Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/zgPZNMCuUdeLzaKzfaQbfr78PN4.roa
File: zgPZNMCuUdeLzaKzfaQbfr78PN4.roa (raw, json)
Hash identifier: rAggvhJ25KbkFN+44XXNL6tdv+5QvltgCxNJGRETKrU=
Subject key identifier: CE:03:D9:34:C0:AE:51:D7:8B:CD:A2:B3:7D:A4:1B:7E:BE:FC:3C:DE
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA7292A35471E8002F53C43858238E
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/zgPZNMCuUdeLzaKzfaQbfr78PN4.roa
Signing time: Mon 02 Jan 2023 13:44:59 +0000
ROA not before: Mon 02 Jan 2023 13:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21344
IP address blocks: 217.149.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:72:92:a3:54:71:e8:00:2f:53:c4:38:58:23:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce03d934c0ae51d78bcda2b37da41b7ebefc3cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3a:f0:df:2c:35:01:f9:9b:80:3f:23:9e:78:
50:3b:76:dc:e0:07:4b:53:a7:38:ee:0c:3d:78:bc:
f2:d9:52:f7:56:32:1b:58:73:6e:e6:0b:ea:88:72:
c7:86:90:90:1b:35:8e:57:f5:f4:de:37:07:12:52:
f3:ab:08:12:95:c8:0a:57:eb:40:5b:d7:cd:10:b2:
af:6d:27:75:1d:01:be:92:29:5d:08:02:e3:34:27:
0d:cd:4e:11:5e:d6:c4:26:a0:7a:2c:78:80:74:a5:
72:a9:8d:43:0c:c6:e3:0a:93:9f:f2:85:1b:fd:a4:
19:15:1c:3d:6c:84:70:6d:68:bb:04:1b:11:75:64:
ae:bd:8f:6b:90:00:2f:8a:69:e0:3d:ae:26:1f:a7:
51:9e:fd:5b:3a:e6:a0:0b:0c:f8:ac:27:e1:75:df:
04:0c:8a:db:39:27:4d:47:18:3e:4c:c3:f5:2f:94:
00:b3:06:e4:fe:c6:f6:d0:90:1e:9c:80:49:48:70:
a2:d5:28:61:59:6a:82:0e:a5:9a:5a:90:01:74:80:
b0:dc:95:3c:c7:86:4e:9d:2c:00:63:0e:2e:52:c8:
e7:b6:01:89:77:71:72:90:99:38:2a:bf:71:f7:e4:
b8:1f:16:c6:8a:e3:ff:a7:07:0d:dd:88:1f:27:4d:
8d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:03:D9:34:C0:AE:51:D7:8B:CD:A2:B3:7D:A4:1B:7E:BE:FC:3C:DE
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/zgPZNMCuUdeLzaKzfaQbfr78PN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.149.247.0/24
Signature Algorithm: sha256WithRSAEncryption
82:fc:d6:36:2a:d4:fd:9a:aa:0a:73:47:9f:d0:0f:d8:19:a0:
e9:61:c0:52:44:30:35:c1:ca:e0:1d:59:14:76:a2:56:01:4c:
c3:0c:e1:9e:c3:17:86:a2:1d:68:4b:74:1a:d0:79:bf:07:13:
a0:5c:b0:fb:6b:cf:c5:5c:70:6b:73:a2:e7:84:46:ab:b7:83:
6f:66:24:e6:2d:c7:30:e4:64:82:ba:e2:02:d2:18:e9:24:74:
91:f6:8c:65:ad:c2:eb:e2:03:ad:3d:8a:10:bb:95:66:4c:11:
8e:55:44:7b:fd:ce:4b:c5:7b:82:1d:1e:6d:d1:0d:b5:2e:75:
81:36:02:ea:64:58:60:9d:1d:8f:1a:47:f1:c1:98:3d:a7:ec:
75:1d:0d:0f:d5:ec:b0:97:f2:3c:52:61:6d:4e:92:65:05:be:
a7:d3:a5:22:7d:cc:e3:eb:46:c6:eb:23:0c:b3:e9:7f:35:7e:
ce:d5:0a:42:8b:8c:9f:a0:b3:6d:37:26:e7:3d:32:4f:35:29:
91:ff:bf:20:10:b8:f2:a0:83:bb:ef:97:0d:ce:31:19:3c:cb:
03:b6:e2:8e:3f:67:b6:37:f1:73:05:4e:47:06:b7:a4:7b:1e:
64:d1:e6:1b:80:af:67:70:a2:c5:74:8d:1c:45:f7:d5:3c:89:
11:d2:63:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org