Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/521d12-fe7a-4d94-8fa9-b2bfac3b3204/1/ztkImt4kT5QPFUFncWEUHFYUKNc.roa
File: ztkImt4kT5QPFUFncWEUHFYUKNc.roa (raw, json)
Hash identifier: lLSdO02mRscaBNYrC4nVhbwUjEzVJcUGqNeawq+9Ebs=
Subject key identifier: CE:D9:08:9A:DE:24:4F:94:0F:15:41:67:71:61:14:1C:56:14:28:D7
Certificate issuer: /CN=83020637e89655e299d91843769254af07714994
Certificate serial: 01856F14E3668C73F493E994CDB07FC0B15C
Authority key identifier: 83:02:06:37:E8:96:55:E2:99:D9:18:43:76:92:54:AF:07:71:49:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwIGN-iWVeKZ2RhDdpJUrwdxSZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/521d12-fe7a-4d94-8fa9-b2bfac3b3204/1/ztkImt4kT5QPFUFncWEUHFYUKNc.roa
Signing time: Sun 01 Jan 2023 20:45:17 +0000
ROA not before: Sun 01 Jan 2023 20:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48745
IP address blocks: 91.212.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:e3:66:8c:73:f4:93:e9:94:cd:b0:7f:c0:b1:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83020637e89655e299d91843769254af07714994
Validity
Not Before: Jan 1 20:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ced9089ade244f940f1541677161141c561428d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f1:68:cc:1e:f0:bc:3e:94:63:91:2e:f8:ce:
1b:24:2e:f7:bb:52:b1:6a:28:ad:f9:74:5a:5b:54:
e6:84:67:29:b6:77:6f:4c:5a:62:8d:2c:36:48:47:
0d:1a:ce:7d:43:9b:1d:de:0a:0d:4e:91:46:0a:61:
1d:df:7a:0b:9a:79:29:ee:2f:c7:1e:2c:92:b0:29:
bf:0f:25:54:6e:21:6f:7e:b0:f2:bc:c5:47:d9:9a:
b8:e9:ae:96:b5:c3:63:8c:6a:a2:b1:c0:cf:58:5e:
69:33:cc:6b:c3:28:d2:c4:55:74:da:a5:21:42:1b:
87:45:11:a5:7b:59:c8:93:11:eb:c7:a5:ba:11:0a:
49:63:e6:f1:6e:f8:31:7a:6b:c5:03:5c:2c:b3:fe:
b8:ce:db:ce:49:fb:13:06:6a:4a:3c:a4:ff:58:9b:
e7:83:66:52:af:af:50:e0:f7:6a:41:70:94:cf:34:
36:c9:16:ee:77:cf:1c:cd:1d:ad:0c:cb:5e:05:4e:
70:69:30:89:81:9a:c6:cb:71:36:c9:a6:ce:0b:7e:
49:a7:ce:50:16:5e:73:5c:9f:2c:6f:cf:d9:6a:c0:
a3:4c:54:72:78:ae:b2:fb:77:a6:de:8a:84:3e:59:
04:d7:8b:3e:38:20:f8:03:11:7d:ec:16:21:09:0a:
b7:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D9:08:9A:DE:24:4F:94:0F:15:41:67:71:61:14:1C:56:14:28:D7
X509v3 Authority Key Identifier:
keyid:83:02:06:37:E8:96:55:E2:99:D9:18:43:76:92:54:AF:07:71:49:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwIGN-iWVeKZ2RhDdpJUrwdxSZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/521d12-fe7a-4d94-8fa9-b2bfac3b3204/1/ztkImt4kT5QPFUFncWEUHFYUKNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/521d12-fe7a-4d94-8fa9-b2bfac3b3204/1/gwIGN-iWVeKZ2RhDdpJUrwdxSZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.17.0/24
Signature Algorithm: sha256WithRSAEncryption
18:1f:f9:9d:22:24:17:45:25:ef:45:0e:51:03:e1:be:0e:a7:
8e:64:2e:17:00:fd:e6:c3:97:c4:8c:be:d6:1e:94:d0:16:c9:
89:ba:e2:e7:82:6b:90:2b:a6:da:27:64:8b:6a:64:b9:6b:24:
8f:f8:11:4e:1b:ec:f4:e6:9d:73:f2:a5:0d:34:77:f8:1b:eb:
66:cf:f4:6b:04:ec:48:5b:47:68:8f:6b:e5:6a:e8:61:6e:95:
d5:a1:90:7c:70:fe:71:b4:ff:58:cb:c6:a1:54:b1:e5:5d:cb:
44:50:a3:b8:ee:7e:7f:fd:25:4a:2f:8d:61:28:69:90:54:dc:
99:48:31:c7:08:8a:c6:45:47:75:26:c1:b9:3c:40:a6:06:99:
a7:37:5b:66:60:8c:f1:c9:df:b6:97:30:ab:65:49:4a:9b:b0:
50:af:89:72:65:0e:b3:0d:ae:25:b8:28:38:ba:b8:0a:7a:5c:
53:f7:99:11:f7:5c:21:7e:b1:a5:c6:66:dd:4f:80:ca:47:09:
26:0c:2e:90:bc:a5:a7:12:fd:02:c2:a3:de:6e:3b:56:1a:b4:
38:a5:4e:fe:2b:f9:57:17:e6:85:f2:81:70:dc:d1:4c:cc:96:
ff:39:81:f2:7a:44:fb:68:35:99:02:e7:64:93:b7:a8:e2:ef:
9b:4b:05:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:47 2024 by rpki-client on console-fra.rpki-client.org