Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/a0c9ac-3a47-4d6c-aa15-a42ec8776fbb/1/PZnD6CRY3bH_sSkn6sBEZ4t-NvY.roa
File: PZnD6CRY3bH_sSkn6sBEZ4t-NvY.roa (raw, json)
Hash identifier: oTKYJvarBZnjXLr5JuDSgukMftototZWes0NPJJBDi4=
Subject key identifier: 3D:99:C3:E8:24:58:DD:B1:FF:B1:29:27:EA:C0:44:67:8B:7E:36:F6
Certificate issuer: /CN=7f3e0b27b8e4d798f92b9de157f1da5a43cd49e5
Certificate serial: 01856B934AC52616661004490628AFCBEC99
Authority key identifier: 7F:3E:0B:27:B8:E4:D7:98:F9:2B:9D:E1:57:F1:DA:5A:43:CD:49:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fz4LJ7jk15j5K53hV_HaWkPNSeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/a0c9ac-3a47-4d6c-aa15-a42ec8776fbb/1/PZnD6CRY3bH_sSkn6sBEZ4t-NvY.roa
Signing time: Sun 01 Jan 2023 04:24:53 +0000
ROA not before: Sun 01 Jan 2023 04:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21217
IP address blocks: 193.72.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:4a:c5:26:16:66:10:04:49:06:28:af:cb:ec:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f3e0b27b8e4d798f92b9de157f1da5a43cd49e5
Validity
Not Before: Jan 1 04:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d99c3e82458ddb1ffb12927eac044678b7e36f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:de:1b:44:0d:61:b3:24:34:bc:82:6a:bc:d0:
22:0f:dd:33:61:8d:8b:b4:95:83:0d:04:3b:03:1f:
83:97:ff:ec:d7:28:58:ba:aa:fa:70:5f:a4:d9:a5:
63:ee:45:ee:6a:c7:2e:86:f3:3d:d0:46:1a:7e:91:
60:7a:e2:bb:b7:bb:f2:8e:43:c3:87:9c:79:0c:0f:
30:b9:04:23:d6:55:26:2b:62:a9:d2:c1:02:93:66:
e0:7b:ce:00:43:df:8a:8b:1d:b1:3f:d7:64:c9:44:
14:74:d0:80:67:9e:5c:fa:1c:46:f0:e8:f4:44:12:
40:ec:7b:3a:85:9f:bc:48:3f:6b:e2:c9:75:cf:b8:
63:b7:00:5a:fe:a9:79:f9:41:16:4f:05:45:17:59:
33:b5:78:95:09:0c:71:16:e0:21:e5:12:6d:47:34:
a9:37:bd:de:4d:03:15:02:0a:a8:63:a3:10:80:56:
19:1c:1b:d0:d4:39:29:fc:01:9c:20:60:c9:91:f9:
bf:3b:ae:bb:28:b6:1d:d4:6f:40:86:da:b8:5f:27:
e1:bc:69:e0:fd:a2:f9:3f:e8:bb:c6:41:51:c2:59:
d1:f6:6e:aa:71:7b:30:be:c2:7b:aa:1f:56:7a:c5:
7c:89:2a:95:3c:9c:e7:2d:aa:e5:99:b0:9b:7c:90:
c1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:99:C3:E8:24:58:DD:B1:FF:B1:29:27:EA:C0:44:67:8B:7E:36:F6
X509v3 Authority Key Identifier:
keyid:7F:3E:0B:27:B8:E4:D7:98:F9:2B:9D:E1:57:F1:DA:5A:43:CD:49:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fz4LJ7jk15j5K53hV_HaWkPNSeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/a0c9ac-3a47-4d6c-aa15-a42ec8776fbb/1/PZnD6CRY3bH_sSkn6sBEZ4t-NvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/a0c9ac-3a47-4d6c-aa15-a42ec8776fbb/1/fz4LJ7jk15j5K53hV_HaWkPNSeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.72.147.0/24
Signature Algorithm: sha256WithRSAEncryption
56:e6:7d:13:1b:a5:52:96:85:01:a1:44:58:9b:0d:36:64:e1:
38:9b:bf:78:f3:4d:ab:ab:96:43:35:1d:18:33:48:63:6a:6e:
46:e6:b2:d0:69:cd:17:95:7b:98:06:fa:8a:90:19:47:4e:d7:
68:c0:f9:8d:58:c4:15:7b:4a:1e:93:82:56:0a:25:2d:59:d3:
b7:1b:54:fe:59:9b:f1:2e:8d:fd:50:83:ac:b7:38:d7:7b:6b:
5e:1c:cd:90:6b:d2:8c:b1:62:2c:3d:37:88:d0:71:f0:1d:f1:
f2:28:d2:93:d7:df:f7:d2:34:6e:f5:5f:7e:37:1d:82:8d:97:
1b:7b:c3:38:a3:26:c8:d3:7d:e4:c3:ea:a7:d5:c3:8f:c9:db:
57:ab:8f:75:3b:1c:6e:8d:4b:48:7b:ab:fd:5f:3b:6e:3c:05:
37:a2:cb:89:e4:fd:f0:1d:d8:e7:7e:e7:3f:ac:8a:27:0d:98:
55:7f:1c:fa:96:86:84:70:0d:81:61:5e:57:61:b8:7d:11:b8:
1a:9f:94:55:8e:23:d5:9a:7c:dd:7e:75:33:ac:80:ab:e0:05:
f7:df:a8:28:73:d7:f5:27:a6:56:8f:b0:19:c3:37:fc:d8:df:
39:45:73:ac:5f:fe:93:72:7d:53:3e:cf:c8:6c:0b:90:4d:e6:
d9:50:f1:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:38 2024 by rpki-client on console-ams.rpki-client.org