Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/Zn9poGBt-F3XJ1WOVBlTgATyp0k.roa
File: Zn9poGBt-F3XJ1WOVBlTgATyp0k.roa (raw, json)
Hash identifier: FcEDzjBFmSOGuxgSi+38yJkV7sZUToc+8b4GrOxut4s=
Subject key identifier: 66:7F:69:A0:60:6D:F8:5D:D7:27:55:8E:54:19:53:80:04:F2:A7:49
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018CA9709AF09919D7C92CB5CFA853B8CAFA
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/Zn9poGBt-F3XJ1WOVBlTgATyp0k.roa
Signing time: Wed 27 Dec 2023 04:02:58 +0000
ROA not before: Wed 27 Dec 2023 04:02:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215938
IP address blocks: 45.134.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a9:70:9a:f0:99:19:d7:c9:2c:b5:cf:a8:53:b8:ca:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Dec 27 04:02:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=667f69a0606df85dd727558e5419538004f2a749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:53:7a:f8:0b:9d:56:9f:2a:3b:ba:cb:90:c9:
8f:2f:16:9d:0f:e4:58:23:56:94:4b:fa:cb:38:4e:
7c:b1:a5:7a:83:e5:5a:14:91:43:3d:cc:28:0b:ca:
5f:44:c8:ad:51:a0:24:7a:96:85:04:8a:40:3c:6f:
ee:80:b8:97:60:b2:89:d3:cf:58:5e:c6:f4:f5:5c:
7e:9b:17:ac:7a:79:e1:b4:74:24:f4:67:29:74:3d:
67:ba:2e:c5:54:4b:0d:ab:10:9c:93:f9:85:9b:3f:
2b:10:b8:03:60:f5:14:65:eb:ae:2f:51:02:f3:da:
a5:3f:8e:11:ea:8c:d6:4f:7d:6b:ab:35:2a:2a:16:
95:27:a7:23:db:07:3f:55:03:f7:49:37:32:28:ea:
46:2b:59:ef:19:53:b1:ff:22:3b:30:eb:d7:9c:66:
eb:8d:d5:8a:b1:9d:4d:04:43:39:4c:5d:a3:d3:c8:
b6:3f:92:50:47:13:37:21:5e:8c:91:f7:66:05:ac:
48:ff:8a:e2:2f:14:7a:42:cb:39:fb:97:69:50:bb:
6c:cc:e4:d3:bd:c5:c1:80:bd:5c:60:74:20:88:0b:
e2:59:35:32:0c:e4:f7:bf:c0:c3:b9:1e:a9:84:86:
0f:b0:41:d0:2c:ec:bc:d7:7d:9a:e6:89:c4:d2:f3:
0e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7F:69:A0:60:6D:F8:5D:D7:27:55:8E:54:19:53:80:04:F2:A7:49
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/Zn9poGBt-F3XJ1WOVBlTgATyp0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.144.0/24
Signature Algorithm: sha256WithRSAEncryption
49:08:48:f9:68:58:b3:0d:5d:40:69:d9:0e:0f:f6:98:28:ce:
6c:ba:48:74:58:62:8c:c8:30:e4:09:91:8e:07:e5:6d:1c:c9:
2e:89:c5:ff:ab:58:a6:13:a2:b9:04:e7:b5:04:17:a0:ac:9c:
ef:e5:92:98:e8:ee:4e:fd:83:5c:4e:5c:d6:d3:2f:c0:9b:95:
a1:73:d5:71:91:49:04:89:0d:6d:98:9b:5a:bb:18:9c:f8:db:
fb:ec:6f:16:b8:ea:97:2f:f9:b5:cb:a8:c6:cd:0d:db:67:5d:
b1:36:80:eb:42:80:4e:45:b9:15:d0:bb:b8:62:87:d0:64:60:
ef:be:af:05:7e:96:74:b0:f5:db:af:a1:de:db:3e:0d:fc:f1:
be:f5:2b:1b:cc:c6:90:67:17:64:f9:49:57:63:4c:18:b9:aa:
e5:ba:7d:dd:c2:6c:40:2d:5e:78:da:7b:e4:6c:79:7e:c1:9a:
ca:a1:75:ed:88:14:9c:1d:42:77:74:c2:b3:e1:c4:08:bd:5f:
6a:2b:d6:02:37:02:e9:e6:88:d8:df:24:cc:02:70:8f:cb:4f:
8b:1e:78:0b:23:22:5a:cd:45:aa:bf:7c:d8:09:aa:ff:59:19:
bc:74:21:0c:e3:5b:e0:a4:db:04:fb:7d:f8:3e:67:91:21:f7:
14:95:76:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org