Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0f4abf-4d90-4969-85ad-40159b5313d1/1/zjY5xgRZ7yK6_-SExbfNcYW0tJk.roa
File: zjY5xgRZ7yK6_-SExbfNcYW0tJk.roa (raw, json)
Hash identifier: Q4sUSBH1WLWsz08h1bnEQYEj9Gac6SAsm3cXEnZh0mo=
Subject key identifier: CE:36:39:C6:04:59:EF:22:BA:FF:E4:84:C5:B7:CD:71:85:B4:B4:99
Certificate issuer: /CN=95406691f2e374ee37a640492a364dfc53ba4412
Certificate serial: 018915A36778EE0FA13E7E38C9FA7880A126
Authority key identifier: 95:40:66:91:F2:E3:74:EE:37:A6:40:49:2A:36:4D:FC:53:BA:44:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUBmkfLjdO43pkBJKjZN_FO6RBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0f4abf-4d90-4969-85ad-40159b5313d1/1/zjY5xgRZ7yK6_-SExbfNcYW0tJk.roa
Signing time: Sun 02 Jul 2023 08:06:17 +0000
ROA not before: Sun 02 Jul 2023 08:06:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20712
IP address blocks: 2001:678:c40::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:15:a3:67:78:ee:0f:a1:3e:7e:38:c9:fa:78:80:a1:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95406691f2e374ee37a640492a364dfc53ba4412
Validity
Not Before: Jul 2 08:06:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce3639c60459ef22baffe484c5b7cd7185b4b499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a8:81:b5:02:1f:c3:93:4f:34:ca:05:2c:1a:
ff:2a:bf:a8:83:0c:20:1c:02:d8:2f:0a:ae:6c:e3:
f6:1d:93:1c:56:4a:a3:e4:28:38:1c:1d:23:a5:77:
37:3f:ac:82:34:51:3f:45:53:24:06:a8:cd:04:56:
43:26:5e:7e:47:22:c7:c1:6a:e6:6e:21:1b:e2:81:
e7:bb:d0:1d:0c:8f:e7:5a:6a:bf:8a:fa:07:ac:7f:
c5:c4:0b:f7:6e:f8:5b:d4:a0:df:5b:2a:ae:5b:bd:
c0:f8:32:1d:25:4a:b1:96:f4:16:34:ea:34:87:46:
b9:6f:47:ea:82:4a:36:0e:51:46:c0:44:bd:e5:57:
9e:73:62:f0:e1:26:c1:46:ac:28:c6:7f:45:b9:e5:
84:09:db:d4:40:10:44:71:4e:ed:3a:0f:30:53:dd:
45:19:2f:1a:43:66:1d:aa:dd:20:09:86:be:47:e8:
51:67:e4:76:7f:1a:8e:a9:40:aa:6c:fd:ab:3b:1b:
02:26:ac:35:03:a5:64:4d:64:e4:00:11:5a:25:39:
85:ca:87:e5:3a:a1:72:8f:dd:a6:48:8c:b3:0b:1f:
56:d1:91:ef:d3:6d:1a:c6:24:5e:a6:83:f5:41:fd:
7e:d8:da:ec:c2:b5:1e:be:75:0f:53:fe:4f:ff:d0:
23:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:36:39:C6:04:59:EF:22:BA:FF:E4:84:C5:B7:CD:71:85:B4:B4:99
X509v3 Authority Key Identifier:
keyid:95:40:66:91:F2:E3:74:EE:37:A6:40:49:2A:36:4D:FC:53:BA:44:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUBmkfLjdO43pkBJKjZN_FO6RBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0f4abf-4d90-4969-85ad-40159b5313d1/1/zjY5xgRZ7yK6_-SExbfNcYW0tJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0f4abf-4d90-4969-85ad-40159b5313d1/1/lUBmkfLjdO43pkBJKjZN_FO6RBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c40::/48
Signature Algorithm: sha256WithRSAEncryption
ce:de:e4:b1:e8:ab:50:0d:9a:a7:be:67:d1:50:10:03:0d:ae:
3f:64:5f:7d:b0:f8:82:22:8a:0c:af:bd:4f:2e:f6:59:10:1a:
ca:fc:5b:c0:9f:8a:3c:0f:62:34:a5:1e:a0:e3:8e:c2:50:57:
be:69:07:29:15:dc:e4:53:25:fe:ea:d2:58:63:ae:15:f3:6c:
25:60:7c:c7:6a:3b:b9:b7:b2:9d:b6:b7:54:d7:09:0a:ec:d3:
6f:ec:cc:1b:b8:22:23:2e:b0:3e:ad:52:13:ea:a8:7c:ca:11:
a3:71:8d:5e:13:27:08:60:71:26:59:1a:d5:d8:36:5f:cb:68:
63:65:18:55:35:03:7f:f6:47:74:16:6c:5b:94:91:72:76:eb:
cd:40:f1:5e:54:2a:a1:c2:4e:f1:9b:73:32:71:e1:d3:d1:56:
d1:ac:34:6e:db:8a:b7:35:4f:38:e1:05:41:d3:27:7f:c0:6f:
53:de:af:a8:bf:3b:54:aa:65:3e:fb:00:5d:6c:a8:13:85:3b:
06:29:9a:3f:7c:16:a2:eb:27:0e:54:92:12:0a:b6:64:9a:e5:
65:e5:72:50:bb:14:dd:42:be:97:bf:50:35:ee:08:d2:31:51:
4f:a7:80:0b:97:4c:b3:46:2a:b8:14:7a:89:56:c9:37:06:7e:
b6:6b:b9:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:36 2024 by rpki-client on console-fra.rpki-client.org