Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/8918fa-f4ab-4b19-9453-97c73be93bcd/1/Zg2pV3pC_NZ3D1dH4jxgfZNw3dc.roa
File: Zg2pV3pC_NZ3D1dH4jxgfZNw3dc.roa (raw, json)
Hash identifier: B/x+tvvIVw7IcenasqmpzXLlJJFKlqhnFq5UHcutQ6Y=
Subject key identifier: 66:0D:A9:57:7A:42:FC:D6:77:0F:57:47:E2:3C:60:7D:93:70:DD:D7
Certificate issuer: /CN=d6c480bac972607fdab605593a84b8364c6ab1b0
Certificate serial: 01856EB8F254C2EA0A457864197D025CE907
Authority key identifier: D6:C4:80:BA:C9:72:60:7F:DA:B6:05:59:3A:84:B8:36:4C:6A:B1:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1sSAuslyYH_atgVZOoS4NkxqsbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/8918fa-f4ab-4b19-9453-97c73be93bcd/1/Zg2pV3pC_NZ3D1dH4jxgfZNw3dc.roa
Signing time: Sun 01 Jan 2023 19:04:52 +0000
ROA not before: Sun 01 Jan 2023 19:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64449
IP address blocks: 2001:678:1d4::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:f2:54:c2:ea:0a:45:78:64:19:7d:02:5c:e9:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6c480bac972607fdab605593a84b8364c6ab1b0
Validity
Not Before: Jan 1 19:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=660da9577a42fcd6770f5747e23c607d9370ddd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:81:ca:28:e3:e0:01:7e:a3:5b:47:86:d4:8b:
e4:6f:be:22:72:55:92:44:0c:c4:4d:9a:76:2a:2c:
48:a8:88:d8:74:ad:e5:74:2c:18:e9:ee:1e:a4:1f:
d3:f3:94:42:05:29:57:7c:1f:28:6f:b7:fe:e1:90:
f6:1a:66:4b:14:bf:13:ce:a6:77:70:fc:44:00:14:
c9:8e:bd:82:c4:c8:b5:c3:0f:1c:79:6f:b7:2c:30:
8d:18:82:93:7b:04:f3:2d:39:11:3d:ea:2f:c2:5a:
91:d6:90:d7:4e:f2:a8:93:dc:91:31:a8:8b:21:f8:
65:f4:e9:eb:95:16:ad:f2:e0:9a:04:47:58:61:e3:
58:06:04:58:e7:35:9f:a8:c9:3d:84:89:5b:39:02:
c8:2f:b0:20:9a:96:9e:f5:bc:82:25:f7:55:35:01:
15:d6:9b:4b:4b:4a:9b:78:8f:57:92:c9:7e:74:28:
5d:49:43:b1:8d:19:62:d3:dd:55:e4:71:bb:51:66:
93:68:13:bb:df:be:5c:e3:0d:eb:df:9b:80:fe:da:
b0:fa:5e:76:20:d2:3e:fe:ac:bb:e5:a6:a9:b7:46:
fa:4b:6f:d1:66:6e:5f:56:e4:f5:25:0e:30:49:56:
52:99:ae:be:31:3a:17:29:a6:18:12:1a:0c:b6:94:
c5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:0D:A9:57:7A:42:FC:D6:77:0F:57:47:E2:3C:60:7D:93:70:DD:D7
X509v3 Authority Key Identifier:
keyid:D6:C4:80:BA:C9:72:60:7F:DA:B6:05:59:3A:84:B8:36:4C:6A:B1:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1sSAuslyYH_atgVZOoS4NkxqsbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/8918fa-f4ab-4b19-9453-97c73be93bcd/1/Zg2pV3pC_NZ3D1dH4jxgfZNw3dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/8918fa-f4ab-4b19-9453-97c73be93bcd/1/1sSAuslyYH_atgVZOoS4NkxqsbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:1d4::/48
Signature Algorithm: sha256WithRSAEncryption
b2:76:ef:e4:4a:a4:4d:66:9d:6e:66:f1:12:52:a0:7e:b0:0a:
bb:cd:bc:3e:15:6f:8d:93:4a:08:8a:4f:26:b0:bf:c7:e4:53:
e0:7a:01:17:cc:08:97:80:23:76:59:03:3c:be:73:25:e8:65:
e6:5b:8c:b8:cf:8d:2b:0f:1f:f2:2e:cb:a9:a5:13:ca:1e:70:
05:ae:57:3b:94:92:34:62:fc:2f:2d:a9:29:e2:e5:39:63:3c:
aa:8a:84:f1:95:06:c0:72:5b:28:fe:1c:9e:86:5f:cb:74:e2:
c5:9b:fc:a9:16:79:b8:2a:9e:41:52:fa:2b:62:10:7e:f3:99:
7e:7d:f7:bf:32:f8:03:54:be:5d:34:95:b5:2a:8b:3f:f9:d0:
4f:f8:27:8a:e8:a3:aa:37:a3:fa:d8:e6:35:45:09:7a:b7:0f:
f5:bc:15:bc:43:ca:fe:0c:41:d7:de:dd:86:1e:fa:b8:8b:66:
be:7e:52:ac:9b:8f:ad:e7:f6:74:a5:c9:53:cf:3c:c1:b6:87:
a7:c1:9a:2d:1f:25:c2:d9:9e:e5:51:50:ed:c8:89:4a:08:39:
c8:d5:cc:84:cc:09:6f:da:8b:d7:56:aa:7f:01:49:9a:8f:ba:
5e:e8:24:33:23:16:e1:96:93:0d:90:f4:0c:0c:94:0d:0d:5b:
be:b1:ea:09
-----BEGIN CERTIFICATE-----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Generated at Tue Aug 29 09:32:44 2023 by rpki-client on console-fra.rpki-client.org