Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/ZDr63W80L-WB3U2yRctXyMOxO0g.roa
File: ZDr63W80L-WB3U2yRctXyMOxO0g.roa (raw, json)
Hash identifier: /GJfJRH8yRDHRpTk9z6kC62JA+Ftofa1frltwB8/DrA=
Subject key identifier: 64:3A:FA:DD:6F:34:2F:E5:81:DD:4D:B2:45:CB:57:C8:C3:B1:3B:48
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 018570CBEC9100B545C8FD17D274AAC221C0
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/ZDr63W80L-WB3U2yRctXyMOxO0g.roa
Signing time: Mon 02 Jan 2023 04:44:50 +0000
ROA not before: Mon 02 Jan 2023 04:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22363
IP address blocks: 82.81.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:ec:91:00:b5:45:c8:fd:17:d2:74:aa:c2:21:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: Jan 2 04:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=643afadd6f342fe581dd4db245cb57c8c3b13b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b6:15:73:dd:df:cc:3a:16:65:4c:78:68:ca:
87:e9:0d:7b:7d:c4:13:6f:a6:da:b9:a7:82:aa:10:
23:c9:01:50:b0:66:b3:68:66:39:44:b7:d0:e9:b1:
40:e3:d1:d6:49:53:29:99:57:19:e5:0e:6b:9c:a8:
5b:bc:2f:03:f6:ab:64:6b:9f:17:d3:dd:5b:c0:b4:
46:4b:fc:c2:16:03:1c:52:b0:ce:27:7a:69:5e:32:
52:16:0c:fe:99:43:bd:c9:d5:4f:f1:c6:d7:d3:18:
d6:14:71:d7:bb:77:8f:ba:3d:28:67:93:92:07:bf:
ab:6f:6b:6d:a4:87:cc:fb:f5:bc:ec:3a:16:ff:06:
09:af:6f:f8:65:37:be:39:9f:fa:d6:d1:d3:7c:74:
05:f8:cc:22:24:1d:c6:b2:84:41:17:43:82:5f:78:
8a:c2:ef:6b:9a:41:a2:f7:5c:cc:0f:1f:74:a6:72:
d8:84:1b:30:67:65:eb:35:7e:8e:b2:bb:4a:57:43:
f5:44:f0:aa:8b:67:b5:88:a5:70:a6:fc:7c:a1:a7:
b6:c6:da:d2:b7:bb:3e:f1:9d:a9:5c:4e:96:e4:4e:
db:8c:4b:62:f0:ca:b5:11:f1:2c:db:51:be:19:e9:
3a:5e:12:cd:4f:c8:96:36:6a:c2:6f:27:6d:89:4f:
2d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3A:FA:DD:6F:34:2F:E5:81:DD:4D:B2:45:CB:57:C8:C3:B1:3B:48
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/ZDr63W80L-WB3U2yRctXyMOxO0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.81.93.0/24
Signature Algorithm: sha256WithRSAEncryption
25:c9:c6:7a:e3:ed:09:b6:10:98:82:38:8b:c3:54:d4:28:4d:
ad:c6:12:f4:11:97:e3:31:8a:07:b8:19:6a:1d:cb:f9:ba:0a:
0d:43:b5:70:e3:ba:60:e6:da:c3:1a:7f:f6:88:be:b0:6a:d7:
94:5f:2e:e6:fc:97:37:24:82:49:ec:78:9a:9f:20:be:4f:43:
7b:06:56:53:1c:94:e6:1e:e9:12:51:d9:4c:a6:b1:e9:e7:6b:
cd:e3:5b:b4:2b:ef:99:2f:a8:e7:67:29:c8:31:75:e8:f0:8f:
bd:ba:db:23:1f:79:39:e0:1d:09:cc:25:64:2c:b6:08:a3:a8:
9d:1d:df:f3:77:ca:c0:47:ee:e3:1b:bd:3a:8b:9b:6e:52:fe:
c8:4b:df:3f:09:fc:da:77:6a:1a:65:a3:68:4a:e8:e3:95:ac:
d8:70:e0:c7:18:9c:62:a3:81:88:eb:00:93:4c:82:14:76:41:
06:06:00:a4:d5:d7:2e:24:31:9e:26:ed:13:8b:9e:b0:92:dd:
b0:98:af:82:78:9e:b8:9d:69:d5:b4:fc:88:f4:67:75:c6:4e:
d3:cc:9f:1d:8a:7c:82:24:c1:5f:db:dc:0c:8f:c1:a7:21:15:
1b:e1:5a:87:d4:4f:cd:3c:14:97:29:c8:09:2b:29:71:93:91:
3d:26:3d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:57 2024 by rpki-client on console-fra.rpki-client.org