Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b10771-066a-44b0-91f0-57f209f9506a/1/ZZecmnvKM5Bn0nCdFalF5qMFINw.roa
File: ZZecmnvKM5Bn0nCdFalF5qMFINw.roa (raw, json)
Hash identifier: B2nzAsm9G2EcVsqDcdVd2YfxLeDd1fnoLoSiJKg6BDA=
Subject key identifier: 65:97:9C:9A:7B:CA:33:90:67:D2:70:9D:15:A9:45:E6:A3:05:20:DC
Certificate issuer: /CN=0250181955d5411f506eba42badb9e5aa5dd8443
Certificate serial: 018CC50146DB2552D6A116C5F0E3B7EFFCAF
Authority key identifier: 02:50:18:19:55:D5:41:1F:50:6E:BA:42:BA:DB:9E:5A:A5:DD:84:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlAYGVXVQR9QbrpCutueWqXdhEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b10771-066a-44b0-91f0-57f209f9506a/1/ZZecmnvKM5Bn0nCdFalF5qMFINw.roa
Signing time: Mon 01 Jan 2024 12:30:44 +0000
ROA not before: Mon 01 Jan 2024 12:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15404
IP address blocks: 91.208.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 May 2024 13:14:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:46:db:25:52:d6:a1:16:c5:f0:e3:b7:ef:fc:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0250181955d5411f506eba42badb9e5aa5dd8443
Validity
Not Before: Jan 1 12:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=65979c9a7bca339067d2709d15a945e6a30520dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ab:92:4e:e4:bb:e2:2b:04:67:4a:c6:1a:ec:
22:c1:75:a8:b9:4b:2a:45:29:f1:9e:b5:bb:a1:c9:
0a:f1:0c:5a:5d:d2:3a:58:a1:12:19:b5:67:6e:a8:
60:89:5f:05:6c:67:bc:80:27:63:ff:da:46:43:fd:
0e:49:08:ae:d5:d8:f4:17:19:eb:a9:61:3e:ec:55:
d8:4b:f9:d9:f2:a7:cb:93:58:d9:56:32:e0:07:ac:
fe:55:c9:8f:a3:a4:16:64:9d:ed:5a:ed:69:99:f0:
a6:85:18:0f:81:34:74:44:4c:35:b8:1e:9c:d9:77:
c2:9a:f4:c6:d0:fd:f0:60:2e:5b:44:85:e6:6f:d2:
d7:b5:c7:69:8a:86:2e:22:4b:3c:06:d7:ce:40:fb:
cb:bd:51:89:56:7c:59:49:66:88:59:ff:97:66:6e:
d1:8b:a5:ff:81:08:a4:db:5c:d3:2e:aa:78:a0:3a:
ba:0f:78:fc:9d:7d:15:c3:98:a3:1f:dc:16:ec:5c:
5e:b5:e8:66:1e:89:d2:0c:43:ea:80:4b:fb:35:c7:
70:39:be:99:f0:73:ce:96:94:f7:6c:b6:9e:86:6e:
b8:b8:7f:76:a7:45:96:71:54:38:a0:30:3e:9b:8d:
2a:23:60:8e:77:45:fe:5a:3a:48:ea:14:33:6e:99:
83:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:97:9C:9A:7B:CA:33:90:67:D2:70:9D:15:A9:45:E6:A3:05:20:DC
X509v3 Authority Key Identifier:
keyid:02:50:18:19:55:D5:41:1F:50:6E:BA:42:BA:DB:9E:5A:A5:DD:84:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlAYGVXVQR9QbrpCutueWqXdhEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b10771-066a-44b0-91f0-57f209f9506a/1/ZZecmnvKM5Bn0nCdFalF5qMFINw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b10771-066a-44b0-91f0-57f209f9506a/1/AlAYGVXVQR9QbrpCutueWqXdhEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.212.0/24
Signature Algorithm: sha256WithRSAEncryption
33:ed:bd:fb:f1:ec:a2:08:8a:54:c8:db:e1:75:15:3a:28:fe:
7c:60:18:78:74:eb:a1:59:2b:6c:16:cd:ee:ec:17:df:d3:8f:
79:f0:3e:d2:c7:6c:3d:11:45:e1:9b:42:4d:f5:2e:5c:95:93:
bd:b1:24:d7:50:d1:73:dd:bb:bb:dd:3a:30:84:fb:5a:f8:ed:
2c:d1:85:7d:5c:43:24:61:be:af:1b:81:db:8a:75:31:ac:f7:
13:ea:d1:19:98:ee:88:34:65:38:f1:87:76:26:9d:50:62:92:
5b:eb:96:8f:f3:e1:0b:93:f7:f9:4a:25:9f:42:9a:c0:03:bf:
99:37:8d:f2:2a:3a:00:8f:34:95:70:ad:f4:cd:12:8a:bd:73:
8e:96:6f:28:89:f5:4e:2c:64:4f:9c:37:e4:97:07:c7:bb:5e:
45:3c:a4:6a:2e:b6:57:e2:03:74:89:5b:8e:3d:42:bf:68:95:
03:b5:6b:df:8c:7e:03:72:46:39:93:8a:74:9f:46:b3:3d:a0:
ef:4b:cc:e5:81:d8:2b:6c:05:57:43:73:ab:5e:88:e4:18:78:
38:d0:86:7e:6c:34:07:14:a2:59:37:11:79:a1:0a:b7:e4:43:
11:3f:a6:d6:ec:34:5f:c5:02:8d:e6:95:23:98:6a:0a:d9:bb:
59:ea:d8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:09 2024 by rpki-client on console-fra.rpki-client.org