Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/ZtSt2TOd4n-qisxAsuAj3wjZFgg.roa
File: ZtSt2TOd4n-qisxAsuAj3wjZFgg.roa (raw, json)
Hash identifier: XzeXI9a/Amr5rFL73yPq13FU416AMAPClPmQUGugVCE=
Subject key identifier: 66:D4:AD:D9:33:9D:E2:7F:AA:8A:CC:40:B2:E0:23:DF:08:D9:16:08
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 018570CBEE22999A35229BB7EA9C39DF3F9D
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/ZtSt2TOd4n-qisxAsuAj3wjZFgg.roa
Signing time: Mon 02 Jan 2023 04:44:51 +0000
ROA not before: Mon 02 Jan 2023 04:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201073
IP address blocks: 82.80.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:ee:22:99:9a:35:22:9b:b7:ea:9c:39:df:3f:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: Jan 2 04:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66d4add9339de27faa8acc40b2e023df08d91608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d3:c9:2c:6e:03:93:59:5b:04:51:8b:45:fa:
c8:6a:48:ea:d2:35:0c:80:be:69:0a:f8:b7:24:9a:
b4:b1:34:b5:2e:01:96:3f:bb:ae:62:6e:68:30:73:
15:7e:85:de:ba:20:39:02:4f:6b:a1:97:58:8f:6d:
ff:1c:59:a9:1e:29:6d:1d:54:d8:23:82:1f:e5:5d:
16:3a:f6:b1:fb:84:17:a0:1f:0f:4c:c7:72:f4:43:
b5:ca:f4:dd:26:ac:7d:f2:d9:71:19:8b:2d:0c:d6:
9d:7c:87:af:35:a7:93:ae:b7:f3:bf:45:77:65:ae:
70:33:cd:7a:aa:c3:ff:cf:02:8d:84:3e:f1:f6:ab:
34:74:cc:b2:96:d4:bb:3b:96:3d:de:13:55:7d:68:
21:d0:fe:d9:b9:c7:60:16:15:d2:05:a4:a0:93:a5:
a3:21:ab:18:36:42:47:bf:d3:79:fc:77:20:f0:b4:
87:c3:07:1d:d1:50:f1:a6:81:4a:29:79:6f:2b:bd:
3e:f6:01:ce:dc:da:b4:5b:25:47:6e:4a:6c:58:17:
b0:65:fc:6b:d0:bf:a4:91:42:fd:fd:b8:5a:85:16:
42:27:ac:ff:f7:8a:8d:5e:28:12:53:c0:d7:d0:0a:
75:35:4a:52:9d:dc:64:0c:60:ee:cc:fc:fd:9f:64:
68:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D4:AD:D9:33:9D:E2:7F:AA:8A:CC:40:B2:E0:23:DF:08:D9:16:08
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/ZtSt2TOd4n-qisxAsuAj3wjZFgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.80.13.0/24
Signature Algorithm: sha256WithRSAEncryption
09:88:c4:53:35:f7:88:87:58:71:f6:f5:4f:f4:0b:c1:b8:27:
0e:2e:a5:fb:9d:75:8d:79:43:53:4f:25:0b:16:e3:5c:97:e1:
cc:94:38:44:7d:f8:d0:c3:6f:1c:06:10:0d:0d:25:2b:b8:0a:
b2:be:2d:0e:7c:7c:16:84:a1:7b:d0:60:fa:54:34:1b:ef:f6:
1f:a2:14:76:94:5a:ec:b6:be:cb:94:d8:9c:53:a8:ac:dc:ab:
8a:e4:dc:ca:2e:4c:cd:47:59:b7:c7:68:dd:34:7c:1c:73:0e:
94:d4:41:fd:f1:ac:e4:74:50:90:28:38:51:89:36:c7:42:40:
40:55:52:5c:27:35:c8:be:6d:aa:8e:5c:5f:ab:bd:16:0e:41:
c4:7d:ff:b0:fb:6d:c5:0b:f0:c4:46:b1:44:5e:db:b3:9f:aa:
f6:70:d3:9c:fe:41:c6:93:cc:54:22:8d:2d:21:ba:58:5e:66:
77:a7:f4:0a:bf:06:a4:3b:8a:c2:25:88:16:64:aa:76:bc:84:
a6:a7:43:1e:55:96:8e:93:81:9f:f9:46:46:32:d1:1e:f3:69:
c7:45:df:d1:db:01:f8:d1:87:8a:12:9e:b5:19:6b:46:aa:e4:
2a:d1:4c:33:fe:07:a2:c8:4b:58:3f:a7:55:f9:00:f2:98:23:
1e:01:94:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:57 2024 by rpki-client on console-fra.rpki-client.org