Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/zis_Ny5cWNBuI3sNL5YadP9LKM4.roa
File: zis_Ny5cWNBuI3sNL5YadP9LKM4.roa (raw, json)
Hash identifier: AbWAfU6IpmbYeOkAD+6iHtE0S8v0/asTdmjVV9MpKzs=
Subject key identifier: CE:2B:3F:37:2E:5C:58:D0:6E:23:7B:0D:2F:96:1A:74:FF:4B:28:CE
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01897F70841CEA03D1BB44DEBA03E6C821A7
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/zis_Ny5cWNBuI3sNL5YadP9LKM4.roa
Signing time: Sat 22 Jul 2023 21:10:27 +0000
ROA not before: Sat 22 Jul 2023 21:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 159.255.32.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7f:70:84:1c:ea:03:d1:bb:44:de:ba:03:e6:c8:21:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jul 22 21:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce2b3f372e5c58d06e237b0d2f961a74ff4b28ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b8:da:75:7a:75:31:7a:60:5f:7a:dd:40:50:
51:ea:b0:20:fe:c3:6f:36:95:7b:74:c9:ff:25:ad:
93:10:5f:86:c6:17:35:d3:18:7f:24:53:87:a8:d2:
b6:45:81:4f:cd:60:96:42:b4:82:0e:e9:da:15:d1:
51:29:0e:84:02:e9:bc:23:10:bb:cc:bc:61:b3:de:
8c:70:d8:bf:0a:d9:0c:18:c6:16:39:9c:95:47:ab:
7d:40:14:c2:a5:2e:47:1f:e0:f2:56:8a:c2:18:9f:
e2:47:4c:43:55:f1:c3:cd:c7:0c:37:69:74:27:08:
61:13:2c:35:9e:da:1b:17:fe:bf:54:3c:69:bf:42:
19:91:94:29:45:e0:90:19:e5:ad:2c:a0:35:23:16:
0f:13:5f:d0:da:ec:54:79:fd:a9:bd:9a:4f:d4:d6:
2b:b2:f9:45:4d:0a:ea:89:2a:c0:b3:54:b4:e4:1b:
f6:2f:19:3c:5a:da:d8:b8:49:ad:1d:bb:ab:5d:ff:
35:1b:92:fa:de:d7:e0:e8:77:8f:86:e2:98:85:ee:
e5:81:2f:3a:11:76:f9:47:ff:0a:73:e1:3e:22:bc:
c8:b1:a3:26:5c:2f:53:6f:26:24:8b:7f:16:bc:0d:
2c:1b:fe:f7:b3:39:f9:75:5a:1f:d0:e0:36:31:01:
e1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:2B:3F:37:2E:5C:58:D0:6E:23:7B:0D:2F:96:1A:74:FF:4B:28:CE
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/zis_Ny5cWNBuI3sNL5YadP9LKM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.255.32.0/21
Signature Algorithm: sha256WithRSAEncryption
a8:1e:0f:3a:43:b5:a4:45:bb:be:21:b3:4f:8e:22:c9:d1:f0:
d2:f2:e9:02:4c:48:0c:39:ff:86:b8:c1:c1:47:bb:bb:14:f5:
83:6a:84:10:5d:cc:fd:c7:5b:f8:09:13:ff:77:d9:0a:4e:58:
fc:20:9a:9c:5c:34:79:d6:7b:94:2e:2c:71:be:08:49:44:89:
60:8e:12:df:de:75:ee:90:db:cb:37:70:9f:48:f7:e4:e0:06:
b2:c6:4c:c9:4c:cb:d6:61:21:10:67:84:ec:d3:56:ca:2a:43:
18:f4:89:dd:dc:ae:f8:16:35:0d:6a:4f:2b:35:11:02:07:dd:
01:a2:f2:1e:a4:44:0e:93:a2:b9:4f:d7:ba:d2:84:b3:e0:8a:
70:c3:54:24:54:bf:f9:c6:11:1b:ca:2f:14:eb:f0:e8:84:8e:
9d:8f:b4:a1:c9:2f:57:f6:47:c1:85:e8:f1:0e:e1:34:87:cb:
18:59:5c:0e:d4:58:41:2d:8d:a3:2a:05:4b:30:8e:67:53:d1:
f6:ae:93:39:5a:5b:de:f3:82:9c:dc:fd:45:4e:76:59:7a:d8:
7a:3b:12:af:34:be:32:40:49:9d:cd:f4:42:89:be:4b:0d:cb:
3e:5d:50:ba:18:79:2f:ed:b6:46:20:4c:0f:57:5a:33:9f:2a:
b0:a1:ab:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 28 12:47:07 2023 by rpki-client on console-fra.rpki-client.org