Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/zPoAtbr2be9pmyl7M34G4DVOLco.roa
File: zPoAtbr2be9pmyl7M34G4DVOLco.roa (raw, json)
Hash identifier: E6CC6e+/nRfGh9WTkkFjLbernMlEFv662MuHoJHPMlw=
Subject key identifier: CC:FA:00:B5:BA:F6:6D:EF:69:9B:29:7B:33:7E:06:E0:35:4E:2D:CA
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F429BC2BD258910FF9EA7295E0DD534
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/zPoAtbr2be9pmyl7M34G4DVOLco.roa
Signing time: Sun 01 Jan 2023 21:35:13 +0000
ROA not before: Sun 01 Jan 2023 21:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34088
IP address blocks: 92.204.152.0/21 maxlen: 21
151.106.32.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:9b:c2:bd:25:89:10:ff:9e:a7:29:5e:0d:d5:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccfa00b5baf66def699b297b337e06e0354e2dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5a:a1:7a:a1:c0:45:cb:e4:1e:c7:d4:4d:fd:
01:eb:1c:72:7b:4b:01:0b:8c:ca:46:ac:8c:c3:3d:
ff:cd:6d:c8:dd:7d:54:50:b1:a1:96:f6:29:dc:d1:
75:8f:16:d4:6d:68:e4:35:c1:04:49:27:a9:e2:36:
b0:33:9c:b8:b6:c7:96:e5:f6:a4:08:23:6c:2c:30:
e0:17:0b:ab:75:e7:99:c2:5e:97:21:98:d9:75:4a:
18:ed:51:d7:b1:09:9c:87:4e:4b:63:8d:23:dd:25:
e9:b1:8c:51:80:6a:34:22:e5:38:df:41:43:17:28:
70:97:03:f2:e4:ee:0c:6d:c9:55:7e:cd:eb:10:b1:
78:15:02:ed:20:aa:75:92:30:67:2e:d8:b2:52:2d:
7b:3a:a7:0c:e1:15:3d:6b:15:c4:1c:aa:9d:5e:e0:
0e:4a:08:b6:b0:86:84:a1:40:ef:84:e0:db:9e:25:
71:4a:de:88:de:c4:45:b1:23:20:69:7b:fa:c1:ab:
3e:4b:f2:aa:6b:3d:a9:4d:d4:bd:7f:ac:35:17:91:
b8:a5:21:ab:c2:59:d2:8f:ba:f9:a5:19:af:ac:03:
b0:c1:21:4d:0d:0e:79:ff:b0:53:57:cc:38:f8:2f:
9f:99:67:60:84:3b:40:5c:63:c6:e4:bb:0c:b7:fb:
dc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:FA:00:B5:BA:F6:6D:EF:69:9B:29:7B:33:7E:06:E0:35:4E:2D:CA
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/zPoAtbr2be9pmyl7M34G4DVOLco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.204.152.0/21
151.106.32.0/20
Signature Algorithm: sha256WithRSAEncryption
9e:75:99:fd:59:15:55:ca:52:05:f5:91:5f:95:25:33:51:83:
ca:c9:06:16:76:be:87:e9:5a:ec:56:6a:72:9c:5b:3d:3c:4f:
2c:f7:be:b3:7c:03:f5:c0:20:7c:0d:92:54:bd:19:7d:c2:58:
cc:27:b9:ec:06:15:f9:a9:dc:3b:77:77:ba:96:c3:17:b7:4c:
85:6b:22:4c:77:47:59:ea:9f:09:92:23:bd:38:f2:2a:af:9e:
37:c9:e1:79:f4:5b:7b:ed:13:f7:b2:f4:1e:76:33:5a:4c:b1:
3d:0f:41:6e:09:ad:3f:74:e2:a7:8d:a6:27:10:4b:08:a7:61:
0b:ec:fd:6b:97:6b:90:a8:62:69:a8:42:df:e8:30:d7:6a:ac:
a0:04:1d:44:b0:af:0e:af:7f:23:96:05:e9:36:c5:2d:1c:d4:
95:94:3e:ad:ca:82:88:50:51:2f:35:4a:75:0a:17:79:cb:f7:
4d:a4:b9:4d:91:cf:a5:a4:95:fc:29:a8:63:1d:8e:cd:a4:c0:
c3:89:2c:b3:34:b3:1b:b1:7f:d7:e9:53:c4:37:64:63:6e:64:
72:c8:6a:76:f3:c2:19:56:ab:f8:86:00:a5:d1:77:6a:7d:01:
c2:ef:5e:30:d9:d8:4c:7a:34:c8:b5:81:cf:8e:aa:be:b8:36:
3d:26:82:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:03 2024 by rpki-client on console-fra.rpki-client.org