Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/ZNgG-3NetulitU5bFxTE-kT1jg8.roa
File: ZNgG-3NetulitU5bFxTE-kT1jg8.roa (raw, json)
Hash identifier: G73NHr5gfojun9RFJRx8SsFM2R7rEPRLN4H/vvSI5nA=
Subject key identifier: 64:D8:06:FB:73:5E:B6:E9:62:B5:4E:5B:17:14:C4:FA:44:F5:8E:0F
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 01856B8A1D6AB6DBDED78DBA2E7AB4C98C28
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/ZNgG-3NetulitU5bFxTE-kT1jg8.roa
Signing time: Sun 01 Jan 2023 04:14:51 +0000
ROA not before: Sun 01 Jan 2023 04:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137
IP address blocks: 156.148.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:1d:6a:b6:db:de:d7:8d:ba:2e:7a:b4:c9:8c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Jan 1 04:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64d806fb735eb6e962b54e5b1714c4fa44f58e0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fd:3c:61:ef:90:d8:c0:a3:5d:9a:98:5d:28:
45:a6:2c:3c:63:53:7c:66:4b:76:2b:72:3c:ae:d2:
0f:7f:e5:1f:8d:c4:b1:0e:31:29:24:68:c8:2e:6d:
38:b1:8f:5b:dd:2a:22:fb:c0:d4:08:4d:cf:34:bb:
49:8a:4a:80:1d:03:b2:03:51:bf:65:d3:8c:70:be:
46:18:19:a4:6f:02:a1:22:ac:fa:e7:35:16:a3:22:
07:4c:09:9a:7f:2a:08:66:5e:c5:41:c5:0d:0c:ad:
8c:9b:03:7e:79:76:2e:2f:b9:f4:0c:49:12:d8:db:
ed:46:cb:87:69:d6:c5:62:02:f3:2b:a0:72:52:f6:
95:3d:24:6e:1b:f4:59:8b:8b:1d:f6:bd:fb:38:59:
f4:17:2b:fe:a0:41:17:50:36:6e:d6:b9:36:b5:fe:
ea:55:dc:7d:09:a9:9d:30:d0:40:0c:4c:ab:9f:91:
a9:2c:98:b1:e6:db:d7:94:af:52:1b:ce:31:b3:15:
a9:41:b5:de:ee:dc:dd:5d:12:75:9c:bc:b7:37:30:
96:85:22:30:47:b5:17:d1:3d:c1:a2:34:4e:12:da:
0d:f7:ae:c9:13:47:ff:91:0a:3d:68:8f:71:08:a2:
15:2d:95:0c:50:9e:b9:6e:cb:d5:13:c4:b0:49:70:
89:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D8:06:FB:73:5E:B6:E9:62:B5:4E:5B:17:14:C4:FA:44:F5:8E:0F
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/ZNgG-3NetulitU5bFxTE-kT1jg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.148.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3f:f3:16:35:f1:4a:d1:b7:ab:67:16:cb:97:f1:76:11:a9:bd:
8f:d5:af:c1:ac:b0:6a:7f:dc:d3:43:89:d0:54:2b:ea:f0:6b:
61:5e:a7:72:19:3b:7e:84:92:8a:98:e0:db:23:57:96:da:b5:
4b:15:31:e0:75:38:e7:6c:62:c3:f0:8f:05:cc:10:d7:57:3c:
c5:58:b3:d9:89:9a:6f:f9:e4:48:17:f2:fc:2e:29:4b:ba:e6:
06:af:85:e2:8a:7b:ed:e3:64:a1:d0:15:1f:6b:bb:20:00:25:
a3:39:43:56:8b:9c:64:dc:a8:36:01:b2:b2:23:f0:e5:cf:63:
2c:a2:c4:e4:81:3f:39:3d:f2:be:80:6f:d1:86:60:69:a3:18:
e7:d4:79:68:4f:89:98:5f:e9:80:66:a5:c9:98:27:1c:bf:a9:
a7:6e:c4:4d:e5:0f:6c:6a:e8:85:0a:9a:dd:80:3f:f1:29:f6:
77:e9:88:81:6c:d5:9c:35:cd:a3:ad:b8:2c:a1:a8:84:a5:21:
8f:73:05:f5:a3:81:d0:73:3a:72:7f:41:ae:18:3e:7e:06:5f:
55:25:b7:c7:af:75:93:28:cc:05:46:75:f7:fc:24:dd:d4:c4:
c9:26:d6:0d:4e:3d:a3:80:5a:ee:fe:f3:c2:2d:00:1a:a8:0d:
82:fb:01:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:13 2024 by rpki-client on console-fra.rpki-client.org