Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/zg9RgRgR2uchLp5vM8dtLpIQ6hY.roa
File: zg9RgRgR2uchLp5vM8dtLpIQ6hY.roa (raw, json)
Hash identifier: 36MD+3OkJS44QftA2+0CP+wF0wpv1ycdUH2U6p4DwbY=
Subject key identifier: CE:0F:51:81:18:11:DA:E7:21:2E:9E:6F:33:C7:6D:2E:92:10:EA:16
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 018CC424624568DEA07B09DFB6F43A473CBC
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/zg9RgRgR2uchLp5vM8dtLpIQ6hY.roa
Signing time: Mon 01 Jan 2024 08:29:27 +0000
ROA not before: Mon 01 Jan 2024 08:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151673
IP address blocks: 2a0f:7803:fd00::/40 maxlen: 48
2a0f:7803:fc00::/40 maxlen: 48
Validation: Failed, certificate revoked on Fri 31 May 2024 15:27:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:62:45:68:de:a0:7b:09:df:b6:f4:3a:47:3c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Jan 1 08:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce0f51811811dae7212e9e6f33c76d2e9210ea16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c4:d2:58:6d:03:ef:68:cd:31:4a:1b:99:f5:
54:08:05:cd:5a:43:72:a5:4a:08:8a:ff:5d:a1:8f:
4d:0b:34:89:bd:10:e2:cc:ab:77:42:08:f7:22:3f:
7e:c1:3b:3e:29:f5:41:99:e7:d4:8c:c7:14:1b:83:
54:b1:37:24:98:e0:2e:8e:0d:c3:4a:d1:2d:fc:72:
0b:7f:fd:6c:cf:a3:9f:8d:1f:d9:e8:ac:07:61:6f:
f7:93:d0:5a:69:88:80:77:0a:8b:03:0e:c3:e1:f7:
ca:dd:37:74:39:6a:fa:c2:e9:27:4b:b2:50:01:2c:
8a:ae:cd:b2:8c:b9:c6:48:4e:81:2d:fa:99:22:7b:
37:90:9a:95:80:94:c2:56:b2:c1:80:96:8d:21:87:
69:a5:38:fc:d9:93:91:70:22:7a:6c:0e:f4:50:70:
c1:61:50:42:0e:44:47:e4:6e:76:9a:e2:ee:00:b6:
31:63:44:a0:41:a3:9f:92:55:51:32:eb:f8:fc:aa:
c5:de:23:13:5b:cc:06:62:01:f4:2c:fe:99:d6:e3:
28:06:be:27:d6:11:6f:36:4b:fa:01:90:c3:55:65:
55:6c:b0:6d:c5:c4:93:7a:e0:df:c7:5f:26:7a:4d:
65:05:cf:43:cc:2a:d7:cd:e7:68:0a:7a:d8:48:ce:
a4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0F:51:81:18:11:DA:E7:21:2E:9E:6F:33:C7:6D:2E:92:10:EA:16
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/zg9RgRgR2uchLp5vM8dtLpIQ6hY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7803:fc00::/39
Signature Algorithm: sha256WithRSAEncryption
bb:be:70:f9:32:a5:15:ba:48:20:e5:1f:95:8c:52:bb:26:93:
8f:06:cf:ab:e9:5f:23:94:8c:df:12:63:bd:5b:4f:31:64:2e:
f4:a4:72:56:71:3d:77:a3:5d:5d:f0:76:ba:8e:45:09:61:de:
7d:92:3c:dc:83:1a:12:68:1e:8b:fd:b6:27:79:8f:35:34:a0:
2c:08:e6:62:81:fc:52:c7:e3:0f:ec:c0:9f:b3:26:fc:f4:c7:
63:da:e9:25:bd:e6:42:cb:f0:a9:39:ba:cb:00:ed:98:d8:f5:
dc:e9:6f:77:71:ea:13:6f:76:3e:d3:15:10:e9:e3:3d:74:94:
5a:2f:2f:9b:4a:c3:5c:d7:7c:af:30:b9:f5:fd:5c:e6:e1:0a:
7f:60:02:90:9c:ef:2e:7a:90:87:e6:31:35:0e:bb:fc:b9:84:
b2:09:66:c1:f3:77:17:1a:56:43:36:99:bc:16:da:dc:9a:b0:
77:ce:3b:11:4c:45:c4:d3:03:d1:1c:c7:42:40:65:47:87:4d:
d7:7f:8c:e8:fe:b0:17:2d:f4:6d:da:2d:87:6a:28:20:11:ff:
cd:19:80:f9:d8:50:fa:ab:4e:92:43:a8:a8:cd:42:90:80:74:
aa:c1:30:df:16:24:f3:5f:9e:9b:d8:e7:b2:0e:03:02:5d:95:
49:ae:90:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:32 2024 by rpki-client on console-ams.rpki-client.org