Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/Z4NFPTGJCGrp6spkTBi7WFM3rrk.roa
File: Z4NFPTGJCGrp6spkTBi7WFM3rrk.roa (raw, json)
Hash identifier: fhrbVbF+FWv1BkSkFS9/5LyTPctBfTlHw4D/C2BgwEA=
Subject key identifier: 67:83:45:3D:31:89:08:6A:E9:EA:CA:64:4C:18:BB:58:53:37:AE:B9
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018CC2DAF90FBD527610D4865D7A474F62E9
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/Z4NFPTGJCGrp6spkTBi7WFM3rrk.roa
Signing time: Mon 01 Jan 2024 02:29:39 +0000
ROA not before: Mon 01 Jan 2024 02:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2a0f:5707:ba0f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jan 2024 22:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:f9:0f:bd:52:76:10:d4:86:5d:7a:47:4f:62:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 02:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6783453d3189086ae9eaca644c18bb585337aeb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f2:01:89:2c:b4:f5:23:75:90:da:53:1d:a0:
d3:4f:d7:a5:00:5b:cb:8b:96:6a:8a:93:44:bf:d9:
71:f7:e5:da:4b:34:8c:bd:6a:9e:76:c4:ec:1d:8f:
6c:5e:2f:5c:35:4a:46:49:66:9a:b9:b7:b0:ab:8a:
3d:7a:e0:5a:bc:a1:d2:fa:8b:1b:f3:ef:c4:05:de:
4f:7b:5c:1f:9a:36:e8:28:76:1b:b9:f1:8f:cc:2d:
d1:11:36:97:57:37:f0:9f:81:76:e9:15:49:b3:2d:
15:08:0c:5a:53:57:f0:99:97:07:36:93:52:2c:12:
b3:ea:18:b9:8f:7e:91:c8:c4:b2:25:74:b9:8f:e3:
44:cf:7e:e6:0e:a2:9f:2c:7f:ad:c7:4e:8f:c9:99:
e0:0f:b6:0d:a5:10:91:81:f6:92:4f:24:54:2d:fc:
3c:7d:d8:72:7f:13:32:80:25:46:a4:d1:a6:d4:10:
08:68:db:0d:5d:fd:70:41:56:aa:ba:fb:27:ca:45:
37:68:0f:9e:ba:80:96:25:1c:a5:be:24:0e:47:33:
15:4f:fc:e8:14:74:2b:f7:19:ac:c1:7a:24:a2:97:
a0:a1:de:a7:0c:02:f5:01:6d:df:4b:1b:32:af:3a:
13:59:d2:a3:d7:c4:18:83:58:fd:1a:41:ec:4d:14:
72:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:83:45:3D:31:89:08:6A:E9:EA:CA:64:4C:18:BB:58:53:37:AE:B9
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/Z4NFPTGJCGrp6spkTBi7WFM3rrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ba0f::/48
Signature Algorithm: sha256WithRSAEncryption
98:da:43:03:35:7e:d8:14:69:07:ae:f6:c3:08:9d:9b:27:68:
3e:e5:81:e2:e5:b6:8f:28:99:8c:02:06:eb:45:70:cf:2f:eb:
62:4a:55:a2:43:04:0c:31:b5:af:e2:f3:69:c2:06:44:ba:74:
07:6f:69:09:f2:d3:02:62:59:13:be:7d:ca:52:1e:93:2e:ea:
5b:83:e2:3b:90:ac:7b:6b:56:b3:b4:f2:92:4a:2f:5a:cd:86:
e6:72:18:69:61:a4:71:15:50:c6:ae:0b:7f:13:5f:ec:4c:7a:
56:28:96:84:8a:0a:17:af:ed:77:71:f9:d0:84:fb:88:4a:5f:
dd:b7:98:dc:13:91:eb:94:87:0e:e6:bf:4e:7c:5d:56:41:c4:
23:21:ce:99:55:53:13:36:8e:c1:f6:67:55:bd:12:22:03:ec:
1c:d0:fb:39:ba:88:7c:0b:40:e6:c9:17:45:c4:88:1a:5e:d9:
f7:ee:94:ea:0b:98:0d:38:c6:0c:82:6d:0a:97:a9:f5:4c:af:
3f:7d:b3:8a:80:5d:af:f9:de:0e:90:a1:06:c2:b1:48:d1:e1:
52:1f:ba:30:9d:bb:ea:94:2a:f7:8e:7d:56:21:10:38:14:d2:
b8:99:f8:63:85:72:7c:60:a4:42:ca:0b:c9:02:fe:e4:49:fc:
1a:b1:f9:ad
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzC2vkPvVJ2ENSGXXpHT2LpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk
NWFlZjAwHhcNMjQwMTAxMDIyOTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NzgzNDUzZDMxODkwODZhZTllYWNhNjQ0YzE4YmI1ODUzMzdhZWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvIBiSy09SN1kNpTHaDTT9elAFvL
i5ZqipNEv9lx9+XaSzSMvWqedsTsHY9sXi9cNUpGSWaaubewq4o9euBavKHS+osb
8+/EBd5Pe1wfmjboKHYbufGPzC3RETaXVzfwn4F26RVJsy0VCAxaU1fwmZcHNpNS
LBKz6hi5j36RyMSyJXS5j+NEz37mDqKfLH+tx06PyZngD7YNpRCRgfaSTyRULfw8
fdhyfxMygCVGpNGm1BAIaNsNXf1wQVaquvsnykU3aA+euoCWJRylviQORzMVT/zo
FHQr9xmswXokopegod6nDAL1AW3fSxsyrzoTWdKj18QYg1j9GkHsTRRyfwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGeDRT0xiQhq6erKZEwYu1hTN665MB8GA1UdIwQY
MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt
Y2MxYzliNWY2NjQwLzEvWjRORlBUR0pDR3JwNnNwa1RCaTdXRk0zcnJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw
LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9XB7oP
MA0GCSqGSIb3DQEBCwUAA4IBAQCY2kMDNX7YFGkHrvbDCJ2bJ2g+5YHi5baPKJmM
AgbrRXDPL+tiSlWiQwQMMbWv4vNpwgZEunQHb2kJ8tMCYlkTvn3KUh6TLupbg+I7
kKx7a1aztPKSSi9azYbmchhpYaRxFVDGrgt/E1/sTHpWKJaEigoXr+13cfnQhPuI
Sl/dt5jcE5HrlIcO5r9OfF1WQcQjIc6ZVVMTNo7B9mdVvRIiA+wc0Ps5uoh8C0Dm
yRdFxIgaXtn37pTqC5gNOMYMgm0Kl6n1TK8/fbOKgF2v+d4OkKEGwrFI0eFSH7ow
nbvqlCr3jn1WIRA4FNK4mfhjhXJ8YKRCygvJAv7kSfwasfmt
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org