Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zS9tnAlluYT7zbRmi6lFbJokjkE.roa
File: zS9tnAlluYT7zbRmi6lFbJokjkE.roa (raw, json)
Hash identifier: /xz6xhf9/5TTYnpO8UZYguc9gtxwHPrnm2U+8YFgE+E=
Subject key identifier: CD:2F:6D:9C:09:65:B9:84:FB:CD:B4:66:8B:A9:45:6C:9A:24:8E:41
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0189D5954E47FCAB390066D3C26B7D61C830
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zS9tnAlluYT7zbRmi6lFbJokjkE.roa
Signing time: Tue 08 Aug 2023 14:37:59 +0000
ROA not before: Tue 08 Aug 2023 14:37:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48485
IP address blocks: 146.120.104.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d5:95:4e:47:fc:ab:39:00:66:d3:c2:6b:7d:61:c8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Aug 8 14:37:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd2f6d9c0965b984fbcdb4668ba9456c9a248e41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:5f:a8:c2:90:32:cf:93:46:77:6d:44:2c:2e:
a6:2d:1b:82:a7:b0:ff:9d:63:d3:5c:76:75:08:bb:
04:73:ed:57:8a:79:c1:36:08:02:c2:30:e3:8d:da:
9c:19:da:20:05:c2:cc:a0:86:d6:96:1f:59:1f:f2:
f1:15:42:d8:90:26:1a:28:d8:b7:27:9f:ed:86:18:
f0:c6:4b:ca:f0:d3:02:5e:ee:58:a5:a4:e9:1e:3d:
b5:a3:a4:c1:a8:f8:bc:ca:54:c5:e4:38:2f:bd:82:
9c:25:13:e1:ad:c1:d5:d8:a0:c6:48:32:94:53:2e:
45:7f:9f:c6:56:f9:d9:01:bc:2f:28:f4:88:60:71:
bf:f3:3a:62:d4:a3:bc:ba:bb:77:8e:1a:bc:ef:d1:
97:15:5b:df:8e:4b:76:dc:b6:4b:bd:87:27:ec:9d:
05:54:b0:04:b7:cd:c6:a8:a6:93:48:af:30:78:93:
a9:27:df:a0:48:5f:c3:16:7f:c4:f7:e7:0d:2a:28:
a8:d3:4a:e9:8b:57:ad:26:3c:63:da:ee:90:c2:21:
95:45:06:e7:ab:0c:a1:a7:0a:53:5a:52:f4:10:09:
43:f9:97:ec:69:45:12:7b:15:29:57:a8:29:46:b9:
5a:9e:4a:04:db:51:29:4e:12:3a:69:cb:47:8e:e1:
85:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2F:6D:9C:09:65:B9:84:FB:CD:B4:66:8B:A9:45:6C:9A:24:8E:41
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zS9tnAlluYT7zbRmi6lFbJokjkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.104.0/22
Signature Algorithm: sha256WithRSAEncryption
61:c7:e9:c9:74:9c:b4:c8:6c:bd:73:4f:71:3c:3a:32:c2:c7:
4d:5e:eb:8a:8a:72:34:19:e2:24:60:15:c3:59:42:77:87:02:
b3:bd:76:7f:eb:ce:c2:77:aa:32:d1:64:ed:40:3e:94:f7:47:
e4:fc:1a:86:82:de:00:b3:62:36:c2:f2:7f:d2:e9:6a:bd:e3:
e8:36:5e:29:75:b6:89:ab:45:de:23:1a:0c:ed:39:59:3f:14:
f6:0e:82:46:09:88:ae:d2:9c:3c:fb:a5:89:b4:e2:de:37:03:
ae:56:70:51:6e:b6:88:e1:59:f3:82:5a:ad:2e:e5:0c:62:c2:
26:56:74:90:c8:65:60:d2:40:88:3c:56:54:85:ed:37:d8:2f:
11:e8:8e:c2:4e:71:ed:6b:e2:94:06:5c:69:47:78:3b:8a:7f:
a7:ba:9d:77:ec:f8:32:c7:43:55:2e:2f:82:5e:31:1c:5d:c0:
12:7f:f8:c9:ad:3f:95:b0:ee:b7:ab:e3:c7:68:e5:d3:ac:44:
f5:6f:07:43:74:1d:29:db:9f:60:91:7f:a3:8c:90:f9:28:5a:
8c:2a:27:a8:d5:dd:0f:4b:a4:8a:0b:9f:a3:b9:eb:af:c7:57:
6a:1d:1b:9f:97:69:5a:61:8c:2c:90:0a:6e:a5:e0:a6:35:fe:
a0:e5:78:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:52 2024 by rpki-client on console-ams.rpki-client.org