Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/7cfc68-47b8-4628-b42f-9529bccbbb14/1/_ZBzr07IneP4KoMiO4tX7sRyQwM.roa
File: _ZBzr07IneP4KoMiO4tX7sRyQwM.roa (raw, json)
Hash identifier: iZL9OBxdW9LBSv5SEY/fAo/uca9DanGNoVLlwB5/Vu0=
Subject key identifier: FD:90:73:AF:4E:C8:9D:E3:F8:2A:83:22:3B:8B:57:EE:C4:72:43:03
Certificate issuer: /CN=2eb4d4de4084f3c8e1a4f6d4d3553907ab0c808a
Certificate serial: 018571D7AE66E1944CCE9D5AF45DD8D82BFC
Authority key identifier: 2E:B4:D4:DE:40:84:F3:C8:E1:A4:F6:D4:D3:55:39:07:AB:0C:80:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LrTU3kCE88jhpPbU01U5B6sMgIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/7cfc68-47b8-4628-b42f-9529bccbbb14/1/_ZBzr07IneP4KoMiO4tX7sRyQwM.roa
Signing time: Mon 02 Jan 2023 09:37:18 +0000
ROA not before: Mon 02 Jan 2023 09:37:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 45.11.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:ae:66:e1:94:4c:ce:9d:5a:f4:5d:d8:d8:2b:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eb4d4de4084f3c8e1a4f6d4d3553907ab0c808a
Validity
Not Before: Jan 2 09:37:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd9073af4ec89de3f82a83223b8b57eec4724303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:83:ff:6a:38:c0:23:8b:39:96:7b:40:15:05:
7b:df:b8:2b:15:f9:8e:62:98:2c:5c:9e:b9:3e:94:
ef:d0:f0:b8:f1:94:01:1e:6d:d9:1b:bb:be:d5:18:
3f:85:f5:1c:c0:2e:d2:ae:ec:b6:ce:d4:93:8d:47:
23:b2:2a:4c:c1:a9:ae:e2:38:76:9c:31:4a:32:b2:
0d:50:51:d5:4d:dd:9e:07:9e:f6:ae:d0:44:d3:bb:
2e:d1:c7:87:55:a2:a0:33:2d:dd:23:ab:4e:ff:3c:
59:4c:20:df:c7:e5:3e:c4:b4:de:e4:84:02:8b:32:
a2:e3:7f:9b:7c:98:d2:9a:ba:18:27:bd:28:68:75:
84:dd:10:6a:a9:c6:f2:84:c6:d0:6f:1f:35:b5:3a:
8b:bd:97:5b:37:be:47:b1:ba:4e:88:1f:8c:f9:9e:
dd:eb:0c:5e:49:8f:f3:fd:a0:ec:c4:1a:77:13:fa:
e6:7d:db:8d:e6:42:1c:e4:30:3e:79:3f:a0:e0:23:
27:ee:c5:fc:be:49:41:56:16:9e:ef:19:5e:b7:65:
6f:16:b0:b8:88:f8:d7:e8:5d:10:47:73:cb:6e:43:
fc:fd:1d:14:da:36:5f:5f:0f:db:c6:b9:0b:46:49:
cf:6c:f4:8f:94:e5:ea:cc:41:00:ba:e7:a0:9e:48:
1b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:90:73:AF:4E:C8:9D:E3:F8:2A:83:22:3B:8B:57:EE:C4:72:43:03
X509v3 Authority Key Identifier:
keyid:2E:B4:D4:DE:40:84:F3:C8:E1:A4:F6:D4:D3:55:39:07:AB:0C:80:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LrTU3kCE88jhpPbU01U5B6sMgIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/7cfc68-47b8-4628-b42f-9529bccbbb14/1/_ZBzr07IneP4KoMiO4tX7sRyQwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/7cfc68-47b8-4628-b42f-9529bccbbb14/1/LrTU3kCE88jhpPbU01U5B6sMgIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.64.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:ed:65:14:7f:14:c8:f9:25:4a:9d:77:a6:3e:7c:6b:00:45:
4a:12:90:35:88:0c:91:62:01:9d:e2:a2:80:14:cd:87:36:65:
20:a7:15:52:b3:8e:17:aa:77:9c:f8:49:68:f5:fb:38:97:44:
5b:a4:3d:1e:45:b1:00:75:b2:4a:74:33:81:2a:6e:03:8d:f2:
0c:3f:18:34:76:df:1a:95:69:fc:c5:6b:c9:c5:fd:4c:56:12:
95:83:17:b0:e3:7c:f1:37:4a:70:aa:86:59:6b:ca:59:c5:1c:
08:e2:d5:19:5b:3c:b5:31:ba:09:f2:78:e8:6d:17:53:87:eb:
13:1e:99:9e:ea:9e:24:b4:b2:4d:cd:b0:fd:37:f7:7c:6c:9a:
7d:27:e8:02:e0:32:31:0a:1e:c0:49:db:9f:32:ef:56:bb:7c:
f6:8f:22:13:eb:b7:fd:2a:e3:e1:40:26:30:38:04:3b:11:c4:
4a:56:f7:3c:7f:4f:03:fc:2a:c7:58:2a:c0:aa:f8:2a:59:64:
fa:eb:01:77:74:3f:d7:01:f4:5e:16:59:c0:a2:0e:7d:cd:ef:
2c:ad:7c:08:5f:f8:81:ad:49:f5:b8:08:11:9e:aa:c6:a6:c4:
da:37:4e:4f:59:24:50:fa:e4:94:46:07:8e:79:91:dd:72:56:
39:51:ff:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:14 2024 by rpki-client on console-ams.rpki-client.org