Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zNC6PwrnA252LDzyGJ1NMUqEDGU.roa
File: zNC6PwrnA252LDzyGJ1NMUqEDGU.roa (raw, json)
Hash identifier: niNQTccxZ41zGpUKFUnpgf7sObME1Fm3M31qBLchlVo=
Subject key identifier: CC:D0:BA:3F:0A:E7:03:6E:76:2C:3C:F2:18:9D:4D:31:4A:84:0C:65
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01913CD0D5D1D284A3C46B41F5D652BF6028
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zNC6PwrnA252LDzyGJ1NMUqEDGU.roa
Signing time: Sat 10 Aug 2024 15:03:24 +0000
ROA not before: Sat 10 Aug 2024 15:03:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215343
IP address blocks: 2.59.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 12:34:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3c:d0:d5:d1:d2:84:a3:c4:6b:41:f5:d6:52:bf:60:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 10 15:03:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccd0ba3f0ae7036e762c3cf2189d4d314a840c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9c:6e:0e:41:f1:29:99:b3:fe:ce:3f:b5:ca:
54:50:30:2d:79:be:2c:cb:4e:5d:6b:6d:43:8d:0e:
46:8c:be:38:06:f1:fa:50:6d:21:f3:f8:33:90:47:
dd:72:6f:b7:0e:34:c2:e6:e8:28:54:92:f9:25:2e:
77:68:68:ef:e3:3e:fd:3a:49:be:43:e3:af:90:45:
36:65:16:f6:3f:2d:84:c4:d8:00:32:49:c5:ba:5a:
b1:35:5f:66:b8:52:69:9e:42:0b:19:c3:ac:31:08:
b4:e8:47:d5:d4:02:7f:05:8f:01:10:c2:9c:a6:46:
f6:2c:35:3c:85:61:a5:63:e6:ac:e4:29:ff:ea:2e:
7d:87:a4:12:df:37:04:42:8c:88:52:03:e5:f6:13:
ea:45:1c:1f:9d:e6:e9:00:1f:8b:01:c9:42:29:31:
55:e6:8f:6d:0f:90:f3:1e:a4:be:dc:ff:2e:8f:7e:
ac:ea:bc:36:51:0d:34:3f:9f:8a:5b:98:98:7d:bb:
e8:82:16:37:4d:b8:8b:f1:27:aa:fe:b5:82:b3:1c:
c7:69:fb:c9:10:59:d2:1e:83:1a:b5:ca:2a:22:65:
d5:84:50:ec:db:f4:4b:39:cb:e4:50:74:62:8c:65:
53:93:00:b6:9a:72:3a:ae:c5:9d:9c:6c:8e:0c:11:
e6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D0:BA:3F:0A:E7:03:6E:76:2C:3C:F2:18:9D:4D:31:4A:84:0C:65
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zNC6PwrnA252LDzyGJ1NMUqEDGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.252.0/24
Signature Algorithm: sha256WithRSAEncryption
12:3e:02:c3:0a:42:05:6a:a0:d8:f1:9e:d6:1f:bc:08:13:9e:
c7:5c:d5:0c:54:57:30:c5:d1:94:58:7f:52:a9:6e:ce:d5:0c:
37:29:0b:dc:24:35:96:c4:3b:99:0e:98:4c:6c:71:04:54:38:
35:b6:8d:76:90:eb:9f:fc:f4:db:4f:b9:fb:94:c4:89:d5:4d:
43:b4:a9:1d:65:d4:04:1f:d9:00:7d:5b:a7:be:12:b4:20:26:
33:1d:51:ae:95:7b:f0:58:ae:f0:e5:31:6a:66:da:e9:d5:c9:
df:2c:b0:fc:08:ad:d4:9a:91:00:35:6f:7e:9a:69:8a:b2:9b:
19:8b:04:3f:99:25:e5:09:66:36:5b:3f:d5:2a:17:cf:0e:57:
d0:d1:0c:81:08:76:d7:9a:ae:9b:a7:63:09:85:17:a9:0f:0c:
4c:ec:8d:ec:bb:e1:f1:32:66:64:21:c4:e9:a7:70:67:0c:8f:
4d:7a:73:c5:4e:b1:7c:1a:cc:3e:ab:40:ba:e0:2a:b9:b3:33:
04:25:01:79:dd:f4:c1:ef:87:d5:9f:13:3d:fd:71:db:ae:6e:
4a:34:c9:a8:c1:16:00:c0:46:a9:72:55:dd:c3:7a:1e:68:7b:
1d:a9:bc:ec:3c:4d:76:48:29:6a:43:f7:be:e3:bd:8e:97:fd:
78:70:aa:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 9 19:11:14 2024 by rpki-client on console-ams.rpki-client.org