Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/2ZIvSmcjTPuwcoUxQbCbqgbqvr4.roa
File: 2ZIvSmcjTPuwcoUxQbCbqgbqvr4.roa (raw, json)
Hash identifier: sxpc8EoELg34Q2qacSD1+uskadFr4NZBAIbTZIO7Abk=
Subject key identifier: D9:92:2F:4A:67:23:4C:FB:B0:72:85:31:41:B0:9B:AA:06:EA:BE:BE
Certificate issuer: /CN=a663abd479cbff76082304bf60d03adc3187d936
Certificate serial: 0185AC4A4C1B29E86A502631824D1362D228
Authority key identifier: A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/2ZIvSmcjTPuwcoUxQbCbqgbqvr4.roa
Signing time: Fri 13 Jan 2023 18:00:28 +0000
ROA not before: Fri 13 Jan 2023 18:00:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 262287
IP address blocks: 2a0a:8f40:5::/48 maxlen: 48
2a0a:8f40:6::/48 maxlen: 48
2a0a:8f40:4::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ac:4a:4c:1b:29:e8:6a:50:26:31:82:4d:13:62:d2:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a663abd479cbff76082304bf60d03adc3187d936
Validity
Not Before: Jan 13 18:00:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9922f4a67234cfbb072853141b09baa06eabebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4e:27:59:fe:bd:1b:c2:cd:92:9e:24:5b:c8:
c1:56:f7:e5:e8:82:70:6a:3c:21:ae:78:f3:2c:2c:
52:1b:17:ef:67:c7:2c:a6:0f:36:46:a0:0f:14:b3:
23:41:8a:06:89:9a:6c:e6:9f:14:0b:86:f8:e0:82:
15:f8:c5:b1:30:34:b6:78:2a:12:57:3c:d8:aa:de:
58:8b:8f:d0:9a:96:9e:26:7d:ce:c3:b6:81:f0:2d:
d7:ad:39:d1:46:e0:6e:4c:2b:97:14:16:c5:69:14:
99:db:18:ba:ba:1a:2c:5e:0c:70:52:43:72:bc:38:
c1:42:91:b5:2a:a7:ea:0b:ed:1d:30:c5:5f:4e:97:
0d:44:db:4a:33:60:91:0b:94:c0:91:9d:77:32:93:
59:10:fd:1e:ec:33:54:97:3d:c1:4d:fa:26:e4:d7:
bb:42:b0:6f:47:be:66:84:ab:50:aa:bb:03:62:61:
32:83:1b:b4:78:cc:39:8c:49:19:f3:43:e2:3e:3e:
a9:3f:84:f9:f9:92:2b:57:e8:24:da:80:d0:54:7f:
fc:01:e5:7b:b1:15:ce:1d:36:fc:61:c1:8d:e9:04:
39:9d:94:19:65:4d:f0:1d:ce:2d:39:ac:90:39:0a:
b1:cb:2c:a2:3b:cb:bc:76:7c:7a:c7:05:36:37:7c:
82:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:92:2F:4A:67:23:4C:FB:B0:72:85:31:41:B0:9B:AA:06:EA:BE:BE
X509v3 Authority Key Identifier:
keyid:A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/2ZIvSmcjTPuwcoUxQbCbqgbqvr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/pmOr1HnL_3YIIwS_YNA63DGH2TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:8f40:4::-2a0a:8f40:6:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
52:be:60:d8:8b:a2:49:e6:83:d5:94:80:1f:40:82:61:af:ee:
c1:2d:4a:c2:32:ab:a1:c4:00:09:9a:d6:fb:cf:a5:42:ce:78:
38:5e:e5:11:9d:02:15:cc:5e:31:d4:57:61:84:f4:da:f2:28:
1f:c2:b1:a5:d8:45:be:97:5a:da:89:93:0d:8d:49:7d:40:7d:
cc:60:83:0d:e9:82:fc:c1:40:f2:94:ad:b0:a5:67:66:47:3c:
eb:73:31:ce:71:81:84:11:d7:fe:a8:4c:76:a2:b4:a5:ac:94:
af:3b:dd:05:37:e4:19:aa:46:6a:aa:32:f1:39:ef:74:08:1c:
64:42:ff:1c:16:d0:14:fb:ec:ee:74:34:0a:67:67:52:18:99:
ef:da:a4:de:1b:7f:75:d0:1d:9f:a3:a9:b2:88:1c:04:c8:52:
f0:25:45:3a:83:64:ae:ad:52:35:84:b9:d9:f9:a6:62:48:21:
b9:1e:9f:9c:c8:54:9c:bc:3a:3d:10:2d:eb:5d:cc:97:0c:cb:
9b:60:6d:2d:06:2d:85:39:0c:23:99:64:8e:2f:0d:cf:34:2e:
be:6c:4a:02:48:3a:18:6f:e9:46:d4:b8:a4:0e:96:11:f8:92:
7d:41:03:41:5c:fc:83:7e:12:9b:09:10:b2:9d:2a:a8:31:1e:
76:1b:e0:1b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:28 2024 by rpki-client on console.sobornost.net