Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/ZfB7zlzYmBgbx34_D2UAm6TpzCc.roa
File: ZfB7zlzYmBgbx34_D2UAm6TpzCc.roa (raw, json)
Hash identifier: SghmEQmPcG26Bt0tGpVB4y7twO9dMKa56+mjFq9CTtw=
Subject key identifier: 65:F0:7B:CE:5C:D8:98:18:1B:C7:7E:3F:0F:65:00:9B:A4:E9:CC:27
Certificate issuer: /CN=18f4ee88584d6dfd9e3aa9bc201c50f44e353d9c
Certificate serial: 01856EC223F2F1263660A6C5C5A092C7A14A
Authority key identifier: 18:F4:EE:88:58:4D:6D:FD:9E:3A:A9:BC:20:1C:50:F4:4E:35:3D:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GPTuiFhNbf2eOqm8IBxQ9E41PZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/ZfB7zlzYmBgbx34_D2UAm6TpzCc.roa
Signing time: Sun 01 Jan 2023 19:14:54 +0000
ROA not before: Sun 01 Jan 2023 19:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208723
IP address blocks: 2001:678:a90::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:23:f2:f1:26:36:60:a6:c5:c5:a0:92:c7:a1:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18f4ee88584d6dfd9e3aa9bc201c50f44e353d9c
Validity
Not Before: Jan 1 19:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65f07bce5cd898181bc77e3f0f65009ba4e9cc27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:34:f5:fe:5a:6f:0a:68:fc:6b:92:20:24:b4:
94:e9:5f:3f:b5:de:50:e1:ee:ff:9d:c8:92:1a:5f:
d0:2b:13:53:f0:6d:5d:b7:4d:1e:c1:33:ee:74:48:
2a:ed:10:c8:bf:a1:bf:38:0b:1f:60:74:77:2c:93:
bb:a6:ec:ad:94:30:cd:88:97:9d:60:7f:19:44:25:
8d:37:3b:d5:47:14:09:5c:02:9c:b8:a1:06:df:d3:
1c:75:45:77:2b:f3:1e:4b:c7:c5:ba:11:a1:df:d5:
e3:5e:9d:51:d6:a2:c7:fb:bf:09:02:67:d5:b3:56:
e7:c2:2c:c0:b3:c0:46:35:01:dd:e1:86:d4:0c:7d:
fe:f3:3f:50:64:24:40:73:fa:c9:e2:72:a5:db:6c:
65:7c:7a:92:66:0d:f9:7f:56:93:5f:c6:cf:de:2e:
e8:98:63:54:ae:d5:80:50:42:56:3c:5d:9f:e8:61:
98:23:2b:38:79:6c:8c:52:71:af:ea:21:2e:5a:e0:
d4:9c:bf:cb:bb:07:fd:e5:e2:60:f1:77:90:39:e8:
4c:33:2e:b9:8d:d9:81:fb:f7:16:8b:1f:c5:df:86:
45:9e:06:79:f8:86:f4:0b:c8:2a:1f:a8:06:45:e7:
27:68:3b:8c:0b:14:fb:8f:66:b3:ae:e7:fb:b2:76:
67:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:F0:7B:CE:5C:D8:98:18:1B:C7:7E:3F:0F:65:00:9B:A4:E9:CC:27
X509v3 Authority Key Identifier:
keyid:18:F4:EE:88:58:4D:6D:FD:9E:3A:A9:BC:20:1C:50:F4:4E:35:3D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GPTuiFhNbf2eOqm8IBxQ9E41PZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/ZfB7zlzYmBgbx34_D2UAm6TpzCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/GPTuiFhNbf2eOqm8IBxQ9E41PZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a90::/48
Signature Algorithm: sha256WithRSAEncryption
26:2c:e3:20:a4:74:31:22:89:30:b0:1f:e6:b5:ac:c2:5d:9d:
18:be:40:b9:af:af:dc:12:55:e5:8e:5f:29:f1:f8:15:a5:0d:
84:64:2b:71:26:15:41:e4:f3:34:21:05:91:18:37:e9:d8:aa:
92:8a:c8:57:d6:aa:0c:8e:50:92:8e:78:a4:af:70:c2:3b:e2:
d3:d0:d8:70:a2:d4:72:b8:0b:dc:97:02:70:19:e2:b3:63:52:
74:ee:fe:b8:a6:b7:27:7e:da:9a:3a:82:ed:3a:d2:ea:f7:5d:
2c:7b:d3:01:56:29:8a:6d:d5:4e:d2:94:11:bd:06:f7:43:a3:
1e:bc:a0:2e:df:41:02:d6:1c:f8:43:59:ce:5a:1d:1d:20:a3:
3d:14:f2:d4:fb:4c:94:77:e0:3d:f3:62:29:a0:68:03:15:3e:
c7:cc:a5:24:b2:6d:06:56:a3:fe:14:89:8c:23:e8:70:68:44:
6d:b7:44:b1:7a:78:be:59:86:cb:50:4e:49:03:45:29:88:a2:
de:d5:bf:86:13:62:d1:84:a4:cf:00:a1:91:31:e4:ef:96:30:
03:68:6b:98:36:99:c7:69:13:07:04:a7:0f:2a:3d:1f:0d:84:
50:83:48:7c:4d:20:d6:54:cc:6b:3b:6b:29:56:c3:5a:92:49:
48:ca:22:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:19 2024 by rpki-client on console-fra.rpki-client.org