Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/1ZLnNDCWLvEtqwHaIIdw5tvdR3I.roa
File: 1ZLnNDCWLvEtqwHaIIdw5tvdR3I.roa (raw, json)
Hash identifier: M6sWHIHUwsxYM2367Ja84wp9gmxIhO+tCWYC9BFZbnA=
Subject key identifier: D5:92:E7:34:30:96:2E:F1:2D:AB:01:DA:20:87:70:E6:DB:DD:47:72
Certificate issuer: /CN=661691ca9c58d0859b6b870230b0f581be66a58a
Certificate serial: 018C1793DDE99A38C87D09CFE96674D7168C
Authority key identifier: 66:16:91:CA:9C:58:D0:85:9B:6B:87:02:30:B0:F5:81:BE:66:A5:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/1ZLnNDCWLvEtqwHaIIdw5tvdR3I.roa
Signing time: Tue 28 Nov 2023 20:16:55 +0000
ROA not before: Tue 28 Nov 2023 20:16:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12874
IP address blocks: 45.84.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:17:93:dd:e9:9a:38:c8:7d:09:cf:e9:66:74:d7:16:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=661691ca9c58d0859b6b870230b0f581be66a58a
Validity
Not Before: Nov 28 20:16:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d592e73430962ef12dab01da208770e6dbdd4772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:79:42:b5:36:7d:cf:a3:98:9c:c0:ee:02:73:
05:1f:86:9b:88:13:34:2f:71:6e:19:3b:14:7f:ab:
27:23:5f:5e:8c:ff:83:80:63:80:ef:ea:48:6c:ef:
b8:af:5e:f4:de:0b:84:ab:ce:38:0b:34:0c:33:22:
5f:c2:1a:85:33:1a:2e:94:82:f0:a3:41:50:8a:3c:
78:fc:d5:ae:2a:3b:67:6f:a4:c0:bd:db:85:20:29:
22:79:a0:07:d1:2a:c4:cb:0d:7d:dc:cd:51:85:06:
1c:79:30:46:0a:ab:d0:e3:f5:dd:62:bb:6d:45:2e:
bf:cb:1b:8d:0d:e4:11:4f:12:89:df:70:77:45:10:
bd:3a:af:fa:a1:14:2c:8e:09:36:a7:ba:cd:98:1b:
b8:f0:70:01:ea:98:b6:d7:f8:a0:8c:58:a4:5d:8b:
99:da:50:59:23:19:45:b5:5f:6a:a7:11:b9:55:d7:
07:bf:fd:2b:4f:03:b3:cf:48:19:f4:7b:4d:b9:8a:
85:80:b7:ee:3f:e5:a0:5c:76:31:a2:b2:3a:e5:86:
4b:b3:68:cb:3b:a6:c6:35:92:b3:b8:43:0a:89:19:
cd:b8:15:3f:e0:cc:46:31:13:5c:e7:1f:1a:47:ad:
88:43:e1:68:4e:59:ae:a6:ca:a7:d2:5a:c7:10:fd:
f7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:92:E7:34:30:96:2E:F1:2D:AB:01:DA:20:87:70:E6:DB:DD:47:72
X509v3 Authority Key Identifier:
keyid:66:16:91:CA:9C:58:D0:85:9B:6B:87:02:30:B0:F5:81:BE:66:A5:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/1ZLnNDCWLvEtqwHaIIdw5tvdR3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/ZhaRypxY0IWba4cCMLD1gb5mpYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.195.0/24
Signature Algorithm: sha256WithRSAEncryption
19:80:99:dd:6e:de:5e:fb:1f:ad:de:21:0f:d3:66:23:ba:7d:
28:42:f9:b2:1d:4b:d3:a1:29:22:83:ff:4b:45:d1:ac:ee:ae:
50:0b:11:f3:35:22:39:6c:84:1e:41:f9:cc:42:88:2f:15:7a:
3e:f6:26:91:51:fb:fd:b7:f0:29:8f:f6:a0:88:ff:20:07:a5:
f4:f3:ef:9b:95:8e:d3:02:1b:17:7e:05:fb:ea:b0:73:d5:ec:
31:08:07:87:6e:15:db:bb:b7:0c:f7:df:29:23:f0:ec:06:32:
ca:af:0f:a9:77:8c:c5:4e:3d:7a:33:c6:21:36:27:84:72:1d:
de:4f:7d:2e:32:2a:dc:68:31:15:d7:3c:75:2e:83:61:a5:69:
9e:09:4d:5e:12:ff:aa:63:62:a4:42:40:0c:9b:7f:9a:df:92:
7c:32:86:b4:0a:1e:af:1d:36:aa:c3:40:50:35:c8:58:78:0a:
06:08:e4:83:c4:3a:13:98:d1:22:ae:c9:be:75:7c:b9:4b:dc:
01:a6:9e:0f:a1:20:a3:e3:9f:92:d7:5d:d4:05:f7:35:5c:b7:
99:26:41:83:62:02:1b:57:c5:2f:6e:f4:39:a6:94:e4:4c:6c:
c8:67:f5:63:99:79:cc:e5:a2:58:63:c7:d1:45:02:c2:76:50:
82:5b:46:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:46 2024 by rpki-client on console-fra.rpki-client.org