Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/zyG0OPkt0P0tUlym9R5hQ7EXxbA.roa
File: zyG0OPkt0P0tUlym9R5hQ7EXxbA.roa (raw, json)
Hash identifier: HXvz7251rk0BYhNbKph2UjlFUrBpjor8beeMdsYMDLA=
Subject key identifier: CF:21:B4:38:F9:2D:D0:FD:2D:52:5C:A6:F5:1E:61:43:B1:17:C5:B0
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEACED14A7AF70FC173077B7A94C82
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/zyG0OPkt0P0tUlym9R5hQ7EXxbA.roa
Signing time: Sun 01 Jan 2023 06:04:42 +0000
ROA not before: Sun 01 Jan 2023 06:04:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5588
IP address blocks: 85.202.56.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:ac:ed:14:a7:af:70:fc:17:30:77:b7:a9:4c:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf21b438f92dd0fd2d525ca6f51e6143b117c5b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f5:73:5d:f8:d3:d0:d5:31:21:1a:89:24:ef:
49:45:f3:a5:6b:fa:f4:e9:be:94:1f:99:fa:12:57:
e9:d1:1d:5d:07:a1:00:3d:1a:10:ee:88:7e:af:d8:
15:4a:f0:d1:7b:3d:b0:5b:40:72:74:6f:ec:a1:d7:
55:1f:b2:9d:b8:10:2e:2f:fd:96:f5:d3:e3:a6:af:
9c:de:f5:ea:2c:5e:e2:01:23:93:00:a3:2b:ea:12:
0d:c2:48:8d:2e:a5:23:7c:63:b3:7a:97:a3:32:f7:
78:d3:0e:6f:98:04:37:20:a7:ef:5f:28:6f:00:fc:
a8:09:c5:82:23:79:fe:78:ff:08:ae:a4:f4:dc:d4:
87:c3:4d:dd:e8:53:60:aa:95:df:55:96:cc:f6:53:
23:16:b0:72:a2:a6:de:e3:96:4a:e1:0e:38:99:49:
97:85:83:ac:0f:d3:72:2e:5d:34:63:de:16:a7:b7:
c0:7d:3f:ab:d6:d7:57:32:10:ab:57:7d:e7:3f:c0:
7e:4e:ce:6b:84:e8:c8:4a:29:42:ed:82:5b:b1:2b:
ca:0b:ed:66:06:13:5d:1a:ad:ea:4e:f6:31:7d:e6:
03:61:4d:6a:1b:90:19:3f:30:a7:15:bb:a3:e3:61:
36:47:a9:91:28:08:b0:2a:31:7c:87:ec:e2:ce:4a:
93:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:21:B4:38:F9:2D:D0:FD:2D:52:5C:A6:F5:1E:61:43:B1:17:C5:B0
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/zyG0OPkt0P0tUlym9R5hQ7EXxbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.56.0/23
Signature Algorithm: sha256WithRSAEncryption
35:5f:42:62:2b:92:5e:20:55:59:81:79:56:b0:15:d0:e9:d9:
e8:79:79:a1:8a:40:06:99:63:51:5f:72:a2:f3:8f:16:60:71:
55:a6:c7:6f:c7:f5:5e:f5:47:1f:83:c8:8d:f8:3b:f2:c3:45:
ac:6b:33:d1:aa:03:50:13:dd:9b:fc:3c:f1:a8:49:ac:a5:49:
6f:a7:13:eb:5d:38:f8:b1:ef:da:5c:1b:30:6b:7c:2a:69:e7:
6c:90:ef:a9:f2:18:e0:68:a4:6a:a7:9f:c5:ac:3a:b6:5a:d3:
ea:df:7f:84:6f:73:64:2c:05:1d:8d:25:9c:91:fc:fb:b6:24:
78:55:63:a0:65:d7:c7:20:8d:2e:1c:4b:18:12:6a:5c:98:d5:
e8:f9:38:41:43:bb:a7:c5:fa:94:35:72:ca:73:29:c6:a4:3e:
4e:bb:1e:71:c0:21:ce:95:24:bc:5e:20:b5:ef:f6:9b:d6:d9:
e9:81:ee:d0:95:cb:06:2b:c5:54:b5:6e:ba:1f:d6:cc:a0:91:
3e:75:91:c8:93:0b:65:1a:e0:bf:71:bc:fa:59:c3:49:41:7f:
07:62:d5:84:1e:82:5f:bf:b1:14:63:f9:3a:63:49:52:26:a1:
1e:ac:53:1a:8a:80:92:0b:d2:dd:07:7d:f4:ca:96:f1:61:89:
24:d9:8e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org