Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/Znw9cKnAk6aPQC6E3r8A6hWFQ3s.roa
File: Znw9cKnAk6aPQC6E3r8A6hWFQ3s.roa (raw, json)
Hash identifier: efeRsQlLSgUWF3pOwCMDWjm+T8r5BjrxoxwaVsAEnmU=
Subject key identifier: 66:7C:3D:70:A9:C0:93:A6:8F:40:2E:84:DE:BF:00:EA:15:85:43:7B
Certificate issuer: /CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Certificate serial: 0185730CD14E36A88BFF00C17C26B7F52812
Authority key identifier: 82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/Znw9cKnAk6aPQC6E3r8A6hWFQ3s.roa
Signing time: Mon 02 Jan 2023 15:14:57 +0000
ROA not before: Mon 02 Jan 2023 15:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207551
IP address blocks: 212.6.53.0/24 maxlen: 24
2a10:2080::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:d1:4e:36:a8:8b:ff:00:c1:7c:26:b7:f5:28:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Validity
Not Before: Jan 2 15:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=667c3d70a9c093a68f402e84debf00ea1585437b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:51:c1:b4:39:0c:d5:d1:d4:46:b2:0a:c3:ce:
ad:7f:11:e3:75:f9:02:93:f3:c2:1c:5b:f3:9c:4c:
cc:e4:f8:51:b5:70:48:0f:9f:27:4c:12:46:84:7b:
ba:c6:f5:76:e0:02:94:04:61:4f:be:b4:da:ae:e8:
46:f8:03:ff:4c:83:61:3f:61:8e:9e:ce:28:1a:58:
0b:8c:56:28:55:ec:0b:f8:14:d4:1f:d5:df:35:c5:
d3:4a:95:6d:35:2d:b1:2f:3a:69:4a:69:4a:70:36:
3a:a1:97:f3:6d:d7:26:b8:56:89:c1:30:44:57:1d:
26:cc:fe:0e:5b:4c:19:d3:88:3e:c9:e9:55:a4:98:
37:e9:a2:ca:95:6f:c7:2a:d8:cf:21:7a:92:94:82:
df:ec:d5:da:3d:6b:62:47:91:77:b2:95:8a:de:fb:
f1:7f:e1:8c:9c:01:d8:c6:b1:ae:63:b4:27:98:c8:
6c:b2:e9:c2:de:e9:52:3b:f3:43:4d:c8:9b:9e:aa:
65:8f:9b:27:56:90:75:d2:1d:63:c4:78:21:b6:02:
74:b8:17:a4:27:da:c8:c5:b5:f5:11:4f:be:3f:0e:
7d:c0:37:ea:1d:7c:4f:55:c4:05:ee:7f:c1:59:4e:
43:b8:68:d9:ed:f6:62:4d:52:c8:73:68:09:c7:08:
08:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7C:3D:70:A9:C0:93:A6:8F:40:2E:84:DE:BF:00:EA:15:85:43:7B
X509v3 Authority Key Identifier:
keyid:82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/Znw9cKnAk6aPQC6E3r8A6hWFQ3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.53.0/24
IPv6:
2a10:2080::/29
Signature Algorithm: sha256WithRSAEncryption
9a:f2:d1:9b:42:14:33:66:42:29:e6:c8:34:bf:8a:c3:b3:99:
46:c9:6e:0a:b0:cb:ac:33:c4:fc:9a:4d:c9:15:3c:60:43:46:
ce:8e:14:93:1a:bf:17:fc:90:1f:f3:b1:8f:71:57:11:ee:c3:
e5:42:3c:48:af:02:de:9a:1a:eb:89:3e:a4:e0:e3:5d:f0:e8:
2a:55:93:fd:83:b6:9f:56:9e:1f:af:97:65:f1:b0:6e:c7:06:
dd:8b:26:3b:53:12:43:be:e8:68:a4:fc:31:08:ed:87:74:b3:
ca:a6:23:0b:75:54:38:85:8c:97:cc:91:03:8f:aa:a4:c4:45:
65:6c:ee:f8:c2:fd:1d:ff:74:0c:da:ad:84:d9:b3:5b:74:e7:
b0:8a:0c:fd:96:a5:e8:9d:a3:16:91:bd:f0:28:19:4b:44:e4:
8f:5a:2e:58:e7:c4:a3:e3:14:c5:b7:83:1f:12:fc:d4:9f:01:
0b:ef:b9:c5:17:a5:b2:53:55:16:6b:04:2c:c3:c9:fd:fc:8e:
4f:42:41:d6:bf:64:1a:81:c2:90:d0:bc:c5:23:a8:23:bb:3b:
f5:23:31:31:19:73:73:32:db:2f:7a:a3:3c:a7:37:36:16:03:
b8:7f:5a:af:dd:76:51:a0:0b:fb:57:79:1f:8a:4f:78:a7:95:
0b:27:dd:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:33 2024 by rpki-client on console-ams.rpki-client.org