Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zNwylUs7OGpMTaSwPQ0t0Mts0dM.roa
File: zNwylUs7OGpMTaSwPQ0t0Mts0dM.roa (raw, json)
Hash identifier: QHEMJBDIVlLmTvKFFYps4wToPzhIKazdxc7xnAUzIdI=
Subject key identifier: CC:DC:32:95:4B:3B:38:6A:4C:4D:A4:B0:3D:0D:2D:D0:CB:6C:D1:D3
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0186C7B59E0D4CEE90AE49A4D8DFF1413EA6
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zNwylUs7OGpMTaSwPQ0t0Mts0dM.roa
Signing time: Thu 09 Mar 2023 18:50:13 +0000
ROA not before: Thu 09 Mar 2023 18:50:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200010
IP address blocks: 45.8.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c7:b5:9e:0d:4c:ee:90:ae:49:a4:d8:df:f1:41:3e:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 9 18:50:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccdc32954b3b386a4c4da4b03d0d2dd0cb6cd1d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cf:6e:fd:df:37:1d:df:77:ae:db:ff:22:5f:
52:f4:78:95:6f:14:51:b8:da:72:0f:7a:c4:66:ab:
23:d9:f8:df:ec:76:88:b8:bc:9c:4a:f9:81:62:d3:
31:1a:75:a8:a3:fa:80:c2:9a:46:bc:12:78:bb:72:
dc:44:9f:e0:31:b3:48:c2:25:a0:a6:4b:9a:da:e2:
70:81:64:09:13:df:dd:e6:2e:04:d8:9a:bd:ef:5b:
77:d0:2d:68:29:2f:b9:80:58:e9:fa:7b:01:7e:ec:
9a:ae:ca:0d:7b:04:2f:f2:63:bb:59:0b:39:a3:17:
b8:d4:1d:22:45:00:14:b2:71:fd:e8:b9:ee:0c:b1:
99:7f:d7:a5:68:b8:1e:b5:e8:d9:13:50:8d:58:d0:
7a:7b:ee:b2:73:ea:a1:51:da:f6:45:4a:1e:c4:43:
b4:f7:23:37:47:d7:cd:4b:f9:1f:f6:a5:ee:75:95:
b7:6e:3d:c1:b6:bd:89:c6:c3:61:cf:31:88:eb:61:
69:ee:54:d9:f8:69:15:ce:f9:4c:e4:26:51:a7:f0:
73:d5:50:43:09:ba:6c:9c:e3:92:4d:9b:c4:01:90:
cd:bb:5a:fb:be:99:4b:8b:23:49:92:41:e4:93:ae:
fa:a0:77:ed:56:c6:91:84:07:06:a7:82:f7:06:8e:
31:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DC:32:95:4B:3B:38:6A:4C:4D:A4:B0:3D:0D:2D:D0:CB:6C:D1:D3
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zNwylUs7OGpMTaSwPQ0t0Mts0dM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.95.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:d3:eb:4c:c4:54:f6:aa:57:27:11:6c:48:bf:64:55:6c:ad:
c3:a4:fc:de:9b:be:d6:b3:f8:42:2e:b8:13:96:e2:1c:8f:ef:
01:85:6c:c7:ab:5e:b7:53:b8:74:77:31:ca:32:b0:3d:b6:07:
db:7c:ec:e8:91:e0:9e:60:11:b2:05:10:ee:13:e9:b3:a6:dc:
44:c1:2e:31:05:0f:ee:5e:7a:83:db:cb:13:ca:1d:71:d2:18:
10:37:c8:6d:60:75:8a:10:be:fb:85:db:66:62:a1:21:de:e3:
6e:f8:a5:41:88:3c:ea:ef:89:11:03:82:39:f2:6e:64:62:cb:
86:4f:7c:e0:9d:b2:f8:1d:94:fb:37:c8:d8:02:31:d6:ba:01:
9e:d2:cb:47:f0:92:41:88:72:59:16:4e:3f:7f:1b:f4:5a:dc:
93:71:47:56:ae:40:30:bb:89:68:f4:05:6f:07:ac:ee:ed:51:
34:1d:d8:f8:a2:c3:70:ef:12:ea:a7:c7:17:51:2b:17:f9:b5:
e3:94:08:7b:f7:c8:47:7b:85:f9:67:0b:6f:eb:94:3f:f8:b8:
a5:19:b4:0c:65:e9:81:53:b9:a7:c7:a5:fb:32:87:50:46:5a:
98:fa:da:93:a2:42:0c:b0:8e:bd:2a:eb:9c:57:38:45:7d:be:
f7:0a:b9:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:44 2023 by rpki-client on console-ams.rpki-client.org