Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/NzmK7ZJ_6eQF9S5k9SWeAcwus0s.roa
File: NzmK7ZJ_6eQF9S5k9SWeAcwus0s.roa (raw, json)
Hash identifier: GYuRmwu3hFt1cLnLL7rqcZIpI2Nh+JbFXryrAIPXWqQ=
Subject key identifier: 37:39:8A:ED:92:7F:E9:E4:05:F5:2E:64:F5:25:9E:01:CC:2E:B3:4B
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018C4BBD84EE68311BDC72DF2B6158AEB8BC
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/NzmK7ZJ_6eQF9S5k9SWeAcwus0s.roa
Signing time: Fri 08 Dec 2023 23:22:40 +0000
ROA not before: Fri 08 Dec 2023 23:22:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31400
IP address blocks: 2a01:4d0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 09 Dec 2023 12:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4b:bd:84:ee:68:31:1b:dc:72:df:2b:61:58:ae:b8:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Dec 8 23:22:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37398aed927fe9e405f52e64f5259e01cc2eb34b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:56:f9:9b:f4:60:64:2f:4a:ca:0c:c0:6b:3d:
8f:4a:eb:7b:ca:6c:e0:9b:a6:ec:8d:7c:1b:30:79:
36:18:02:09:19:93:3a:7b:2d:f7:88:c8:0f:63:d6:
c8:bf:16:a0:2f:b4:44:70:78:0e:25:6f:97:4e:c1:
4b:c3:01:4a:0a:5d:1c:ec:fa:6b:93:73:12:c8:90:
ee:88:91:2b:7c:c3:e0:86:0f:bf:69:38:03:6c:b6:
b1:1b:23:c0:f2:4d:61:80:17:b9:f4:10:d0:d9:a1:
76:b4:db:7b:29:bf:fa:53:82:28:59:be:47:c0:86:
e2:d3:e1:69:82:6e:9a:fa:b3:eb:46:42:ee:c8:1d:
50:9f:11:33:30:79:80:25:7a:1c:97:01:bf:59:f1:
2d:7d:49:9d:34:e9:6d:31:6c:65:38:1b:c4:a2:a3:
f3:54:35:c5:1d:ae:dc:c5:b0:af:54:fa:1d:c8:b5:
f1:f1:1b:a9:d5:0b:70:41:89:38:de:af:89:86:32:
ee:52:1b:e6:dd:d4:ff:a2:2a:9e:f6:9d:99:75:2c:
96:63:ce:62:f4:c9:77:d8:8e:09:e6:2e:9b:38:c4:
e5:cf:3e:3f:2b:4c:9b:01:4c:1c:d2:2a:6e:4e:23:
6a:35:05:86:0c:91:b6:bd:10:49:c1:8b:c0:d5:2d:
d9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:39:8A:ED:92:7F:E9:E4:05:F5:2E:64:F5:25:9E:01:CC:2E:B3:4B
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/NzmK7ZJ_6eQF9S5k9SWeAcwus0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:4d0::/32
Signature Algorithm: sha256WithRSAEncryption
66:f5:98:bb:40:24:e1:bb:6d:c2:a1:87:10:0e:a8:79:fb:ac:
0b:0c:f4:e1:5c:6b:8e:de:92:e2:6e:b6:ba:73:9b:b7:39:ac:
dc:32:05:5c:6e:e2:fe:5b:84:bc:ea:3b:4f:a3:bc:05:09:10:
66:59:61:e9:74:f6:2d:11:61:61:0b:ab:c8:1f:10:13:bd:18:
dc:71:20:77:e5:ca:dc:9e:27:90:bc:14:44:16:32:93:eb:dd:
c6:4b:72:91:20:a2:24:bd:90:a9:72:3a:8b:28:f3:82:c5:bc:
a2:58:f9:30:a1:ad:d8:5f:74:36:41:55:4b:4b:2b:9f:f9:b8:
d6:03:58:0f:ee:22:1a:67:3b:8b:c8:07:ec:50:55:da:fd:8c:
e1:57:e7:3d:37:7e:fa:5e:2c:b1:79:05:27:6e:9c:c8:53:af:
70:68:3c:2e:71:7a:a9:8c:64:11:7c:87:6b:6f:08:85:51:a7:
59:76:14:35:8e:f6:d6:26:d4:f4:4b:81:74:1d:0d:9d:6e:f3:
c8:c3:ce:16:41:05:3f:11:2f:46:aa:dc:01:67:15:b4:19:3a:
1b:70:bc:72:58:64:72:62:68:06:0c:5e:24:ab:16:fc:6b:75:
51:83:d8:8e:10:08:1e:2e:6a:e4:7c:09:a8:5d:bf:f5:63:23:
d5:f3:3c:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org