Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/ce9aa9-8793-4863-a059-5a284064fdb6/1/zDymQdTFumY05N4B4fnX7MHYIto.roa
File: zDymQdTFumY05N4B4fnX7MHYIto.roa (raw, json)
Hash identifier: waXHyDyzqFRUcLkcuswrHDfZ1tpnXntGgZ4BfgN7Jko=
Subject key identifier: CC:3C:A6:41:D4:C5:BA:66:34:E4:DE:01:E1:F9:D7:EC:C1:D8:22:DA
Certificate issuer: /CN=35371996dc555a98404c7ee712ee293ff6045383
Certificate serial: 018CC49387C2660DBBAAE6B77CAF930A5CFA
Authority key identifier: 35:37:19:96:DC:55:5A:98:40:4C:7E:E7:12:EE:29:3F:F6:04:53:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTcZltxVWphATH7nEu4pP_YEU4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/ce9aa9-8793-4863-a059-5a284064fdb6/1/zDymQdTFumY05N4B4fnX7MHYIto.roa
Signing time: Mon 01 Jan 2024 10:30:52 +0000
ROA not before: Mon 01 Jan 2024 10:30:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56533
IP address blocks: 91.223.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 10:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:87:c2:66:0d:bb:aa:e6:b7:7c:af:93:0a:5c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35371996dc555a98404c7ee712ee293ff6045383
Validity
Not Before: Jan 1 10:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc3ca641d4c5ba6634e4de01e1f9d7ecc1d822da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:98:b4:25:4d:75:35:8d:ec:f7:68:e5:03:24:
a0:65:91:f5:b4:6d:34:e9:f1:40:ea:03:98:2a:a3:
c4:9d:7c:ef:a7:a0:91:9d:8a:b7:bd:48:76:2d:5b:
40:d7:b6:90:3d:ca:b0:e1:9a:24:37:44:19:34:35:
82:d9:ab:7d:3b:9f:80:2d:e7:8f:9a:1a:f1:46:2c:
09:8a:c2:f1:58:b0:80:d1:5b:39:6a:5a:dd:7b:d2:
bd:cc:31:c1:0a:78:32:57:f5:4d:c6:56:79:24:35:
54:77:0d:cc:19:97:9b:87:7c:a2:a4:ca:94:6c:22:
1c:c4:c6:63:ba:e9:b6:44:1e:2f:4e:0f:78:bd:8b:
20:e6:bd:25:37:2b:f4:cf:34:a5:b5:06:af:7e:ee:
e7:96:4a:84:16:bb:c7:2f:f8:f0:55:ad:ab:61:82:
ac:82:02:33:16:e1:c7:c0:7e:97:85:41:d8:f8:bb:
a4:a3:99:95:d9:1c:c4:02:11:7d:4e:a2:87:38:d0:
05:0a:9c:29:bc:9c:d4:4e:49:5b:44:05:2f:90:76:
54:f2:5a:f5:a8:51:dd:17:ae:ff:c8:7b:2b:2d:f6:
c5:9f:32:8a:42:83:d9:11:5b:63:e0:a0:3a:1d:3a:
33:62:86:26:82:b2:fb:ce:ff:80:9c:63:7b:15:a9:
0e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:3C:A6:41:D4:C5:BA:66:34:E4:DE:01:E1:F9:D7:EC:C1:D8:22:DA
X509v3 Authority Key Identifier:
keyid:35:37:19:96:DC:55:5A:98:40:4C:7E:E7:12:EE:29:3F:F6:04:53:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTcZltxVWphATH7nEu4pP_YEU4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ce9aa9-8793-4863-a059-5a284064fdb6/1/zDymQdTFumY05N4B4fnX7MHYIto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ce9aa9-8793-4863-a059-5a284064fdb6/1/NTcZltxVWphATH7nEu4pP_YEU4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.178.0/24
Signature Algorithm: sha256WithRSAEncryption
23:69:43:46:84:4d:c5:93:1c:db:39:ec:91:8d:cf:f4:23:99:
38:9c:15:05:41:09:4d:94:b2:0d:fb:5c:f0:ee:1e:ee:30:fa:
79:51:9a:11:1d:f2:fe:55:ae:56:19:03:85:6e:03:79:84:52:
49:53:3c:54:ee:71:ff:95:49:c6:7c:0e:d4:c8:72:27:53:46:
7a:9c:cf:8b:3a:62:e0:21:45:da:31:83:3c:6e:1b:12:d1:f5:
59:82:5f:93:76:02:b2:57:72:45:fd:49:5b:cd:e0:10:8c:ea:
0b:da:df:23:10:bc:56:32:a8:be:9d:7b:72:15:8a:71:7e:29:
b5:cd:ad:ee:af:3a:c1:b1:df:d8:2a:49:9a:a8:e3:88:bf:7d:
7b:96:92:cf:03:09:3a:3d:4c:81:57:be:2f:59:95:63:d3:45:
4c:61:61:6f:e6:c7:73:11:5d:56:2e:27:c7:dd:72:2f:c0:93:
22:33:3d:fa:91:57:d8:fd:2e:e4:1b:b5:e0:97:62:cf:67:b4:
8d:1c:1a:22:e1:c0:8f:b1:a0:ab:2a:35:b4:db:66:88:54:df:
93:86:6f:79:38:0e:ec:1d:b1:6e:6f:a6:4e:e2:3c:36:a1:d7:
7e:8c:3d:68:1f:15:07:fb:47:7e:a5:60:c6:a3:95:79:aa:ce:
c5:a0:5b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:14 2024 by rpki-client on console-fra.rpki-client.org