Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/1ad468-e309-4ae6-a1ca-d54c49a46338/1/PzzbizPKz_pNduDdZRNrpghmCIk.roa
File: PzzbizPKz_pNduDdZRNrpghmCIk.roa (raw, json)
Hash identifier: UM1f4ImkY3KV3DUqnOklPtYnrxhzkynS6HRN99m4Y7k=
Subject key identifier: 3F:3C:DB:8B:33:CA:CF:FA:4D:76:E0:DD:65:13:6B:A6:08:66:08:89
Certificate issuer: /CN=2c76e0c8f6cb721e3bcf2011ba3aafba2a1017db
Certificate serial: 018EA90B4D7D49E2BFB8E83D5E2F930BBC58
Authority key identifier: 2C:76:E0:C8:F6:CB:72:1E:3B:CF:20:11:BA:3A:AF:BA:2A:10:17:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHbgyPbLch47zyARujqvuioQF9s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/1ad468-e309-4ae6-a1ca-d54c49a46338/1/PzzbizPKz_pNduDdZRNrpghmCIk.roa
Signing time: Thu 04 Apr 2024 12:17:53 +0000
ROA not before: Thu 04 Apr 2024 12:17:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209200
IP address blocks: 2.57.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 23 May 2024 10:15:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a9:0b:4d:7d:49:e2:bf:b8:e8:3d:5e:2f:93:0b:bc:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c76e0c8f6cb721e3bcf2011ba3aafba2a1017db
Validity
Not Before: Apr 4 12:17:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f3cdb8b33cacffa4d76e0dd65136ba608660889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:82:84:ea:8e:8d:1c:6a:6f:18:b8:a0:3c:18:
a0:08:f9:a5:72:ab:91:35:0f:ec:f9:f3:27:0a:eb:
d1:e6:31:8c:02:59:fd:70:67:ba:24:98:d9:f5:77:
50:d4:f8:7e:ab:0c:1d:68:46:1f:a3:ac:2c:15:02:
d5:85:d5:81:fd:ce:08:ff:9b:61:4a:ea:6c:ce:5d:
21:6c:6b:2d:7d:04:5d:30:b3:bd:20:24:80:7a:14:
76:ee:92:da:59:07:7f:8d:f9:04:ca:c2:c7:dd:7c:
71:e6:64:82:fe:15:70:48:51:0f:ea:e4:54:40:2b:
21:06:12:00:5f:31:3b:9f:f3:b3:9d:9a:f9:2c:12:
ca:be:41:b2:c4:ab:19:72:ac:f7:f8:df:5c:52:8e:
60:02:e4:26:61:11:8b:30:ee:ae:72:02:22:2b:e9:
6b:1e:fa:8b:b3:c6:8c:3d:d4:7f:60:4b:9f:38:e6:
07:10:5e:e4:dc:1e:96:3b:e4:d9:67:03:9a:ab:78:
95:da:78:24:5a:6f:9e:02:97:ab:30:8b:2b:67:53:
be:35:2f:38:98:34:b7:ca:71:d7:cf:f6:42:f7:b4:
f5:2d:80:be:44:b3:e9:82:10:cc:17:f9:35:73:6b:
9e:7e:db:67:35:98:e6:d2:b7:8b:54:ce:28:81:be:
61:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:3C:DB:8B:33:CA:CF:FA:4D:76:E0:DD:65:13:6B:A6:08:66:08:89
X509v3 Authority Key Identifier:
keyid:2C:76:E0:C8:F6:CB:72:1E:3B:CF:20:11:BA:3A:AF:BA:2A:10:17:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHbgyPbLch47zyARujqvuioQF9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1ad468-e309-4ae6-a1ca-d54c49a46338/1/PzzbizPKz_pNduDdZRNrpghmCIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1ad468-e309-4ae6-a1ca-d54c49a46338/1/LHbgyPbLch47zyARujqvuioQF9s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.8.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:34:f6:a1:d6:21:c5:ef:1f:18:84:da:cf:41:f0:44:03:9a:
78:d0:20:e3:be:ce:b4:32:b4:58:a9:58:f2:58:a5:be:0f:d1:
a8:53:4c:3f:fd:55:07:84:14:9c:27:6d:53:06:a3:31:77:5a:
d4:2b:a5:cb:65:b3:f6:32:13:a1:5e:15:90:4e:90:66:d9:09:
94:54:1d:ec:7b:7e:5c:01:ce:f3:4f:c1:49:2a:13:5f:88:2f:
8d:7a:9a:dd:88:99:98:15:52:17:c0:dc:82:88:3f:f7:97:09:
4d:5e:77:f8:4a:67:4c:88:c4:01:e9:d1:ff:e2:0b:88:e9:88:
20:6a:e5:63:87:1e:3e:68:9f:cd:99:d3:39:88:78:58:b5:db:
f7:bb:0c:14:eb:10:5d:90:68:48:4b:87:99:aa:03:7d:23:4b:
97:46:75:5e:57:02:7b:18:62:62:f4:57:6d:4e:fa:7e:82:8f:
b0:a0:98:e4:81:76:a9:4e:8d:18:8e:a2:25:9d:f2:00:24:d8:
b5:94:03:cf:dd:01:a9:1d:9c:7c:a5:0a:67:23:cf:20:a9:62:
0c:23:45:9d:79:18:81:1d:db:84:28:c0:ed:7e:6a:1e:68:9e:
fb:d2:b1:ec:c2:e0:0d:e5:50:58:1c:a5:cf:39:66:99:ee:b6:
ff:10:b3:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:35 2024 by rpki-client on console-ams.rpki-client.org