Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/ZnTPM3nyFGrs0xmFenJFbBVhBps.roa
File: ZnTPM3nyFGrs0xmFenJFbBVhBps.roa (raw, json)
Hash identifier: PqR9j1E/kHQOfa8brjVGqkY3Zb5BB/zMwhF/UVoSLhs=
Subject key identifier: 66:74:CF:33:79:F2:14:6A:EC:D3:19:85:7A:72:45:6C:15:61:06:9B
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEE8B650FEC235E8BABC92C32E050A
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/ZnTPM3nyFGrs0xmFenJFbBVhBps.roa
Signing time: Sun 01 Jan 2023 06:04:57 +0000
ROA not before: Sun 01 Jan 2023 06:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213147
IP address blocks: 77.65.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:e8:b6:50:fe:c2:35:e8:ba:bc:92:c3:2e:05:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6674cf3379f2146aecd319857a72456c1561069b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:96:cb:bf:68:89:72:c2:50:ee:ff:63:61:01:
0b:60:15:ba:f0:06:91:f7:e3:4e:b3:3a:b4:45:b7:
ad:89:00:a4:c4:11:0b:64:b1:9d:41:d4:88:ba:7c:
7a:ff:92:93:4c:ed:9f:a8:ac:b2:ba:0d:ff:a0:eb:
0d:e1:90:70:34:34:1f:a7:82:41:97:43:a2:d6:b9:
f7:27:00:4b:bc:23:b9:8c:ea:ff:8a:9a:66:1e:e9:
fa:01:cd:84:76:7f:65:4e:e5:02:8c:cb:66:99:59:
ce:78:4c:ff:f5:2b:35:90:c7:89:28:be:23:52:52:
a7:af:5d:1a:3a:cf:06:51:61:e9:87:f9:9a:1c:45:
ad:12:8d:01:e3:fa:e6:09:a9:81:79:c4:a7:4c:9d:
b9:9e:8d:17:c4:52:63:1f:ed:29:ee:2e:9e:5d:c2:
f4:6f:af:2b:5b:0d:c5:e8:5d:83:c2:98:03:5b:20:
00:9e:e5:0c:e2:4b:dc:7d:39:80:28:bd:12:55:7b:
e1:9d:46:96:78:79:68:a2:75:c1:80:25:4e:c8:4f:
90:d0:7d:b2:83:0e:31:e7:8c:4d:99:49:b7:e1:f4:
e8:f8:2f:be:32:62:ea:e8:5a:a6:82:20:b7:4f:94:
c5:82:9d:10:4e:a5:c6:1a:45:dd:34:47:39:10:c4:
dc:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:74:CF:33:79:F2:14:6A:EC:D3:19:85:7A:72:45:6C:15:61:06:9B
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/ZnTPM3nyFGrs0xmFenJFbBVhBps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.151.0/24
Signature Algorithm: sha256WithRSAEncryption
02:c1:fe:bf:ca:ec:f3:ee:61:db:d8:b4:7e:bf:76:7b:fa:eb:
10:72:77:1e:57:e6:48:ca:6c:3b:df:12:f6:d1:bb:63:33:d2:
86:21:4d:0e:46:6e:3b:66:bd:b6:0f:ac:56:9e:47:81:cc:d5:
b8:86:5d:ed:85:61:0d:7f:d3:e7:6e:b1:7c:a9:1d:6c:ec:5a:
a3:9f:5a:0f:61:93:a7:ca:53:7f:70:8b:5c:76:ae:07:a7:6c:
9d:7d:4d:b0:5e:c3:b9:5d:df:a5:aa:08:d1:95:59:80:98:5f:
5c:c0:25:c4:e8:40:69:29:3e:20:9f:99:c4:f3:d1:89:f9:0b:
9d:b0:78:ca:04:57:fe:6a:a9:f5:64:c2:81:ea:95:5b:45:b3:
41:a5:3c:b7:85:f9:f2:a1:3b:61:66:8e:84:e8:18:b9:33:c9:
29:b6:ec:f5:58:e7:b7:07:cd:0a:0e:dd:c2:46:32:09:ff:c5:
2b:06:c0:47:4e:86:6b:5f:12:7b:80:56:9d:d3:27:2a:0a:8e:
75:be:43:7b:39:e4:fd:f0:01:c2:71:ad:3b:40:fe:5f:cc:5e:
f5:4d:32:e5:2f:65:a3:9f:e8:e4:e3:98:a1:2f:16:b2:fa:aa:
76:d4:b4:c4:e6:00:87:d8:14:4a:c8:90:e7:b8:63:ef:8a:30:
b5:9a:a8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org