Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zPwhMQprl5gjSP9iziJPGvd1m9M.roa
File: zPwhMQprl5gjSP9iziJPGvd1m9M.roa (raw, json)
Hash identifier: yT2qmbS1OzH5wHcGQygI0bHtRNDeKP32/uHIm2tXtHk=
Subject key identifier: CC:FC:21:31:0A:6B:97:98:23:48:FF:62:CE:22:4F:1A:F7:75:9B:D3
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0191FF69CC5A3A7A2577A064295AE793AC07
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zPwhMQprl5gjSP9iziJPGvd1m9M.roa
Signing time: Tue 17 Sep 2024 09:56:49 +0000
ROA not before: Tue 17 Sep 2024 09:56:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34295
IP address blocks: 2.58.92.0/24 maxlen: 32
91.92.68.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 11:57:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ff:69:cc:5a:3a:7a:25:77:a0:64:29:5a:e7:93:ac:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 17 09:56:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccfc21310a6b97982348ff62ce224f1af7759bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:75:d4:38:06:92:67:6b:a6:c7:e2:98:f3:b8:
71:90:7f:fa:d6:f1:ee:7e:30:88:f7:c7:b8:44:0b:
1a:91:db:08:40:6e:65:e6:95:bc:f3:95:f8:75:67:
52:b5:0e:37:b3:8d:66:45:ed:8a:b7:e8:6b:50:05:
ec:da:61:56:6f:e7:23:8b:2c:22:ba:5a:50:0f:76:
78:af:11:ea:1b:a0:24:6e:bd:bf:72:29:1e:d8:ef:
c3:f6:91:c7:56:20:8d:4e:9e:b1:5e:59:42:0f:48:
fb:22:15:90:0e:87:d7:78:cf:4a:1b:01:e4:02:fe:
f8:d1:cb:61:fc:21:43:20:f1:3f:2d:e9:b1:06:27:
b4:8f:36:ba:e3:73:5c:fe:96:24:19:1c:2e:1b:74:
0a:df:12:54:a5:f6:5d:52:2d:95:8c:6c:a7:00:c9:
f6:5a:3e:24:35:33:a0:2a:e1:84:87:c3:66:b8:15:
67:51:f7:2d:a6:ec:68:d6:c7:ee:e9:7f:18:34:c9:
09:49:dd:03:20:88:d8:f8:96:f5:93:93:23:b5:cc:
84:24:49:08:65:88:b8:e8:4d:16:70:b6:ad:d1:4f:
87:10:45:2b:5a:b6:12:5e:36:04:51:57:3c:60:22:
1d:6d:58:2c:e6:46:e3:c2:11:87:ef:b1:9b:ab:c0:
bb:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:FC:21:31:0A:6B:97:98:23:48:FF:62:CE:22:4F:1A:F7:75:9B:D3
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zPwhMQprl5gjSP9iziJPGvd1m9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.92.0/24
91.92.68.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:d0:81:8b:f0:34:7a:42:99:4f:14:6f:a3:90:d5:0e:21:3d:
2c:ef:39:33:f6:d5:4c:92:63:01:ea:06:b8:0c:13:9d:96:ff:
95:8b:ac:f8:1f:72:1b:29:f6:6d:2a:28:db:45:a9:a5:7d:83:
44:da:93:4c:e8:82:1e:db:23:e6:6a:21:a2:81:35:51:5e:92:
84:c8:b3:20:69:dc:26:9b:15:39:88:97:7d:23:f0:fe:d2:ba:
fd:46:e2:ec:22:49:9c:da:07:7d:56:dd:a1:82:45:a7:89:ba:
ed:39:3b:c6:4a:da:36:14:45:c3:e3:5b:61:95:db:f7:ba:70:
10:17:b3:e5:47:0e:d6:13:35:44:1a:b5:85:ae:c2:a8:50:1f:
ac:24:bc:93:0e:04:f8:bc:3e:38:4d:cc:0d:73:d8:4d:be:e1:
28:d8:7c:1b:6a:f2:86:ff:91:b3:90:4b:50:c9:e0:8c:1c:44:
29:82:9b:f1:70:81:db:85:20:43:7e:bb:08:d0:64:ff:84:05:
df:ae:41:73:66:3d:a9:55:00:28:34:9f:84:d9:fe:c7:01:a2:
d0:43:1f:5a:be:4d:b4:8f:01:5d:cf:14:0d:26:22:c0:52:d6:
18:25:56:71:63:b5:86:90:19:69:75:41:e7:78:0b:c6:cd:19:
5e:95:2d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 15:54:04 2024 by rpki-client on console-fra.rpki-client.org