Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/zUqiuiaUd03blauvRI7vLmqj3HE.roa
File: zUqiuiaUd03blauvRI7vLmqj3HE.roa (raw, json)
Hash identifier: DMprhyaffeCfd7VneSOU3aCRcb8XFRgsSdChfGG4f7o=
Subject key identifier: CD:4A:A2:BA:26:94:77:4D:DB:95:AB:AF:44:8E:EF:2E:6A:A3:DC:71
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C28DC18DEB5ACA951CD7C0E7378EA
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/zUqiuiaUd03blauvRI7vLmqj3HE.roa
Signing time: Mon 02 Jan 2023 05:55:00 +0000
ROA not before: Mon 02 Jan 2023 05:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62410
IP address blocks: 2a0e:d604::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:28:dc:18:de:b5:ac:a9:51:cd:7c:0e:73:78:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd4aa2ba2694774ddb95abaf448eef2e6aa3dc71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ff:c1:a5:85:50:e8:e9:13:ca:b0:1a:e2:fc:
7a:1a:6d:74:43:30:e6:da:af:ad:9a:aa:90:97:d2:
aa:e2:0d:80:25:9f:28:0f:44:fe:6a:e7:dd:52:80:
3d:a6:b5:47:9c:ed:0b:80:c1:74:ba:00:ed:5f:6a:
7c:39:78:64:43:02:81:67:a8:c5:45:70:52:c7:59:
4e:c9:cc:8b:bd:72:ca:b0:a8:76:9b:63:d3:7e:cb:
d2:21:6b:f2:e7:d7:23:7e:c5:dd:7d:8e:3a:f3:68:
a1:cf:ec:6f:3e:51:6f:45:c0:8d:60:9e:b9:03:bf:
9d:ba:e5:00:27:1d:4f:22:0e:a6:8b:87:71:83:18:
5f:dd:46:8c:5f:db:e2:9e:d5:77:bb:31:45:66:9a:
fa:bc:ff:3f:2d:59:e7:63:32:02:f5:3c:28:09:79:
c6:65:ed:80:cb:a3:ba:34:70:05:32:ab:40:ed:50:
22:1b:da:2d:a4:ed:70:cf:b6:a8:98:fb:98:13:cd:
37:c1:b1:d2:c5:db:64:b3:2c:ea:cd:cd:00:e2:ae:
70:ea:03:1b:3c:22:f3:24:7d:ca:5a:cd:f0:b9:37:
7e:4f:f9:49:f3:eb:9a:24:26:27:cb:f3:cc:f9:54:
53:95:46:5b:95:19:67:8e:cd:53:34:89:86:04:b4:
d1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4A:A2:BA:26:94:77:4D:DB:95:AB:AF:44:8E:EF:2E:6A:A3:DC:71
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/zUqiuiaUd03blauvRI7vLmqj3HE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d604::/48
Signature Algorithm: sha256WithRSAEncryption
99:f5:68:6e:82:27:67:53:57:4f:28:d4:98:2a:f6:df:ac:00:
ba:12:30:91:23:ef:e0:0f:b5:c9:92:5d:f1:41:17:03:20:8d:
ac:35:d7:36:e9:d1:72:b7:cd:35:b5:1d:ca:23:76:49:ef:45:
e2:31:7b:15:90:bb:95:1a:7c:68:1b:10:67:88:ea:19:7f:3b:
1b:43:fb:de:0c:2b:ed:6f:b8:ff:9f:80:57:6c:34:14:b6:aa:
ad:a1:ec:16:00:20:1f:01:86:03:07:a9:9b:6b:1f:90:c0:72:
fd:8b:fd:44:c9:26:48:8e:61:e2:02:d2:12:f1:2e:77:09:b1:
fb:a7:e8:84:1a:0b:30:a0:35:44:fb:a9:10:d0:22:d3:bf:f9:
e5:5f:de:18:48:53:9a:d7:5c:4d:4d:43:ab:2f:3e:bc:7a:5b:
ac:a0:8c:4c:bf:20:8a:1d:fa:e0:74:1c:5f:2b:b1:05:82:29:
59:de:e0:79:a4:46:af:55:2e:a2:ff:45:da:27:56:90:b4:16:
7e:3f:f2:9d:5e:6e:8a:44:11:96:c5:e3:a6:46:2b:1a:a8:88:
bb:70:c2:eb:33:ed:dd:9c:1b:b9:53:a5:0e:ad:d4:26:31:61:
b9:f6:bf:86:e2:43:ac:1c:08:f9:0c:56:2e:45:4b:5a:f9:c6:
ea:3b:67:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org