Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ZqLZ4wO9jdkduT89Z0UFbCk49sY.roa
File: ZqLZ4wO9jdkduT89Z0UFbCk49sY.roa (raw, json)
Hash identifier: waoe/TwThccaW5L1ZJXuNEthDLwbv01QYyM4S/R9wzo=
Subject key identifier: 66:A2:D9:E3:03:BD:8D:D9:1D:B9:3F:3D:67:45:05:6C:29:38:F6:C6
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01864FB9F4EE4344150D6E85FD8ED0D03887
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ZqLZ4wO9jdkduT89Z0UFbCk49sY.roa
Signing time: Tue 14 Feb 2023 11:40:32 +0000
ROA not before: Tue 14 Feb 2023 11:40:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135752
IP address blocks: 45.129.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 May 2023 05:48:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4f:b9:f4:ee:43:44:15:0d:6e:85:fd:8e:d0:d0:38:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 14 11:40:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66a2d9e303bd8dd91db93f3d6745056c2938f6c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:1f:2b:56:c0:30:8c:5b:72:e8:cb:71:81:be:
16:17:87:42:c0:49:17:dd:8e:bc:5f:1a:56:fd:fc:
1a:ec:7f:11:25:be:86:38:4e:fb:b8:5f:07:31:05:
08:45:86:32:bf:d1:5d:23:24:86:86:26:fe:aa:b6:
f9:96:0d:65:0c:43:64:2e:36:19:fe:48:36:fb:df:
31:a9:6d:d0:e2:97:1f:e7:7f:05:6b:fd:db:2c:fd:
f1:82:02:f9:2a:ac:74:38:76:2b:17:be:73:58:d7:
71:06:66:fa:a5:d2:c4:07:1b:8e:82:00:76:7f:4f:
31:8c:22:cf:0a:34:84:36:56:fe:47:93:84:7b:34:
2c:e9:03:df:d5:6d:c2:fb:f9:90:b7:c9:1a:28:7e:
af:4f:0d:ac:42:51:53:15:74:48:98:9e:a1:4b:b4:
e3:aa:74:bd:cf:42:b3:ba:b0:3b:2c:79:fd:56:f7:
2a:32:59:db:6d:84:bd:cf:f1:7a:68:3e:fd:89:db:
c8:5c:6c:59:b6:83:33:c6:14:e4:49:58:8d:c0:c9:
f9:91:a3:52:f7:3f:a5:28:c6:0c:ea:2d:29:06:b3:
9e:cc:e1:95:c2:0b:d4:ff:fb:c2:80:8b:b9:80:22:
0b:94:f5:d4:36:fa:62:cf:67:db:1f:16:b2:1b:8b:
a0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A2:D9:E3:03:BD:8D:D9:1D:B9:3F:3D:67:45:05:6C:29:38:F6:C6
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ZqLZ4wO9jdkduT89Z0UFbCk49sY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.85.0/24
Signature Algorithm: sha256WithRSAEncryption
81:47:a9:1a:17:04:8f:ba:d3:92:e1:98:67:92:e8:80:d8:8d:
49:43:2c:a1:e9:72:21:eb:85:34:43:04:c8:e9:5e:96:bf:2a:
11:71:b1:c7:d2:ff:94:1c:d8:c9:78:7b:57:5a:67:af:ee:98:
c4:e6:b5:c8:f5:4a:8a:ea:99:1d:ec:40:7b:eb:80:77:dd:c3:
1f:5b:75:d4:3a:ec:3c:f3:f7:69:54:26:35:a0:2d:32:7f:c1:
25:03:fa:ac:b0:aa:ed:85:9b:bd:54:50:5a:2a:8f:38:6e:60:
e1:20:03:a8:a7:fb:9a:e7:68:e7:fe:4e:a0:e1:d1:8e:34:d2:
5b:f3:0e:00:c6:04:16:38:85:01:78:31:86:be:61:d1:12:94:
b5:45:50:ec:e4:15:30:48:04:15:22:90:d6:31:9e:71:b7:43:
c0:03:51:ab:7f:3e:dc:2d:62:26:cf:86:0c:e7:57:f2:99:94:
1f:e5:17:0a:33:be:b5:e6:fb:40:9f:2f:5d:a4:29:a0:3c:b8:
2a:0d:d9:6c:a9:a7:38:69:10:73:6a:0c:61:aa:a0:2e:11:92:
13:9a:b3:9e:c2:29:5b:f6:68:dc:c2:22:6c:cd:ac:b8:0f:f9:
f6:c7:5e:ff:e8:21:06:e2:25:df:4d:f8:9e:e4:c8:a0:65:d0:
d7:18:4e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:14 2024 by rpki-client on console-fra.rpki-client.org