Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/2f3229-a130-4dc8-a47b-2dc26dc4bc11/1/Zg9czHCU5O9PPQRP8znZ40Id5jY.roa
File: Zg9czHCU5O9PPQRP8znZ40Id5jY.roa (raw, json)
Hash identifier: xdYgvHNDO9tsrAzyTBqZoukpIjoMLNpFI/WVhNTiDeI=
Subject key identifier: 66:0F:5C:CC:70:94:E4:EF:4F:3D:04:4F:F3:39:D9:E3:42:1D:E6:36
Certificate issuer: /CN=9f63cff2446ececbebe0124636980b47e0b20fa6
Certificate serial: 01856F2FE4194A7B7F18C623A97948C6B065
Authority key identifier: 9F:63:CF:F2:44:6E:CE:CB:EB:E0:12:46:36:98:0B:47:E0:B2:0F:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2PP8kRuzsvr4BJGNpgLR-CyD6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/2f3229-a130-4dc8-a47b-2dc26dc4bc11/1/Zg9czHCU5O9PPQRP8znZ40Id5jY.roa
Signing time: Sun 01 Jan 2023 21:14:47 +0000
ROA not before: Sun 01 Jan 2023 21:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49835
IP address blocks: 167.160.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:e4:19:4a:7b:7f:18:c6:23:a9:79:48:c6:b0:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f63cff2446ececbebe0124636980b47e0b20fa6
Validity
Not Before: Jan 1 21:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=660f5ccc7094e4ef4f3d044ff339d9e3421de636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:86:d2:89:25:41:73:c9:78:f1:eb:2c:bd:c3:
59:71:97:45:1d:64:ad:65:a0:8b:6b:f3:f9:fc:de:
13:3f:d4:3a:61:a8:a3:dc:a3:ce:4a:6a:c8:91:32:
68:e6:c2:d0:b4:93:28:a3:2a:02:77:7a:b7:63:6b:
c9:54:a6:ad:ec:6b:88:8b:03:32:b1:d9:a7:4f:e1:
1b:8d:72:fd:96:40:d0:41:27:39:57:00:f9:36:f6:
9b:5f:64:76:c3:0b:92:8a:41:1b:4c:ab:69:05:e0:
db:6a:ea:5d:51:7e:94:6b:09:33:27:0e:30:e6:24:
80:de:39:da:3b:a4:80:8d:74:51:8b:44:35:86:bd:
21:50:4a:09:e7:4d:38:ef:12:4d:a3:4d:6a:85:67:
6a:14:8d:4b:bb:32:cf:9d:5a:78:56:9b:c7:18:94:
33:32:0d:e8:e2:d0:9f:ef:69:79:d8:2b:48:02:f9:
19:d7:b9:ba:3f:2f:27:56:27:0e:aa:4e:ce:86:d9:
66:38:37:b3:dc:9a:89:3a:41:6c:5c:0a:3a:f1:42:
72:04:7d:e5:f7:2a:03:d3:03:64:1e:9e:93:e8:38:
f3:6e:12:75:2b:ec:35:5a:c3:29:7f:19:ac:ad:29:
42:79:6a:a3:ad:6e:04:d9:10:38:35:02:bb:3d:27:
57:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:0F:5C:CC:70:94:E4:EF:4F:3D:04:4F:F3:39:D9:E3:42:1D:E6:36
X509v3 Authority Key Identifier:
keyid:9F:63:CF:F2:44:6E:CE:CB:EB:E0:12:46:36:98:0B:47:E0:B2:0F:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2PP8kRuzsvr4BJGNpgLR-CyD6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/2f3229-a130-4dc8-a47b-2dc26dc4bc11/1/Zg9czHCU5O9PPQRP8znZ40Id5jY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/2f3229-a130-4dc8-a47b-2dc26dc4bc11/1/n2PP8kRuzsvr4BJGNpgLR-CyD6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.15.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:2a:8d:00:da:8b:09:ea:99:75:28:2e:16:b4:ad:f6:ef:0b:
5b:cb:98:9f:66:00:b6:a5:e8:d0:29:98:9e:1d:d2:ab:6a:7d:
22:ab:9b:ff:84:d4:d3:70:6a:aa:a5:40:6a:dd:60:50:fd:48:
5d:03:8d:29:24:8c:1d:b9:0f:1c:6c:03:ed:f3:c5:84:9e:cf:
82:86:82:38:55:9f:ad:e4:47:8f:f3:b1:fa:35:ad:ac:07:7f:
13:78:7e:e7:23:bd:6c:b3:fe:22:f3:23:ae:39:bd:d7:c9:67:
6f:4b:f9:1f:4c:39:59:9b:66:8e:99:17:37:4a:45:a4:e1:97:
e1:8c:35:9b:8f:89:dc:b9:7f:0a:c7:cd:a8:c2:69:9e:1e:32:
ef:3b:8b:4c:18:88:b2:55:bb:ae:62:e3:0c:17:38:a3:19:f2:
35:4d:fa:44:25:d5:fc:3f:36:a9:5b:e5:61:44:fd:82:b9:41:
e3:4a:a9:59:41:63:ea:f0:5d:ae:a9:92:40:59:bb:bf:5a:6f:
e8:62:93:fb:88:8c:49:1e:64:cd:1d:27:01:4e:70:2e:a3:24:
c0:ee:54:91:0e:95:5d:42:07:eb:44:8a:12:8c:db:ce:33:e2:
95:ec:df:07:2e:95:8c:8e:df:fa:12:3d:66:46:01:e6:8e:51:
6e:0d:cb:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:43 2024 by rpki-client on console-fra.rpki-client.org