Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/zjQPOy-ZL9f5H-LKpUGZCtbREVk.roa
File: zjQPOy-ZL9f5H-LKpUGZCtbREVk.roa (raw, json)
Hash identifier: zzcFCrHkJ/kekAqljqnRyRNYc1MSuyckEPeZ7CGDlaU=
Subject key identifier: CE:34:0F:3B:2F:99:2F:D7:F9:1F:E2:CA:A5:41:99:0A:D6:D1:11:59
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0185700289EADE044A8AA7BBFF90D1982FC8
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/zjQPOy-ZL9f5H-LKpUGZCtbREVk.roa
Signing time: Mon 02 Jan 2023 01:04:52 +0000
ROA not before: Mon 02 Jan 2023 01:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60146
IP address blocks: 31.206.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:89:ea:de:04:4a:8a:a7:bb:ff:90:d1:98:2f:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce340f3b2f992fd7f91fe2caa541990ad6d11159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c7:54:8d:86:0e:59:79:87:6b:e4:7e:2e:c4:
90:1c:9a:58:ce:ad:5d:5b:a6:7b:7e:be:3f:cc:a9:
90:34:c7:25:6f:5c:3b:ba:d2:6e:17:6a:56:34:70:
3b:2e:f3:1b:b1:d1:7c:be:10:1e:8a:87:58:e6:98:
2b:f1:b1:5b:a3:04:22:14:5b:9e:03:46:ac:ff:7e:
de:2b:29:8d:b7:88:59:d1:3a:a0:fc:3c:dc:73:1d:
96:f4:8a:12:26:a8:1a:e4:10:4b:f6:3e:f6:ca:1d:
84:7a:83:74:b7:c6:40:1c:96:ef:d8:c8:f9:3e:82:
91:ed:06:b2:90:48:10:2b:c0:51:c1:b3:46:66:63:
9a:f1:46:31:9e:eb:c3:d7:cb:14:47:22:ef:60:7d:
d6:10:cb:83:df:3c:e6:f8:69:47:81:4b:19:70:87:
47:4f:8d:ac:72:f1:5b:5d:da:67:ef:9e:ee:5b:ac:
88:0f:8b:03:16:48:3b:e3:d0:69:c3:06:14:b7:4c:
1c:8f:05:07:6f:e7:35:c1:28:76:2b:f7:30:59:a8:
ef:13:60:01:57:d4:80:53:55:91:8c:9b:c1:b7:fe:
ff:68:2a:bc:8e:40:e3:64:6b:32:e5:7b:6f:51:f2:
2f:60:1b:4d:23:31:6d:c9:2b:54:48:fa:e3:1a:aa:
0e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:34:0F:3B:2F:99:2F:D7:F9:1F:E2:CA:A5:41:99:0A:D6:D1:11:59
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/zjQPOy-ZL9f5H-LKpUGZCtbREVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.206.40.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:28:cd:40:60:87:59:6f:99:9e:bb:3b:29:6d:3a:a3:08:f6:
cc:de:67:5f:e1:b6:7c:07:c7:e0:24:ec:08:a8:eb:ed:83:54:
cc:47:bb:93:89:9f:6c:59:dd:a7:4f:34:ef:bb:e3:0d:b6:f2:
32:7b:ce:e6:41:5a:ce:26:4e:d1:8b:89:21:ed:6c:90:61:15:
39:d7:1b:f5:00:0a:90:ac:4f:89:ec:8a:fb:c0:bf:2c:6b:72:
2d:ee:d8:b3:21:39:6c:5d:6b:93:86:94:a3:ab:16:97:5d:93:
a0:97:3f:c3:0e:01:99:28:b8:5e:29:5d:80:a3:ad:a1:9f:ac:
41:92:b6:d3:6b:c5:af:0d:d7:3c:2e:1e:53:44:63:9b:df:74:
43:e7:d0:44:fa:1c:28:59:92:8c:6e:0b:86:44:dd:9c:f6:f6:
8b:ab:18:15:90:d7:fc:53:29:fd:82:74:21:c9:ef:4a:30:98:
eb:f2:39:f3:17:ab:c8:c8:97:70:65:56:91:8b:be:68:c7:a2:
6d:8d:51:5d:65:bb:05:b2:5c:a5:cb:f8:ca:91:30:27:95:38:
3f:80:fe:d2:8f:d3:ff:24:68:8f:8d:8a:f7:13:7e:df:18:63:
e1:a6:28:cb:93:20:80:70:9b:e9:24:da:17:e5:94:11:ba:d6:
d1:af:b8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org