Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ZlIb8p19aTwwzslObycpWPjf6a4.roa
File: ZlIb8p19aTwwzslObycpWPjf6a4.roa (raw, json)
Hash identifier: xPwBehBZ3lckWm24W0ffTCgcIE596AuX+8Rfb2/hOA4=
Subject key identifier: 66:52:1B:F2:9D:7D:69:3C:30:CE:C9:4E:6F:27:29:58:F8:DF:E9:AE
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0185700284F979936B1B3CFC886211B79BAA
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ZlIb8p19aTwwzslObycpWPjf6a4.roa
Signing time: Mon 02 Jan 2023 01:04:51 +0000
ROA not before: Mon 02 Jan 2023 01:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8685
IP address blocks: 78.135.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:84:f9:79:93:6b:1b:3c:fc:88:62:11:b7:9b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66521bf29d7d693c30cec94e6f272958f8dfe9ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:06:1b:79:b2:ba:a6:51:8e:31:62:a5:c0:db:
56:ee:cb:0e:73:ea:97:ef:af:40:b0:cc:5e:f2:b9:
ce:35:c3:36:c9:02:b3:cf:c8:1e:1a:d3:60:ba:fe:
50:97:3b:23:c2:94:50:e2:52:12:97:ec:2a:c1:2e:
f8:a8:5a:a9:7d:47:c8:58:ef:6c:7e:04:c3:75:25:
d4:24:2c:12:fb:99:8c:6d:00:ac:fd:c5:6c:91:43:
b3:b7:d7:7c:f3:ea:de:4b:36:a6:a3:fb:9e:5d:40:
47:f5:31:d4:58:0a:45:1f:ed:be:fc:42:c4:49:a7:
a6:76:f6:1d:84:9d:2b:f6:7e:ab:92:48:69:93:dc:
22:36:ee:60:58:fc:20:e6:35:b9:d5:3d:df:ee:86:
d7:b5:c8:48:1b:b0:e6:73:13:42:c2:42:11:da:ce:
d5:79:7b:05:98:9e:e4:6c:2e:21:85:89:f7:40:e6:
c1:99:62:db:44:b3:9e:1d:c1:7e:af:1b:05:66:fa:
e0:a0:2c:3a:70:a9:ac:5f:de:55:ae:8f:e6:c7:82:
38:17:3d:70:13:b5:fe:b3:37:ca:c4:35:93:f6:5a:
41:7f:e9:c7:cf:63:41:23:97:15:61:3d:11:49:8b:
ef:f5:06:17:ff:b8:8a:3f:ed:5b:69:14:05:55:ec:
be:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:52:1B:F2:9D:7D:69:3C:30:CE:C9:4E:6F:27:29:58:F8:DF:E9:AE
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ZlIb8p19aTwwzslObycpWPjf6a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.102.0/24
Signature Algorithm: sha256WithRSAEncryption
43:7b:05:f7:2d:43:8c:9a:91:00:fb:2c:ab:8f:83:ee:c0:3a:
d1:e7:c5:86:d7:fd:66:81:a1:67:6e:f0:59:14:42:d8:24:8c:
52:e0:d8:9b:cf:a3:5a:fc:50:59:ce:4d:e1:c9:87:70:32:72:
4e:c2:48:47:24:89:be:65:e1:77:79:c4:ef:37:f6:84:b8:ee:
0d:25:49:56:15:c3:64:aa:52:3b:c3:6c:91:f5:ed:b3:11:66:
6b:5b:1b:8f:23:39:49:ed:24:65:3a:49:6f:56:59:78:cc:40:
71:51:69:80:94:94:b2:94:1e:dd:e1:ab:fe:2b:bc:cc:f8:4d:
1e:41:c0:c0:f6:d5:e4:3e:81:f4:a8:38:9b:d4:7e:ac:74:80:
16:45:72:76:0a:68:3e:fc:ab:e9:23:1b:dd:f2:a1:ac:1e:7c:
e2:30:d6:7b:b7:c9:98:7a:ef:43:f5:80:db:02:42:ae:37:e3:
08:c1:1c:1f:9e:c3:eb:9e:7b:e8:fc:d7:40:73:da:d9:9c:03:
d1:56:9a:e1:b8:2b:97:7b:36:95:93:ba:06:09:22:73:51:67:
55:03:76:1d:64:4b:15:5b:55:37:81:ef:0d:15:2b:b3:99:50:
93:a9:23:8e:e6:63:21:6b:5a:45:1f:b3:a1:69:dc:25:15:be:
28:02:f4:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org