Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Zpc72OM4nQy4Ask6p7ujCvVG2u0.roa
File: Zpc72OM4nQy4Ask6p7ujCvVG2u0.roa (raw, json)
Hash identifier: cyCpc56x/+SL9kBWXdAkHg/0gcYFtmAOC0Jf+Y9dEtc=
Subject key identifier: 66:97:3B:D8:E3:38:9D:0C:B8:02:C9:3A:A7:BB:A3:0A:F5:46:DA:ED
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 01905AAD334A2933C3F8B75077B39A1E39F4
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Zpc72OM4nQy4Ask6p7ujCvVG2u0.roa
Signing time: Thu 27 Jun 2024 17:10:18 +0000
ROA not before: Thu 27 Jun 2024 17:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 150787
IP address blocks: 2a12:bec4:13c0::/44 maxlen: 44
Validation: Failed, certificate revoked on Fri 28 Jun 2024 01:40:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5a:ad:33:4a:29:33:c3:f8:b7:50:77:b3:9a:1e:39:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jun 27 17:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66973bd8e3389d0cb802c93aa7bba30af546daed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d8:e3:23:b5:03:fb:9b:0b:2b:b2:f3:de:63:
5c:19:f2:2c:27:3c:db:e2:28:1b:c4:a2:96:65:0e:
bc:16:89:12:cf:34:92:e1:c3:4d:27:da:92:85:10:
e6:74:23:6f:be:1b:0d:6b:34:00:14:df:6b:a0:9b:
04:9b:06:58:70:18:70:65:f8:08:a6:bc:fa:56:fa:
b5:64:1f:b9:e6:84:0a:12:50:6a:aa:6d:c3:24:71:
3e:86:75:a2:3d:d2:c0:b0:b2:d2:8e:ae:ee:68:b2:
d2:cb:1c:e6:d0:91:01:e2:33:08:3b:99:6a:8a:ad:
01:ca:4b:2d:b2:39:7a:20:55:e0:1a:9b:6a:99:f1:
82:bf:65:a6:82:58:a0:b3:d3:ab:f1:e1:63:1a:c0:
eb:78:29:4a:bc:28:64:25:3d:e0:d4:01:20:c3:d5:
8f:36:bc:41:7a:22:e4:cc:4c:f4:ff:a0:18:42:d5:
23:f1:a6:db:ba:f0:46:23:30:b4:e3:f2:88:a9:bc:
c9:06:6b:ab:af:e1:85:36:fd:d0:b2:ef:0d:aa:ea:
d6:00:91:be:f7:d6:6b:d6:8d:8b:04:26:61:e5:f9:
1e:af:e5:d8:82:2c:78:36:8f:ce:da:23:09:ba:af:
90:15:af:b4:58:da:fa:48:29:b8:f6:e6:c3:05:ba:
24:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:97:3B:D8:E3:38:9D:0C:B8:02:C9:3A:A7:BB:A3:0A:F5:46:DA:ED
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Zpc72OM4nQy4Ask6p7ujCvVG2u0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:13c0::/44
Signature Algorithm: sha256WithRSAEncryption
24:3d:8f:38:19:5d:0b:7f:b8:11:bc:5f:85:a0:57:26:93:1c:
0c:c3:03:67:fb:5e:5e:fc:74:bd:9f:85:ed:1f:b7:11:65:6e:
fe:0b:73:00:8d:e3:8f:d2:ee:5e:72:37:1c:1b:f0:51:ed:28:
e8:49:f6:91:a2:6f:97:eb:71:c6:8d:4b:46:f2:e5:56:23:f0:
6e:d8:01:80:3c:74:16:eb:1b:c3:ef:35:86:50:f9:c7:e6:0a:
dc:44:a9:bc:ad:00:02:9f:40:c8:2d:7d:40:ac:9a:3c:5c:f9:
cb:3e:d4:b4:fb:2b:ec:0b:47:ba:b7:2c:68:f3:b6:1c:a6:c2:
7a:7c:99:10:c0:13:ce:b9:e6:32:d8:02:2a:3c:c8:1c:7d:b9:
4e:0e:3a:08:45:f4:1d:3b:bb:16:f5:ca:56:35:58:55:06:58:
b8:5e:7c:be:74:94:d2:f5:25:39:ab:09:44:a6:a6:bc:78:8f:
55:ac:e2:93:34:42:d3:80:db:1e:9a:a3:74:8e:35:4f:58:7f:
10:1a:36:15:5d:12:6d:ff:c9:7c:04:c1:bc:0d:89:5d:33:65:
28:ef:d6:27:a2:ce:85:f9:3e:16:c3:f8:5b:41:b6:32:84:14:
e7:53:f2:d3:c4:c8:49:f3:2d:6a:5e:bc:57:64:24:3e:cf:d1:
a1:e1:3d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 04:16:26 2024 by rpki-client on console-ams.rpki-client.org