Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aa06f5-0650-4c1e-b8a7-2b623232ff22/1/ZuUvfxvQp1R5ANBlLjqk_qDoY-I.roa
File: ZuUvfxvQp1R5ANBlLjqk_qDoY-I.roa (raw, json)
Hash identifier: bw2vLLsJhI0eq5QQEcWdmAY84p4PMAYVR7zn/DMFiFU=
Subject key identifier: 66:E5:2F:7F:1B:D0:A7:54:79:00:D0:65:2E:3A:A4:FE:A0:E8:63:E2
Certificate issuer: /CN=ca1cc5c7b1217ccbb155dddae826ce6f9fdbacba
Certificate serial: 01856D81CB33D61F8246A81C2130AA99CAAC
Authority key identifier: CA:1C:C5:C7:B1:21:7C:CB:B1:55:DD:DA:E8:26:CE:6F:9F:DB:AC:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhzFx7EhfMuxVd3a6CbOb5_brLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/aa06f5-0650-4c1e-b8a7-2b623232ff22/1/ZuUvfxvQp1R5ANBlLjqk_qDoY-I.roa
Signing time: Sun 01 Jan 2023 13:25:00 +0000
ROA not before: Sun 01 Jan 2023 13:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:aa47::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:cb:33:d6:1f:82:46:a8:1c:21:30:aa:99:ca:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca1cc5c7b1217ccbb155dddae826ce6f9fdbacba
Validity
Not Before: Jan 1 13:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66e52f7f1bd0a7547900d0652e3aa4fea0e863e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:42:a9:92:95:67:ef:8a:40:2d:53:13:86:f6:
14:b0:ca:f1:ea:b1:ce:e4:d1:cc:5c:eb:27:29:a2:
c5:0b:3d:0d:a5:99:b2:63:85:72:49:d1:fe:f0:aa:
58:66:34:ed:f9:31:09:93:8f:8c:c7:2b:00:cf:c5:
96:ef:34:ee:2d:05:2a:6b:8f:e5:28:47:f0:84:5e:
f1:ba:4c:87:ea:b7:c1:d3:58:a8:d6:65:ef:94:fc:
f8:0e:9e:4c:bf:9b:4c:33:74:9c:d3:44:75:4c:72:
d4:46:09:c1:6b:f8:fe:f4:c6:3f:af:ab:9e:81:7e:
35:69:9a:43:67:28:fb:3b:14:6b:0b:a8:72:8c:53:
8c:91:26:fb:b4:be:eb:12:ba:f8:23:b3:8d:1b:b7:
a2:ef:35:41:39:08:ea:a9:53:59:79:43:ec:c1:f9:
a7:12:5f:6f:e8:a0:21:80:8e:70:2b:dd:dc:7f:3e:
cc:eb:1d:0f:3c:90:73:a6:af:cd:4d:2b:e8:01:01:
9a:bb:1a:c4:58:00:cb:ab:4f:0c:29:1d:cb:8b:71:
86:50:5d:40:cb:12:5d:25:ef:24:32:b4:2e:7d:2b:
1b:81:80:69:e6:ce:1b:41:3e:8b:f0:01:d1:fe:1c:
7e:1b:57:8e:a6:5d:9e:bd:09:38:18:ea:25:23:bd:
aa:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E5:2F:7F:1B:D0:A7:54:79:00:D0:65:2E:3A:A4:FE:A0:E8:63:E2
X509v3 Authority Key Identifier:
keyid:CA:1C:C5:C7:B1:21:7C:CB:B1:55:DD:DA:E8:26:CE:6F:9F:DB:AC:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhzFx7EhfMuxVd3a6CbOb5_brLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aa06f5-0650-4c1e-b8a7-2b623232ff22/1/ZuUvfxvQp1R5ANBlLjqk_qDoY-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aa06f5-0650-4c1e-b8a7-2b623232ff22/1/yhzFx7EhfMuxVd3a6CbOb5_brLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa47::/48
Signature Algorithm: sha256WithRSAEncryption
08:ab:4a:e2:2c:88:0a:b9:ac:fc:4a:83:5d:15:a4:d0:b9:24:
a5:4e:05:b6:8e:f6:d6:9c:22:3e:77:bb:33:51:8d:95:d1:34:
30:c1:26:6e:cf:83:32:27:bc:21:db:20:18:2f:62:70:df:a5:
73:06:04:a0:b4:5b:1c:54:2c:bb:d3:52:6a:e3:57:4e:1c:6c:
bb:66:ee:83:7f:58:86:e5:05:42:01:a7:2d:34:b8:00:23:66:
3c:a3:f7:f3:59:fd:ba:bd:bb:14:ed:5c:24:42:e2:23:cd:3a:
3b:96:ce:e7:0a:bd:96:84:a9:a0:c5:06:2c:69:d7:ef:60:ff:
9e:98:43:b8:a5:0a:2b:f4:99:9f:a5:a7:34:1e:6d:56:c0:fa:
08:46:33:6d:ea:2d:e0:3b:d9:6e:21:c3:e4:58:39:9f:fb:b9:
65:84:d7:7c:5c:0a:e2:3c:c1:38:46:50:35:80:c2:27:69:00:
f8:88:1b:46:55:c3:c8:de:e4:eb:03:62:e9:8e:54:0e:0a:8b:
cb:14:26:8d:3e:cd:8c:39:5c:32:f2:d3:54:ee:88:84:a8:f9:
e2:ae:c8:3b:ce:17:b9:38:a5:7c:ce:c4:b8:4d:93:6b:53:c1:
b4:7c:26:a6:59:df:65:62:ce:d5:67:6d:06:01:be:cd:0d:e3:
1c:84:c4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:38:04 2024 by rpki-client on console-fra.rpki-client.org