b:
bd:70:1f:9c:6e:e0:a5:91:50:c6:3c:e4:e7:e9:3d:8d:79:47:
cb:5c:cc:68:1f:e4:2a:74:8d:16:3c:ec:78:11:f7:8d:2b:d6:
6b:b4:08:fb:40:a9:86:88:29:67:3b:37:f8:a2:c0:5c:2d:36:
cc:13:46:11:b1:89:bc:82:53:d9:e2:92:7d:52:d0:2d:97:a3:
18:3c:4a:56:fc:68:85:64:84:9d:50:66:32:be:04:d2:51:23:
2e:63:15:17:35:7d:f9:e7:2d:15:8b:56:9f:73:db:e8:19:0d:
5f:8b:a7:98:62:2f:97:1d:67:92:6f:88:2e:e5:c9:9d:96:4c:
59:a2:fc:f2:47:3a:df:bc:88:f1:6b:e9:0a:0f:b1:bb:cf:1c:
aa:eb:4e:ef:e0:a6:29:24:74:1e:9e:14:90:b9:0b:87:09:a5:
3a:bb:1f:6f:7b:9c:41:ca:42:c0:1d:83:8a:a6:5e:c7:ec:87:
77:c6:b1:43:4e:50:b9:f1:3c:27:f7:fa:c5:08:70:18:dc:a3:
f4:97:a9:4b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYYIjDey9H22hTAIBRaomn3xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjMwMTMxMTU1NzMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTkxNGU3ZGYyNzQyZThkM2E4MDY4M2RjMGE5NWI4MWZmZjhkYjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLwmxOl6PNriCR/c9U900FMHfTGS
ASuDmPnG/jMb0D5mBij101caf/yr8Mr3RX5pzb+OY8zwQLPeVr17Z0Mkntz+bKjX
h1c1hYdAwXG3HPZrceSt/EYfxtWGv8M3PHnUQaI7jg86G5LXo/2E+iztApTyPzpA
3Nnnuo2ka8sagnIx2qlGhEeY5PXrpAo40zvuCFtIQbf2O552X+o1t01H4EDfQdkw
aBnFQlk4q5fitunLAcrjkC9J7i13eK84IHfvYJP5o98pMP4f8u3F4yeP6oE84tcX
ZRa3gX145SBI+oqmDWXZOD5SsJxgSajWCe9WjpSj3Wxr1eR6tMM32Xx3NwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGWRTn3ydC6NOoBoPcCpW4H/+Ns1MB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvWlpGT2ZmSjBMbzA2Z0dnOXdLbGJnZl80MnpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAEg
MA0GCSqGSIb3DQEBCwUAA4IBAQBbYrxIp0R4+SPjUYG40Or4LBp2i9KjcGsG7rnm
uaWAL8J47/DPqqjQlmrA1nRKOzU+g0gVLDu9cB+cbuClkVDGPOTn6T2NeUfLXMxo
H+QqdI0WPOx4EfeNK9ZrtAj7QKmGiClnOzf4osBcLTbME0YRsYm8glPZ4pJ9UtAt
l6MYPEpW/GiFZISdUGYyvgTSUSMuYxUXNX355y0Vi1afc9voGQ1fi6eYYi+XHWeS
b4gu5cmdlkxZovzyRzrfvIjxa+kKD7G7zxyq607v4KYpJHQenhSQuQuHCaU6ux9v
e5xBykLAHYOKpl7H7Id3xrFDTlC58Twn9/rFCHAY3KP0l6lL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org