Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/Z1fTlPpbfVMMrI8qGBoGjuW697A.roa
File: Z1fTlPpbfVMMrI8qGBoGjuW697A.roa (raw, json)
Hash identifier: omoWKcGe126dmk0L5hDNxjODpiCkwqTeOb2RvEr3Z4c=
Subject key identifier: 67:57:D3:94:FA:5B:7D:53:0C:AC:8F:2A:18:1A:06:8E:E5:BA:F7:B0
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA7029F9C515667167269DA593DB25
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/Z1fTlPpbfVMMrI8qGBoGjuW697A.roa
Signing time: Mon 02 Jan 2023 13:44:58 +0000
ROA not before: Mon 02 Jan 2023 13:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56662
IP address blocks: 2a0f:5707:ba00::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:70:29:f9:c5:15:66:71:67:26:9d:a5:93:db:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6757d394fa5b7d530cac8f2a181a068ee5baf7b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b0:34:eb:6c:09:67:ad:08:ea:90:eb:83:c5:
d4:cf:41:fb:7e:80:2c:bb:ec:0e:57:08:a8:74:cb:
6a:f1:1b:6c:9f:57:5c:72:c7:ef:18:d1:96:53:13:
bd:60:87:3c:a4:84:8b:de:d9:65:72:26:7b:ec:bf:
13:7d:99:14:1a:b7:17:48:19:78:7c:6e:4f:f1:ed:
37:77:cf:83:03:48:49:0c:2c:b5:aa:e5:62:72:fe:
0c:f7:f3:08:9d:19:66:07:2a:85:57:29:fc:27:f6:
d3:6e:e9:ed:25:e9:28:6f:13:a0:8e:a6:e1:e4:6b:
61:b5:ce:e8:43:a8:ef:8b:a2:ee:1f:74:73:42:2f:
f8:1d:13:b0:f7:b7:aa:19:db:82:32:9c:c2:29:14:
0c:9f:e7:23:40:33:a4:14:6c:20:4a:94:03:af:77:
e0:0a:e7:67:6e:41:6d:be:ae:bf:97:99:ed:63:06:
b1:2b:e3:76:4d:91:0e:1f:2f:c0:f7:34:88:9b:e7:
16:e7:c4:b6:af:e5:6e:e8:5f:78:a2:21:e8:bc:16:
82:4f:33:b7:9b:65:40:14:d4:d5:b5:88:9b:18:63:
83:5b:34:0a:26:8d:83:6c:9f:a6:25:f3:a1:0d:23:
85:1f:c9:6c:9d:d9:09:19:f4:ff:6a:3c:47:c1:d8:
51:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:57:D3:94:FA:5B:7D:53:0C:AC:8F:2A:18:1A:06:8E:E5:BA:F7:B0
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/Z1fTlPpbfVMMrI8qGBoGjuW697A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ba00::/44
Signature Algorithm: sha256WithRSAEncryption
86:13:0b:2d:cc:f8:eb:70:47:01:50:4a:ef:93:e1:da:cd:6f:
c3:d6:ce:7a:e2:27:bc:38:2e:c1:fc:0d:dd:6f:4d:e7:df:17:
a9:82:4a:00:8a:27:af:0b:61:28:e0:5d:f1:42:a9:cf:a9:36:
29:9e:45:c7:6b:16:da:48:81:17:7d:68:b3:4f:5e:2f:9d:06:
25:cc:1b:1f:e9:85:49:54:2d:b0:35:5b:ac:92:aa:90:5e:49:
45:40:22:af:68:d6:36:63:f1:2d:8b:69:66:0a:97:fa:50:27:
23:d5:1a:49:e4:46:51:f8:4f:68:66:90:d4:8b:f7:d9:16:1b:
15:d8:03:94:61:24:6f:c7:fe:0d:d8:d9:f4:46:9a:3d:8a:8a:
2a:c3:19:f3:d4:70:7f:70:5e:9c:83:56:61:2a:9b:bb:70:22:
76:be:91:57:c6:4c:a4:41:ee:3f:77:7e:65:15:fc:1b:1e:48:
4e:13:41:f9:a5:d8:0b:91:43:f2:41:2c:f2:65:dc:c6:26:a2:
fc:28:df:73:dd:ed:77:13:f4:37:21:82:e2:17:3e:1a:17:4e:
15:98:be:af:52:a9:02:f4:44:20:1a:55:48:20:dc:06:f2:46:
22:9a:1e:51:19:32:e4:b3:d1:ae:b3:30:90:3b:08:69:7b:66:
5f:31:b1:4a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVyunAp+cUVZnFnJp2lk9slMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk
NWFlZjAwHhcNMjMwMTAyMTM0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NzU3ZDM5NGZhNWI3ZDUzMGNhYzhmMmExODFhMDY4ZWU1YmFmN2IwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgbA062wJZ60I6pDrg8XUz0H7foAs
u+wOVwiodMtq8Rtsn1dccsfvGNGWUxO9YIc8pISL3tllciZ77L8TfZkUGrcXSBl4
fG5P8e03d8+DA0hJDCy1quVicv4M9/MInRlmByqFVyn8J/bTbuntJekobxOgjqbh
5Gthtc7oQ6jvi6LuH3RzQi/4HROw97eqGduCMpzCKRQMn+cjQDOkFGwgSpQDr3fg
CudnbkFtvq6/l5ntYwaxK+N2TZEOHy/A9zSIm+cW58S2r+Vu6F94oiHovBaCTzO3
m2VAFNTVtYibGGODWzQKJo2DbJ+mJfOhDSOFH8lsndkJGfT/ajxHwdhRXQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGdX05T6W31TDKyPKhgaBo7luvewMB8GA1UdIwQY
MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt
Y2MxYzliNWY2NjQwLzEvWjFmVGxQcGJmVk1Nckk4cUdCb0dqdVc2OTdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw
LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg9XB7oA
MA0GCSqGSIb3DQEBCwUAA4IBAQCGEwstzPjrcEcBUErvk+HazW/D1s564ie8OC7B
/A3db03n3xepgkoAiievC2Eo4F3xQqnPqTYpnkXHaxbaSIEXfWizT14vnQYlzBsf
6YVJVC2wNVuskqqQXklFQCKvaNY2Y/Eti2lmCpf6UCcj1RpJ5EZR+E9oZpDUi/fZ
FhsV2AOUYSRvx/4N2Nn0Rpo9iooqwxnz1HB/cF6cg1ZhKpu7cCJ2vpFXxkykQe4/
d35lFfwbHkhOE0H5pdgLkUPyQSzyZdzGJqL8KN9z3e13E/Q3IYLiFz4aF04VmL6v
UqkC9EQgGlVIINwG8kYimh5RGTLks9GuszCQOwhpe2ZfMbFK
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org