Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c68bd1-8a98-41b2-b36b-386eea8d8dd6/1/Ziyaf68iAemM_wRdheGf_3R2q9Y.roa
File: Ziyaf68iAemM_wRdheGf_3R2q9Y.roa (raw, json)
Hash identifier: ltE2KkytnzTFYXELac8sKWogoyw8w/UHKn3tzE+fKmM=
Subject key identifier: 66:2C:9A:7F:AF:22:01:E9:8C:FF:04:5D:85:E1:9F:FF:74:76:AB:D6
Certificate issuer: /CN=4eee86b22c24bca7713071de95d6822c339cfd1c
Certificate serial: 01856B5335B24432E1A550E063211E7A13BF
Authority key identifier: 4E:EE:86:B2:2C:24:BC:A7:71:30:71:DE:95:D6:82:2C:33:9C:FD:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tu6GsiwkvKdxMHHeldaCLDOc_Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c68bd1-8a98-41b2-b36b-386eea8d8dd6/1/Ziyaf68iAemM_wRdheGf_3R2q9Y.roa
Signing time: Sun 01 Jan 2023 03:14:53 +0000
ROA not before: Sun 01 Jan 2023 03:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 91.240.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:35:b2:44:32:e1:a5:50:e0:63:21:1e:7a:13:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eee86b22c24bca7713071de95d6822c339cfd1c
Validity
Not Before: Jan 1 03:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=662c9a7faf2201e98cff045d85e19fff7476abd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:54:08:8a:db:08:af:5d:d9:35:3e:fb:92:be:
ab:84:1e:38:ac:ec:35:54:22:a8:db:ad:f8:5d:6f:
82:fa:98:d3:25:d9:9b:d1:90:e0:33:e9:cf:40:3a:
80:8a:c9:22:68:75:8e:7c:39:af:c0:d2:4b:c7:36:
20:d9:22:69:85:ad:65:c0:9c:9c:86:03:d4:96:bc:
a1:17:b3:12:5f:e6:a8:41:5f:eb:06:d8:8d:e9:00:
cf:cf:f3:c4:aa:23:f6:14:62:04:b1:7f:bc:30:8c:
e6:71:5f:4f:f7:36:30:3b:aa:46:0c:93:9d:80:5d:
47:fa:7a:49:cc:f3:59:2f:8b:ed:b0:0b:2d:32:78:
29:60:0d:f0:e2:6e:35:7f:a1:dd:66:c9:37:dd:71:
8f:0d:e8:58:a2:ac:ef:64:7c:de:e7:a0:82:36:b4:
45:00:a9:30:66:b7:e3:39:5b:fe:57:8c:07:6a:12:
9d:74:69:45:0c:81:43:3c:f6:76:29:8b:a9:16:40:
ab:b7:c6:81:54:a0:da:6e:a5:b0:60:ec:18:77:14:
8f:ad:b9:30:80:39:2d:17:e5:82:e4:05:f7:0e:9a:
4b:0d:b0:d8:bb:24:c0:b1:ad:20:3b:6e:bd:06:2f:
d5:c6:83:cb:6e:6b:33:83:d0:27:74:35:24:36:87:
34:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2C:9A:7F:AF:22:01:E9:8C:FF:04:5D:85:E1:9F:FF:74:76:AB:D6
X509v3 Authority Key Identifier:
keyid:4E:EE:86:B2:2C:24:BC:A7:71:30:71:DE:95:D6:82:2C:33:9C:FD:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tu6GsiwkvKdxMHHeldaCLDOc_Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c68bd1-8a98-41b2-b36b-386eea8d8dd6/1/Ziyaf68iAemM_wRdheGf_3R2q9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c68bd1-8a98-41b2-b36b-386eea8d8dd6/1/Tu6GsiwkvKdxMHHeldaCLDOc_Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.109.0/24
Signature Algorithm: sha256WithRSAEncryption
78:22:f3:9c:12:69:00:b8:dd:5a:f5:e8:49:18:4a:5c:9d:e3:
b9:a8:c4:b6:4b:08:e4:5a:a7:55:0c:8e:e9:1f:c2:8a:68:49:
0b:6c:9d:b5:d2:32:98:f0:4c:19:d0:e9:af:78:39:9f:89:b0:
44:38:f4:31:f8:fd:7e:03:a5:1a:24:b7:f7:4a:7b:6f:89:b9:
59:0f:75:1c:05:ea:93:12:b3:9c:d2:7c:33:0d:77:11:c8:40:
de:96:ce:5d:96:c6:7d:3d:79:02:5e:ab:dc:27:61:ac:db:25:
54:41:cd:3e:08:20:31:c1:88:38:a3:eb:4e:27:fa:4b:fc:a3:
04:63:32:73:f3:b3:05:31:7f:23:71:4b:39:98:68:60:e5:bb:
fe:75:aa:64:09:02:74:e6:30:a0:39:42:31:d5:f9:f4:2a:24:
21:2a:36:be:a7:10:6f:93:fd:51:a6:74:49:59:0f:d3:f1:3a:
ed:09:80:31:89:58:f5:f4:ec:eb:a5:c9:f8:d5:11:18:1f:53:
65:75:55:bd:a5:22:ec:59:fe:7c:43:9f:60:eb:27:9a:8c:9d:
3f:2c:68:cb:4e:c5:b4:1e:e6:1a:d0:07:26:c0:03:d5:34:24:
a3:82:4a:f4:c2:82:7f:b2:e0:7e:22:c3:91:3d:62:f1:df:fb:
f3:e5:58:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:24 2024 by rpki-client on console-fra.rpki-client.org