Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/2DZziricRi_4q96cCKramxDOZ6U.roa
File: 2DZziricRi_4q96cCKramxDOZ6U.roa (raw, json)
Hash identifier: 1tnzFIlG+2H4ZTJtha8ZKdN29JwhmOxTXG2YQbmQoAY=
Subject key identifier: D8:36:73:8A:B8:9C:46:2F:F8:AB:DE:9C:08:AA:DA:9B:10:CE:67:A5
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 0185737184DAB7905AE510B8F34CB7DFDE0D
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/2DZziricRi_4q96cCKramxDOZ6U.roa
Signing time: Mon 02 Jan 2023 17:04:57 +0000
ROA not before: Mon 02 Jan 2023 17:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39870
IP address blocks: 2001:67c:2550::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:71:84:da:b7:90:5a:e5:10:b8:f3:4c:b7:df:de:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 2 17:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d836738ab89c462ff8abde9c08aada9b10ce67a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:be:bf:68:6b:20:70:b7:be:3d:3a:61:4b:74:
60:6e:1a:ad:6a:61:da:30:26:66:3b:9b:b0:da:d6:
29:9e:8e:b3:ec:f0:ed:f8:6f:dd:d5:78:93:e2:47:
cf:8a:77:70:79:53:b8:5f:b6:e2:31:56:ad:d3:af:
2c:d7:b4:6d:1d:6c:d7:63:f5:e9:68:2d:da:a0:09:
21:09:4b:19:f6:b0:07:be:2d:e3:7c:0b:a2:f2:2e:
64:6f:1f:24:d9:f7:56:be:31:b4:79:f7:90:3b:fa:
d8:c3:63:8e:2d:11:e3:d0:bb:b7:87:32:7d:d3:37:
e1:32:6c:f8:ce:8f:af:07:cb:2b:d7:42:11:71:22:
bd:3d:52:32:eb:2e:29:34:e2:3e:aa:43:51:93:fa:
a3:a2:13:14:0e:cd:ac:e1:c1:94:61:ec:cb:c4:2b:
0f:ca:13:09:b3:93:6e:cc:70:42:eb:58:86:f0:e6:
79:49:d6:f5:33:85:b1:57:ec:a5:77:a5:a8:68:4f:
30:d3:82:80:dd:35:fe:f7:25:51:a0:68:85:a7:e8:
57:f3:63:3e:14:b3:d7:22:e4:47:31:34:35:e2:2c:
ac:6f:31:ea:56:0d:7b:a8:40:fb:f9:cb:e8:57:8f:
e9:bc:79:7d:0c:27:67:38:fe:1c:40:17:d4:57:f2:
ad:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:36:73:8A:B8:9C:46:2F:F8:AB:DE:9C:08:AA:DA:9B:10:CE:67:A5
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/2DZziricRi_4q96cCKramxDOZ6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2550::/48
Signature Algorithm: sha256WithRSAEncryption
0f:d6:76:b4:d2:3e:07:64:76:3f:2a:1b:f6:8f:3c:ce:9d:4d:
8c:5a:3c:f1:bf:15:bd:dc:47:a8:98:b1:b9:df:e5:98:b3:d6:
5f:6a:f7:b1:86:e7:61:02:bc:b9:49:ca:54:bb:99:ec:67:6b:
ba:85:05:29:2f:da:6e:71:12:c9:7b:db:8a:f6:8c:da:60:dd:
53:13:8c:de:38:da:fe:02:f3:9d:55:1a:13:ae:5e:19:fd:28:
b9:d8:5b:1e:6c:c8:97:63:3b:3f:c8:16:b6:47:a6:d2:3d:8a:
2c:83:59:a7:d0:29:b7:05:e9:c1:b0:27:33:7d:10:58:a5:22:
ef:15:be:18:5d:44:43:ec:f6:45:a3:a6:51:39:b0:1d:82:65:
4b:de:99:d2:44:c1:39:3e:72:a0:66:c2:05:4b:22:4a:9d:eb:
f9:79:12:e0:69:93:11:be:ef:25:fb:68:06:37:77:fd:08:cb:
44:a3:48:c9:33:32:5d:96:30:ac:67:53:0d:b1:d5:49:00:61:
4d:4d:28:5c:67:de:f0:75:16:fa:7d:cf:6c:ca:2e:a4:cf:f4:
89:f2:46:08:9b:2b:ff:3b:31:9c:b8:99:4d:a8:b7:c4:97:e1:
ee:b2:20:74:b4:95:d9:48:2d:56:84:ed:d3:01:c9:14:88:72:
4a:62:dc:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:10 2024 by rpki-client on console-fra.rpki-client.org