Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/dz_til7midyepK2d9Vc8gh0dQLw.roa
File: dz_til7midyepK2d9Vc8gh0dQLw.roa (raw, json)
Hash identifier: cUZpXTiPrCay3HxB0QpAbDJN0D7qXYIkxab4L3KX82A=
Subject key identifier: 77:3F:ED:8A:5E:E6:89:DC:9E:A4:AD:9D:F5:57:3C:82:1D:1D:40:BC
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0186E9844D90715B7A0C8BE53C734F760990
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/dz_til7midyepK2d9Vc8gh0dQLw.roa
Signing time: Thu 16 Mar 2023 08:23:27 +0000
ROA not before: Thu 16 Mar 2023 08:23:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199406
IP address blocks: 2a12:bec0:1a0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e9:84:4d:90:71:5b:7a:0c:8b:e5:3c:73:4f:76:09:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Mar 16 08:23:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=773fed8a5ee689dc9ea4ad9df5573c821d1d40bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:70:de:d2:bb:e3:5d:20:9d:eb:40:29:98:da:
7e:aa:bf:0e:19:52:a6:fb:af:cc:a3:2b:56:b8:60:
8c:03:bd:93:4a:31:47:91:ec:b6:31:6c:60:44:e8:
0e:2b:43:f2:6b:1f:6e:b8:1e:7d:c4:fe:54:37:3d:
88:b3:b3:fe:fc:69:80:07:68:4d:0a:3f:61:52:4e:
05:6d:25:46:c7:76:99:c9:fa:ec:63:02:26:91:3a:
cc:84:c3:09:a7:aa:6e:61:1f:f5:93:24:ee:d6:5e:
87:dc:a1:86:50:2d:1a:57:c5:8d:56:cb:f7:59:ec:
13:f5:13:f7:94:29:ef:43:d5:1c:79:ea:a5:53:ef:
79:24:c2:f7:dd:87:da:d2:df:99:a0:3b:d2:ae:9e:
77:f2:5e:df:20:e1:00:62:b8:15:10:25:9a:93:b6:
0a:da:d9:f9:14:ac:87:36:24:3a:b4:10:34:46:07:
53:6c:b2:f0:aa:72:ef:f9:63:70:20:a9:06:0f:69:
af:3f:29:0f:ea:ac:d4:61:41:00:d9:74:bc:56:db:
18:f5:e9:02:f0:c5:bc:8e:5b:dc:99:7f:6c:81:ae:
fe:2e:5f:ea:84:69:71:c3:51:d3:f4:70:9a:fb:1b:
06:69:56:9e:43:f0:27:58:6f:11:7e:15:3c:c1:d3:
b2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:3F:ED:8A:5E:E6:89:DC:9E:A4:AD:9D:F5:57:3C:82:1D:1D:40:BC
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/dz_til7midyepK2d9Vc8gh0dQLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:1a0::/44
Signature Algorithm: sha256WithRSAEncryption
31:86:0a:2e:2b:9c:4e:a2:20:04:56:b2:6b:80:a4:9f:8e:50:
1b:8e:85:fd:f0:f0:88:14:2b:31:9a:d1:90:3e:bc:70:c1:bb:
1a:1f:53:b8:aa:96:ef:0c:a7:d6:23:ab:be:d0:b0:93:13:4d:
82:64:68:aa:99:64:f8:e6:65:88:78:43:57:a3:34:8d:a0:ba:
fa:7e:c8:3b:fc:16:f0:c9:e5:9e:b6:f8:2a:a2:44:2b:96:43:
b8:86:c1:3c:91:f4:f3:51:cc:bf:ea:e5:d6:09:1c:83:dd:49:
0c:50:85:e8:15:4a:c1:7b:ec:24:3b:75:a5:a9:5e:81:2c:5a:
96:f0:ed:f1:d7:a3:99:3b:fc:2c:f1:57:66:00:f2:93:68:19:
5e:85:96:0c:fd:a2:71:ff:b1:9e:07:a9:ee:41:dc:87:76:d1:
df:70:2a:4b:04:a2:28:d8:3c:b8:50:95:d7:70:33:a6:aa:64:
7e:42:a6:23:b5:f0:ef:c0:4e:f2:44:71:50:24:29:d0:df:4a:
1c:c0:68:5f:10:4a:a0:45:6e:ca:47:6d:d3:74:6e:de:9b:06:
e1:2b:4e:44:12:03:35:9c:3d:8a:be:ce:22:cb:03:6c:08:ad:
d8:75:a5:64:f5:a1:c2:f8:13:be:a3:37:68:ba:37:f8:ce:00:
ef:7e:4e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org