Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ad0351-006f-47aa-ab19-19c05f4f4a7b/1/zpsfoLhHMxpMrtBuryEQ0F6HRcs.roa
File: zpsfoLhHMxpMrtBuryEQ0F6HRcs.roa (raw, json)
Hash identifier: E+PWLvLuAoRUxdSxYDpDipMB4zBF37R4VWQp/86hCWw=
Subject key identifier: CE:9B:1F:A0:B8:47:33:1A:4C:AE:D0:6E:AF:21:10:D0:5E:87:45:CB
Certificate issuer: /CN=32d5c9c85ffb7463945e8126570b7e2851b3fb7a
Certificate serial: 018895EFAA6E6DFD6AC769D44960AB1D7FB5
Authority key identifier: 32:D5:C9:C8:5F:FB:74:63:94:5E:81:26:57:0B:7E:28:51:B3:FB:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtXJyF_7dGOUXoEmVwt-KFGz-3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ad0351-006f-47aa-ab19-19c05f4f4a7b/1/zpsfoLhHMxpMrtBuryEQ0F6HRcs.roa
Signing time: Wed 07 Jun 2023 12:58:11 +0000
ROA not before: Wed 07 Jun 2023 12:58:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 2a06:ab00::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 08 Jun 2023 06:15:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:ef:aa:6e:6d:fd:6a:c7:69:d4:49:60:ab:1d:7f:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d5c9c85ffb7463945e8126570b7e2851b3fb7a
Validity
Not Before: Jun 7 12:58:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce9b1fa0b847331a4caed06eaf2110d05e8745cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a7:ff:ff:8f:d0:0e:d6:81:a6:f5:c0:61:28:
1f:7d:43:0d:56:42:7a:61:98:0b:bb:2c:51:f4:35:
92:4b:ef:6f:eb:6d:74:4b:94:ed:18:65:fe:1f:46:
4a:81:e0:3f:b5:c1:5d:e9:c8:f5:11:33:18:b5:1e:
5e:b2:d9:d4:a4:60:72:50:93:73:ca:8a:dd:13:f7:
b1:11:3e:98:61:13:6b:97:60:fd:68:83:75:f5:e1:
31:78:5d:d3:2e:99:b1:a1:95:68:c3:82:06:41:0e:
1f:c6:e5:00:bc:40:88:41:c8:df:2d:cd:c8:b0:0c:
1c:16:10:a5:01:41:51:19:67:4e:c8:1e:94:54:00:
d7:b7:e8:8e:54:d5:ef:ca:db:e1:ed:9a:c0:25:b4:
c6:96:3d:d6:c0:68:3b:7e:37:2c:6a:9c:11:c5:05:
42:49:77:22:2b:67:f7:e0:5b:57:56:44:07:76:8b:
75:ac:63:26:94:fe:e9:71:03:fa:be:5d:32:79:06:
a5:9c:d0:ab:ee:f3:02:44:22:a4:74:0e:eb:65:7c:
47:0a:b6:50:8e:af:60:94:9f:bc:1d:88:e3:43:2d:
f9:3f:cb:36:13:ea:04:02:14:bf:32:e9:32:69:0f:
40:92:e3:75:56:14:97:b3:6c:e9:ab:7e:c2:03:c3:
2b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9B:1F:A0:B8:47:33:1A:4C:AE:D0:6E:AF:21:10:D0:5E:87:45:CB
X509v3 Authority Key Identifier:
keyid:32:D5:C9:C8:5F:FB:74:63:94:5E:81:26:57:0B:7E:28:51:B3:FB:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtXJyF_7dGOUXoEmVwt-KFGz-3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ad0351-006f-47aa-ab19-19c05f4f4a7b/1/zpsfoLhHMxpMrtBuryEQ0F6HRcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ad0351-006f-47aa-ab19-19c05f4f4a7b/1/MtXJyF_7dGOUXoEmVwt-KFGz-3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:ab00::/32
Signature Algorithm: sha256WithRSAEncryption
8a:55:7f:10:17:85:d6:2a:18:ee:33:39:b2:5f:44:51:ae:c7:
70:b4:b3:21:5c:a0:b1:1b:12:69:8b:bf:24:64:e2:c8:af:53:
2a:85:98:09:ee:4e:ea:05:24:51:46:8a:b2:c4:52:fb:f3:06:
b5:11:24:d5:69:41:98:22:4b:e4:f0:34:ed:9f:e5:7b:6b:92:
cc:09:a2:3c:12:36:49:fd:34:9c:99:bc:d7:94:b2:cd:05:35:
f7:32:57:ab:81:b2:00:fb:d6:a4:bc:79:33:a3:30:82:00:b7:
55:9a:1e:0b:02:59:52:dd:4a:56:e2:60:35:c7:5f:25:00:fd:
a7:f6:84:5a:5a:32:69:84:ad:a4:66:01:01:bd:7a:86:4a:bd:
b7:a9:e6:b9:a9:28:a6:33:84:93:45:17:9e:2b:82:b0:4f:36:
25:85:b0:87:18:71:3c:8b:02:7d:09:6a:e8:32:af:76:c7:81:
41:3f:93:83:e8:9a:dd:a0:89:9c:f5:9e:57:17:7e:e7:cb:b5:
79:78:bf:6c:72:ce:30:ed:c8:75:ad:79:bc:4a:14:3c:ce:da:
04:e3:7a:5f:d9:9c:b5:12:08:4a:e7:33:d8:f4:77:56:66:e5:
77:86:d0:86:dc:69:7e:36:b4:f0:77:ee:3f:dd:61:46:2a:83:
b7:12:4f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:53 2024 by rpki-client on console-fra.rpki-client.org