Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ztvQPkazGd9Unnur751DkXH583o.roa
File: ztvQPkazGd9Unnur751DkXH583o.roa (raw, json)
Hash identifier: //ZMJZ6oyqTT4w8jVc1+JZcV6tubd0hPJl4Ujlb5r7I=
Subject key identifier: CE:DB:D0:3E:46:B3:19:DF:54:9E:7B:AB:EF:9D:43:91:71:F9:F3:7A
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018CC649CFF5FC09986DF2990B3C0336ADAC
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ztvQPkazGd9Unnur751DkXH583o.roa
Signing time: Mon 01 Jan 2024 18:29:35 +0000
ROA not before: Mon 01 Jan 2024 18:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 81.22.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 10:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:cf:f5:fc:09:98:6d:f2:99:0b:3c:03:36:ad:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 1 18:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cedbd03e46b319df549e7babef9d439171f9f37a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:19:07:cb:a3:f9:25:ec:ef:23:61:c1:96:73:
f2:59:4b:47:44:22:1a:17:db:83:29:8d:86:0d:91:
b1:c7:07:66:8a:31:96:fa:c6:4f:da:f2:11:83:7d:
c9:a3:8a:e3:31:4a:05:7e:e3:5e:99:a7:85:e9:54:
79:9b:5a:cd:bb:fa:df:6d:73:a5:0c:46:ff:33:27:
cc:13:08:9f:d6:7c:7e:53:56:0c:37:b1:5c:65:32:
91:26:ff:e2:31:b5:75:d2:75:90:07:67:89:97:e2:
6e:06:08:d5:f3:79:76:89:b7:fb:1a:ec:7c:ff:67:
50:33:0d:a4:a2:6c:ce:ec:01:36:1e:df:f0:da:86:
3d:26:65:6e:16:96:ae:83:9f:39:fc:1f:5b:4e:21:
a4:b2:4c:fe:c5:d9:b1:8c:7d:f4:8f:55:05:5d:34:
39:44:91:07:30:d0:7c:b4:55:9e:7a:93:9f:11:5f:
58:48:b3:67:56:72:ee:dc:6a:f3:a2:52:91:79:24:
68:50:ca:f2:37:23:1b:db:83:2c:25:12:7b:27:58:
38:2d:eb:67:59:42:5d:04:6d:20:78:ee:3c:0f:ae:
44:92:de:6c:15:40:6b:99:81:96:1b:b5:39:03:ec:
c7:d5:10:cb:56:83:a2:47:87:e8:ec:4d:80:4a:ae:
80:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:DB:D0:3E:46:B3:19:DF:54:9E:7B:AB:EF:9D:43:91:71:F9:F3:7A
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ztvQPkazGd9Unnur751DkXH583o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.140.0/24
Signature Algorithm: sha256WithRSAEncryption
25:d7:aa:f6:74:ad:6c:06:0e:7e:1b:07:16:5e:41:0a:49:62:
a1:aa:c0:9f:01:04:e5:bc:67:38:ad:b7:d1:b6:28:ae:c9:8e:
87:fd:e9:a0:bb:ef:2a:33:d7:5d:d4:30:de:7d:a1:39:13:e3:
76:0b:d1:7b:b8:b2:33:1b:c9:f7:6b:86:a3:f2:a1:93:4e:dd:
49:66:5d:ec:fb:68:00:b9:3b:7b:b6:b7:5f:1c:44:24:4b:32:
48:ad:df:01:69:b7:6c:60:a5:88:3d:19:a8:3a:80:4a:1b:0a:
93:aa:6a:94:46:63:d9:08:86:03:6d:e4:44:ec:90:bb:e9:b3:
57:11:7d:7a:fc:4d:fe:bd:b2:54:ec:b2:eb:61:2d:f1:d8:d2:
c0:40:10:29:af:45:a2:df:9a:49:fa:23:18:35:e1:9c:c1:b9:
be:2e:b7:54:37:70:4a:a8:34:67:f8:18:8a:1c:26:e2:19:4c:
4b:63:8a:63:86:46:8e:9d:42:a5:df:be:d6:67:64:d3:b9:10:
bf:1c:f6:0d:53:4c:ce:1a:87:3a:a5:21:34:2a:f8:a7:d3:8c:
61:b5:b6:f7:61:9b:39:2d:0d:d4:0a:23:5e:cc:fe:46:6f:bc:
4b:d9:3f:75:e3:e6:0a:a3:bd:8d:0f:66:34:0d:d2:f0:dd:0f:
35:bc:d2:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:47 2024 by rpki-client on console-ams.rpki-client.org