Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/ZNoBx-F4JAb4nCAAS1gE6vyrS3M.roa
File: ZNoBx-F4JAb4nCAAS1gE6vyrS3M.roa (raw, json)
Hash identifier: bIIUFMAz/nlbgcgk8sWNxFgu+1cGN436lxlbd8l3Zkk=
Subject key identifier: 64:DA:01:C7:E1:78:24:06:F8:9C:20:00:4B:58:04:EA:FC:AB:4B:73
Certificate issuer: /CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Certificate serial: 018AA7D41AD4CD4646C690BA8CD70AED7A84
Authority key identifier: 7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/ZNoBx-F4JAb4nCAAS1gE6vyrS3M.roa
Signing time: Mon 18 Sep 2023 10:26:50 +0000
ROA not before: Mon 18 Sep 2023 10:26:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 91.209.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:d4:1a:d4:cd:46:46:c6:90:ba:8c:d7:0a:ed:7a:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Validity
Not Before: Sep 18 10:26:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64da01c7e1782406f89c20004b5804eafcab4b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2b:b7:fa:c0:b2:89:a9:79:a5:e6:84:98:70:
4b:29:08:93:58:90:c7:0a:6b:27:5b:8e:d3:db:0d:
bf:63:e8:47:b1:1c:08:e1:15:1d:0c:22:f8:88:19:
5e:ea:f1:1f:dc:13:16:1b:2a:d4:a9:47:a2:93:09:
11:d3:f4:5e:28:38:26:5e:f2:3a:97:40:98:41:eb:
01:90:1c:93:54:89:7a:9c:81:29:1e:a4:41:34:ec:
81:62:ae:4e:b5:f8:b0:02:80:00:b6:e1:74:53:e9:
af:6f:75:6a:bc:47:ba:16:45:ff:42:b5:27:a4:9e:
bf:f7:2d:1e:e9:28:b2:7f:10:98:bf:96:4c:74:b4:
48:00:6b:61:d9:41:da:fb:47:3c:19:68:5b:8b:96:
ba:c7:c1:ce:1d:f7:ab:87:69:9e:ae:f7:93:7e:83:
0f:f6:7a:cc:91:3e:90:f2:7d:5e:60:bb:42:62:40:
dc:d9:7e:5c:e5:54:48:e8:8d:69:61:28:77:f5:ab:
2a:0d:15:06:40:ae:9f:ef:0b:42:da:f6:de:28:34:
62:56:61:c5:95:ec:2c:80:9b:9d:38:71:d9:fd:02:
17:50:cb:93:e1:f6:d4:64:3f:00:f9:ed:67:a0:5a:
26:3d:d3:49:d6:7b:5a:7b:8c:36:30:14:be:a1:44:
1e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DA:01:C7:E1:78:24:06:F8:9C:20:00:4B:58:04:EA:FC:AB:4B:73
X509v3 Authority Key Identifier:
keyid:7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/ZNoBx-F4JAb4nCAAS1gE6vyrS3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.228.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:ac:a9:b6:ce:a3:5b:8f:1b:38:4f:55:26:f1:a8:3b:60:8c:
e4:c2:99:29:84:a8:30:fc:dd:76:7d:0f:b0:ca:b1:4b:a0:3d:
80:c3:f6:0d:f8:62:d3:3e:d7:59:1e:25:34:b9:29:03:4f:03:
80:9f:63:2a:e9:0a:0f:63:7a:bc:ee:3e:6a:a7:03:c6:91:58:
2c:bd:2c:66:58:94:87:41:37:c9:21:bf:5a:4c:8f:6f:81:3f:
2c:e7:c6:be:3f:df:66:c0:44:3d:1d:f4:1b:48:02:8b:33:e0:
8f:bd:39:f6:a7:8a:4d:4f:6b:fa:e7:a1:c9:6d:35:3f:44:6d:
e5:44:df:e4:f9:c6:86:f6:ef:19:44:d1:e0:60:25:10:22:79:
75:0f:f2:e6:fd:68:a0:28:bd:0b:b9:6d:d7:01:84:54:ed:36:
a9:2e:0a:81:fc:04:b3:42:22:a3:5f:7c:ba:c2:36:50:10:fd:
97:07:3a:66:49:3d:7c:6d:bc:11:70:25:ce:bb:a6:49:de:48:
fa:62:fb:8e:f9:23:5d:ff:3e:a6:ac:b4:28:7f:b9:3d:a2:42:
5d:38:da:17:c3:6b:2f:f2:29:14:df:0c:6f:7d:e7:ba:8f:0c:
5a:7b:bc:94:56:1a:40:b2:91:ce:27:2f:e9:9c:20:93:9a:95:
a5:bb:cb:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org