Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ZU_19jJg93z3m-OWQbH5WZyjtfA.roa
File: ZU_19jJg93z3m-OWQbH5WZyjtfA.roa (raw, json)
Hash identifier: t/eU0DONkhhwaudZS4rScTot184A6mVcc+Q6R1lxoyo=
Subject key identifier: 65:4F:F5:F6:32:60:F7:7C:F7:9B:E3:96:41:B1:F9:59:9C:A3:B5:F0
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA72B6A1B18D2E460BFF97E7B18E6A8
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ZU_19jJg93z3m-OWQbH5WZyjtfA.roa
Signing time: Tue 06 Feb 2024 18:21:18 +0000
ROA not before: Tue 06 Feb 2024 18:21:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199582
IP address blocks: 2a0f:b241:86::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:2b:6a:1b:18:d2:e4:60:bf:f9:7e:7b:18:e6:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=654ff5f63260f77cf79be39641b1f9599ca3b5f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3c:01:37:60:15:92:ba:cd:9b:cf:01:75:d6:
cd:37:29:a6:bc:ef:e9:d1:e1:d7:23:2b:12:8c:2f:
15:70:04:ff:1a:86:a9:f1:ad:9e:87:95:5c:d8:08:
eb:5d:e9:e5:9b:aa:8a:2e:22:bf:fa:a8:26:fa:25:
8e:63:59:6d:ba:8e:d6:ab:8d:2c:12:75:72:c8:df:
a1:bc:12:eb:3c:c2:0e:57:b6:37:69:8c:88:07:d7:
f1:db:ca:e2:c4:91:0a:d3:df:d9:3e:d2:d1:69:a0:
2e:7c:ba:47:de:4e:e2:2c:d8:08:15:b9:68:8a:cf:
50:93:59:f8:98:79:97:33:77:ee:2c:bf:e8:c2:57:
c2:25:41:a9:1d:f3:b2:7d:6e:f7:3f:10:b9:f3:12:
d8:84:87:13:04:a8:cc:1c:67:6f:9b:1d:41:7f:f7:
a3:17:b1:55:35:e2:d9:c4:55:fa:ef:3c:83:1a:74:
58:a6:14:65:c3:22:65:d9:ba:84:3c:4d:46:de:a6:
5b:ec:5a:ca:43:0a:be:db:ec:75:53:af:c2:1b:03:
29:78:5f:d7:50:87:20:b0:24:84:c8:27:97:96:00:
0f:54:c6:a8:77:a4:f3:fe:05:a8:73:08:62:fa:29:
8d:8f:9b:32:62:b3:3f:59:a3:66:38:f0:3e:28:15:
f2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:4F:F5:F6:32:60:F7:7C:F7:9B:E3:96:41:B1:F9:59:9C:A3:B5:F0
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ZU_19jJg93z3m-OWQbH5WZyjtfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:86::/48
Signature Algorithm: sha256WithRSAEncryption
6f:ba:9a:f2:00:1c:19:1b:a8:9a:f7:b2:4c:2f:2f:6a:60:44:
af:d2:ea:7a:22:3d:3d:8c:07:28:02:d8:e3:0b:1a:8d:68:cc:
df:94:a0:50:01:56:f3:23:99:bb:98:40:4c:95:a8:44:93:2c:
88:7c:7f:bc:91:32:a9:40:1a:36:af:cb:17:4a:ac:04:92:5c:
5d:d5:c3:4e:6b:52:7f:e9:96:5a:a8:ea:71:5a:83:7a:b1:40:
a6:26:ae:01:c5:53:32:dd:05:59:7d:ce:ed:7d:b7:89:cd:b7:
df:10:5b:8d:53:c3:d3:1b:dc:42:14:0f:d7:d1:ac:a7:a7:ec:
85:20:09:79:46:ae:74:5b:36:4d:30:d7:54:4d:e9:63:5e:80:
04:eb:0d:68:c4:94:6e:05:f8:e2:f2:27:1e:d0:78:d6:e0:fc:
4b:9a:a0:7e:3f:6c:c7:3e:8d:6b:c2:e6:fd:5c:37:58:2e:23:
16:f3:8a:0a:bd:18:82:d4:85:fa:c4:71:e2:4e:36:5f:49:f6:
54:f4:99:46:3a:7f:45:e6:2a:39:6f:90:ec:c4:a4:1b:68:74:
79:00:c8:e3:c4:9d:eb:51:eb:79:49:c6:20:aa:24:5d:85:09:
ba:de:97:61:57:70:4c:be:44:b0:17:56:1a:ee:cd:7f:52:81:
13:c2:d9:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org