Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/ZZqqTP_sdrrUNOYE6kkLD9f5KQ8.roa
File: ZZqqTP_sdrrUNOYE6kkLD9f5KQ8.roa (raw, json)
Hash identifier: GnR3FIevK8OOseEog0EQBny0j/1lpbN9ySOPuMvdLFQ=
Subject key identifier: 65:9A:AA:4C:FF:EC:76:BA:D4:34:E6:04:EA:49:0B:0F:D7:F9:29:0F
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 01856FA6F23892F2D7E71FCF9B4E5F5DCBE7
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/ZZqqTP_sdrrUNOYE6kkLD9f5KQ8.roa
Signing time: Sun 01 Jan 2023 23:24:49 +0000
ROA not before: Sun 01 Jan 2023 23:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202960
IP address blocks: 178.175.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:f2:38:92:f2:d7:e7:1f:cf:9b:4e:5f:5d:cb:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 1 23:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=659aaa4cffec76bad434e604ea490b0fd7f9290f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9b:74:9b:77:6f:ed:2f:94:eb:84:a4:56:b8:
1d:a1:55:24:5d:c8:7d:ce:12:1d:7c:01:9c:b3:62:
66:76:f5:db:84:49:5f:a9:1d:27:d5:1b:48:68:6f:
05:55:c8:9f:25:43:47:b4:1d:4a:5f:25:bc:ab:c7:
f0:db:59:34:e1:57:01:d7:db:11:ab:e7:4d:b9:e5:
41:27:65:0c:3c:0f:2e:39:66:09:e8:7a:e1:93:d7:
9b:67:08:d4:c3:10:a2:58:83:21:ee:d6:ca:5d:fc:
2b:9b:a0:8d:c4:df:6e:83:e9:ef:07:e2:a5:be:b9:
20:b2:f9:7a:7a:8b:a9:d0:90:fc:fa:5f:74:e3:0b:
83:dc:1a:65:a7:fa:b6:18:1a:29:ac:74:95:fa:90:
8e:c6:03:a2:e9:07:5c:12:45:b1:46:43:af:18:31:
5f:c0:6b:6b:70:c8:70:7d:3c:fb:02:42:31:47:4a:
9a:fc:6b:e6:a7:60:17:b3:2d:a4:68:19:60:3c:b5:
ab:cc:21:4d:94:cd:4f:94:a4:40:4d:23:56:27:99:
0d:a3:94:fc:59:53:31:18:76:cb:e9:66:a0:e1:61:
26:0a:08:f1:35:42:81:da:f8:be:7f:17:7d:53:0e:
d4:ad:81:37:b3:6e:08:63:82:c1:9e:cd:4e:dd:97:
0a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:9A:AA:4C:FF:EC:76:BA:D4:34:E6:04:EA:49:0B:0F:D7:F9:29:0F
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/ZZqqTP_sdrrUNOYE6kkLD9f5KQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.152.0/24
Signature Algorithm: sha256WithRSAEncryption
97:27:fe:b3:db:3b:ac:a7:54:dd:89:88:02:2c:7f:25:bc:22:
75:59:0f:5e:b3:27:21:d3:2d:0b:5e:52:53:13:ff:89:2c:0c:
8c:be:7d:36:15:01:c0:ed:3e:48:b3:f7:a3:6a:3d:44:e6:12:
27:cb:4c:07:7e:07:c6:0e:aa:13:c6:68:84:56:29:b1:30:28:
d4:26:5e:13:18:92:d1:34:c6:69:0b:9a:5c:8a:e2:c4:de:7c:
b0:70:80:b4:21:7a:c8:dd:76:72:40:92:26:d8:ce:ae:fe:be:
39:3d:a7:74:1d:3c:45:dc:d8:12:53:9c:44:b4:3d:cc:95:d2:
09:10:31:9e:c0:b7:af:ea:ac:ab:7d:4e:86:3f:20:d9:ba:e9:
18:15:ad:a0:c7:ac:76:e7:a2:1d:95:ac:a2:72:93:ff:84:60:
6e:38:af:26:93:03:bf:d9:3b:80:87:52:62:a9:29:5e:33:20:
2b:c1:cb:6b:b4:eb:13:bb:e8:b6:97:10:ba:ed:97:34:78:53:
84:04:6d:63:3e:e0:72:8c:ce:1e:98:ef:df:79:3b:b5:4d:18:
6e:b2:87:0e:19:65:92:f7:95:55:80:48:41:6b:2b:da:87:8b:
35:3d:1e:f8:b1:e4:f0:2d:93:ee:50:a2:86:10:ca:78:9a:a6:
cf:c1:0d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:18:56 2024 by rpki-client on console-fra.rpki-client.org