Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/ZnuETx4k1-BZkPmbQnuahtuc4Os.roa
File: ZnuETx4k1-BZkPmbQnuahtuc4Os.roa (raw, json)
Hash identifier: XZKidDe/Ds0F3ET+lcuirNLnIyqg9rKilL/La0T9eqM=
Subject key identifier: 66:7B:84:4F:1E:24:D7:E0:59:90:F9:9B:42:7B:9A:86:DB:9C:E0:EB
Certificate issuer: /CN=217b7ab062bc828b348d05306e65354748b9d6d6
Certificate serial: 0189E3961B4CF2A9B7734B7DCB1485FED987
Authority key identifier: 21:7B:7A:B0:62:BC:82:8B:34:8D:05:30:6E:65:35:47:48:B9:D6:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXt6sGK8gos0jQUwbmU1R0i51tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/ZnuETx4k1-BZkPmbQnuahtuc4Os.roa
Signing time: Fri 11 Aug 2023 07:53:32 +0000
ROA not before: Fri 11 Aug 2023 07:53:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 2a10:cbc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e3:96:1b:4c:f2:a9:b7:73:4b:7d:cb:14:85:fe:d9:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b7ab062bc828b348d05306e65354748b9d6d6
Validity
Not Before: Aug 11 07:53:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=667b844f1e24d7e05990f99b427b9a86db9ce0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e4:93:5c:35:50:06:a1:bc:c2:24:d0:e7:33:
54:ac:09:b4:5a:aa:40:3d:f0:92:dc:ed:35:cf:c5:
45:1a:48:6d:8a:76:43:4f:d6:e3:b5:44:c5:a8:9c:
cd:e0:09:5d:57:5c:93:78:e1:67:50:0a:37:71:9a:
be:f8:ec:29:42:36:4e:55:17:39:15:72:6e:11:12:
cc:48:2d:bc:8c:60:35:d2:da:00:ed:c7:65:78:2b:
13:f3:a4:bb:20:60:4e:53:58:ad:f5:00:a1:6d:8e:
35:a7:2b:b2:3c:38:ab:4a:0b:3c:c5:a3:88:2b:78:
c6:22:5d:84:c8:f9:4a:fa:55:d9:f9:0a:3e:cd:2b:
0f:bf:e4:1f:f8:05:f8:11:c8:a4:0b:f6:4b:b2:93:
2e:3f:0f:8b:3c:02:ad:80:e0:55:73:34:50:38:31:
91:e8:ab:07:c3:84:47:84:8d:a1:37:7f:24:3d:bb:
c3:4a:2f:75:31:e4:4e:f6:ce:4b:ca:ae:6b:7c:56:
c0:17:48:5c:f1:fe:fd:ba:69:66:c6:b0:3b:e2:57:
56:fc:b3:c6:5d:78:1b:9e:0c:a0:52:2b:c6:84:cc:
37:5e:37:26:f7:1e:5d:03:4a:a8:be:d5:92:86:97:
bf:df:25:6f:de:cc:57:8f:be:71:85:59:34:f3:ad:
cf:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7B:84:4F:1E:24:D7:E0:59:90:F9:9B:42:7B:9A:86:DB:9C:E0:EB
X509v3 Authority Key Identifier:
keyid:21:7B:7A:B0:62:BC:82:8B:34:8D:05:30:6E:65:35:47:48:B9:D6:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXt6sGK8gos0jQUwbmU1R0i51tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/ZnuETx4k1-BZkPmbQnuahtuc4Os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/IXt6sGK8gos0jQUwbmU1R0i51tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cbc0::/29
Signature Algorithm: sha256WithRSAEncryption
59:b9:9d:24:c7:97:91:20:d1:d5:2b:38:d9:6b:b6:03:bb:82:
6d:0e:09:49:5e:8c:35:04:55:de:8e:f8:83:52:7b:8f:f5:33:
5a:89:bb:e7:38:e5:2e:a7:7d:63:e2:c5:a6:50:28:31:5d:2d:
dd:fe:9a:5f:86:6b:a6:80:01:5d:15:dd:c4:2b:b8:bd:b9:64:
f5:2f:53:62:76:19:a7:f8:ad:8c:26:9f:bd:5d:76:52:d3:c8:
09:93:d5:17:d2:b6:f3:27:60:43:91:61:bd:78:62:e8:23:32:
9d:06:30:a4:17:e4:da:55:e5:47:a2:1b:17:17:08:db:78:f8:
90:01:69:88:ff:49:db:ec:50:51:fb:5d:01:2f:3d:9f:ee:a7:
2f:18:40:a6:7d:a6:30:80:32:a8:8c:ca:4b:5f:73:c4:18:ec:
08:f6:25:6f:27:af:fb:b9:97:b8:d8:b0:62:d1:fc:63:7e:03:
e3:d0:4b:1b:ed:0f:6f:d3:31:85:26:84:e3:68:b7:d1:6d:cb:
55:43:b8:af:c1:16:57:2a:47:d9:cb:77:03:b5:75:60:32:e3:
47:5e:fc:05:8f:39:28:e4:c9:29:b1:ff:83:17:a0:35:c5:7f:
cb:7b:45:2a:63:9d:94:30:75:26:07:a0:26:bd:bf:27:4f:3e:
8e:09:aa:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:43 2024 by rpki-client on console-ams.rpki-client.org