Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/MyZnkObaxqwZygiEaTzB6hY89Mo.roa
File: MyZnkObaxqwZygiEaTzB6hY89Mo.roa (raw, json)
Hash identifier: pzlthAdlfIu/124jZHq6rFDaHaBaRQCIRvYiPKZvQj4=
Subject key identifier: 33:26:67:90:E6:DA:C6:AC:19:CA:08:84:69:3C:C1:EA:16:3C:F4:CA
Certificate issuer: /CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Certificate serial: 01856F024D2293FDE1F4C165F667555C570B
Authority key identifier: 36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/MyZnkObaxqwZygiEaTzB6hY89Mo.roa
Signing time: Sun 01 Jan 2023 20:24:59 +0000
ROA not before: Sun 01 Jan 2023 20:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208024
IP address blocks: 2a0c:2f07:72::/48 maxlen: 48
2a0c:2f07:73::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:4d:22:93:fd:e1:f4:c1:65:f6:67:55:5c:57:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Validity
Not Before: Jan 1 20:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33266790e6dac6ac19ca0884693cc1ea163cf4ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:62:c5:d6:35:71:54:ae:ea:40:87:97:82:da:
e5:51:64:e7:b7:80:2d:aa:e5:ab:b1:11:64:26:dd:
a1:d9:01:af:aa:4f:cb:8a:23:f0:31:1e:46:97:fa:
8d:23:7f:30:f3:6b:d9:fe:c0:da:e7:17:55:c0:b6:
56:d9:db:8c:b1:43:c8:15:13:23:d0:b7:a6:63:fa:
bb:d2:af:96:a8:83:c3:0e:63:ba:b5:bf:79:bb:bc:
9b:99:94:30:04:e7:5b:d9:6f:85:64:20:97:41:8d:
52:b5:3d:6a:f9:64:2d:09:03:d6:ea:d7:8f:cc:39:
60:a0:24:0f:1d:a8:ca:9c:74:94:73:34:c2:90:37:
1b:5e:19:b2:2b:e0:e2:51:9f:6a:81:36:ef:0a:b8:
bf:c3:26:bd:4a:df:51:62:9c:b2:69:b0:67:bc:9c:
ad:bb:ea:07:cd:94:a5:d2:2b:d3:68:e4:9e:d7:2e:
c4:64:b6:2e:c4:14:8b:62:44:cc:89:c9:3c:65:1e:
4f:b7:13:d9:05:6b:f0:69:3a:39:0c:a8:91:2a:50:
db:99:1b:1f:cd:29:21:58:15:b9:bd:cf:a5:c6:98:
44:bb:fd:95:e7:5e:65:c3:d5:30:81:d9:c4:f0:13:
1e:64:51:6b:e1:64:ef:dc:9a:11:6b:68:6d:b2:ed:
fb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:26:67:90:E6:DA:C6:AC:19:CA:08:84:69:3C:C1:EA:16:3C:F4:CA
X509v3 Authority Key Identifier:
keyid:36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/MyZnkObaxqwZygiEaTzB6hY89Mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:2f07:72::/47
Signature Algorithm: sha256WithRSAEncryption
38:0d:95:fa:ca:36:de:fd:67:7b:1c:b3:89:63:0d:58:be:bf:
e2:e1:75:9f:27:e0:8e:a3:1c:10:ce:10:3e:56:fb:ab:b7:4e:
2b:1d:e2:a8:98:d6:ba:ef:e1:dd:54:d2:54:b4:f8:dc:e2:c9:
6e:2a:08:4c:72:36:49:cf:46:26:c6:1b:73:9a:c3:bf:c7:e0:
c5:1a:db:84:9c:41:fb:3f:33:97:77:9d:95:b2:6b:03:f2:ed:
73:25:3f:e6:71:b4:cb:c0:98:dd:7a:00:d4:06:71:b1:0c:bc:
5e:63:85:eb:99:23:e5:5a:3b:8c:87:a0:fa:8a:c7:90:69:0c:
75:53:91:a4:88:5f:0a:c7:c4:52:58:91:3d:66:77:cd:e1:88:
14:f3:70:ea:c1:7b:2d:92:a6:97:4a:9b:a4:5f:73:33:75:63:
f6:b9:b7:96:12:6b:30:77:87:30:f3:2e:be:43:1f:cf:2f:14:
3f:09:2f:26:ee:17:89:d7:ec:cc:fe:14:76:c1:f9:87:7d:3a:
37:72:05:24:d7:95:02:81:46:91:7a:03:a6:e9:13:a3:12:93:
bf:e7:c7:8f:73:80:85:b0:33:85:68:41:40:64:fa:72:c1:c6:
2a:3b:21:2f:09:0a:51:e7:c6:72:8e:2b:6a:b1:f5:5d:ce:8f:
88:53:12:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:47 2024 by rpki-client on console.sobornost.net