Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/pzaB-vJHtgzwTrBlV4vECoK5URo.roa
File: pzaB-vJHtgzwTrBlV4vECoK5URo.roa (raw, json)
Hash identifier: G2Zut1lJGmvUCoceD+q2C3F0PP3rJFhjCd8SS5TkI1s=
Subject key identifier: A7:36:81:FA:F2:47:B6:0C:F0:4E:B0:65:57:8B:C4:0A:82:B9:51:1A
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095949B4013DD0A0412071D22E5A742
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/pzaB-vJHtgzwTrBlV4vECoK5URo.roa
Signing time: Mon 02 Jan 2023 03:45:29 +0000
ROA not before: Mon 02 Jan 2023 03:45:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203553
IP address blocks: 92.38.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Apr 2023 10:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:94:9b:40:13:dd:0a:04:12:07:1d:22:e5:a7:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a73681faf247b60cf04eb065578bc40a82b9511a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:59:f8:ca:e9:e7:62:c1:0a:74:57:fd:8d:3a:
3d:85:cd:56:26:3d:6e:86:97:81:10:40:c7:46:5a:
e8:48:5d:05:cd:34:1d:37:27:6b:3b:69:33:b1:b9:
e8:33:e5:e3:84:1d:22:92:07:d9:e8:35:93:68:16:
48:a9:9c:9e:4e:e0:b2:94:56:bb:b6:1c:ea:4f:e0:
67:09:f4:ed:45:d5:4c:1b:89:d4:63:e6:f5:f4:34:
1c:fa:32:ef:e9:90:7b:7b:1e:9a:03:ff:9a:40:f9:
c3:29:5c:5f:4a:1c:2b:ef:41:61:bd:80:15:4d:8f:
5c:9b:4e:f4:cc:17:15:63:ca:a3:9c:06:9f:b8:d2:
6b:87:21:8d:9f:34:0b:02:c6:be:7e:47:42:d7:15:
97:a1:ad:d3:19:90:32:11:e5:5b:06:22:10:3f:06:
1d:b8:90:f9:6b:87:1e:0a:77:99:51:0a:84:47:7f:
ed:ac:58:50:c7:ff:42:82:3f:cf:40:58:b1:0f:0a:
a4:94:c8:74:f8:47:51:6e:88:33:05:58:c1:55:43:
f8:e0:b7:69:93:e2:b1:99:46:61:d4:42:41:44:58:
b2:58:56:61:af:50:cc:a0:5d:af:6b:14:7f:38:79:
34:2f:78:f4:66:55:c0:a9:48:fd:db:7a:09:72:c3:
a8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:36:81:FA:F2:47:B6:0C:F0:4E:B0:65:57:8B:C4:0A:82:B9:51:1A
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/pzaB-vJHtgzwTrBlV4vECoK5URo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.5.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:c3:16:58:b7:42:b4:91:2a:3c:e0:5f:69:60:f5:1c:16:01:
4b:d0:3d:d5:ac:bc:a3:5b:34:04:ef:82:7a:4d:b3:39:e7:73:
f1:a3:d6:4c:20:f1:04:07:86:f8:f4:30:40:d4:41:60:a5:bd:
7d:a3:b7:86:c6:29:94:d2:53:57:12:66:dd:a4:ee:d9:3b:13:
06:a4:03:7a:81:59:9a:84:7c:62:a6:a2:26:15:33:ee:aa:22:
c5:33:25:09:7c:eb:af:e4:d4:4f:9d:02:8b:28:c6:cd:41:73:
8a:46:a8:40:70:85:6c:98:a3:a7:2a:9f:de:33:41:32:28:9b:
f4:6f:a8:6e:9f:ac:9e:e6:4f:67:46:c4:52:39:e9:b7:00:d8:
6f:ad:76:dc:5d:fa:b9:95:a0:90:b9:48:84:39:f7:77:69:60:
11:c4:7e:84:31:d1:25:c9:90:a6:e9:5b:3c:98:c6:1b:2f:42:
b9:0a:9b:5c:b1:9f:cc:3a:62:51:c2:cf:c6:ea:56:c4:24:2f:
ce:02:b0:6b:dd:82:fe:57:9c:a6:fa:0a:5b:0e:8a:45:39:90:
ba:85:29:b7:a5:cd:a3:f7:96:df:54:e4:29:cf:3b:88:e4:f4:
0b:ae:3a:b3:dd:0f:7b:a4:a8:e4:68:7f:81:2d:47:ea:bd:c2:
db:d0:f7:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:52 2024 by rpki-client on console-ams.rpki-client.org