Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b663df-ac1c-4529-8c8b-712135a6b750/1/ZQwVlkPfBqqXkdIecCaORrvffIo.roa
File: ZQwVlkPfBqqXkdIecCaORrvffIo.roa (raw, json)
Hash identifier: vVVSxb9eqjXAjxAVF7N5yfHXWsXfWCVGifPgy5V/gqQ=
Subject key identifier: 65:0C:15:96:43:DF:06:AA:97:91:D2:1E:70:26:8E:46:BB:DF:7C:8A
Certificate issuer: /CN=58dcfb0ff4f28b8ffad6eb0dd29eb2b6af629a68
Certificate serial: 018858FF0228C3A18130CBBB30C367EE9E2A
Authority key identifier: 58:DC:FB:0F:F4:F2:8B:8F:FA:D6:EB:0D:D2:9E:B2:B6:AF:62:9A:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WNz7D_Tyi4_61usN0p6ytq9immg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b663df-ac1c-4529-8c8b-712135a6b750/1/ZQwVlkPfBqqXkdIecCaORrvffIo.roa
Signing time: Fri 26 May 2023 16:58:07 +0000
ROA not before: Fri 26 May 2023 16:58:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 185.222.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:58:ff:02:28:c3:a1:81:30:cb:bb:30:c3:67:ee:9e:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58dcfb0ff4f28b8ffad6eb0dd29eb2b6af629a68
Validity
Not Before: May 26 16:58:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=650c159643df06aa9791d21e70268e46bbdf7c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bd:40:d1:18:da:23:47:93:51:78:68:cf:08:
e9:f1:2a:65:f0:1d:e4:be:5e:53:e8:73:1b:3a:e4:
bd:23:53:e7:86:2a:81:4a:cd:bb:9e:3e:db:90:b3:
6d:d9:54:ee:2c:d4:14:ba:e1:45:b3:86:5b:b2:4f:
ff:8f:3c:8b:ad:bc:5b:28:be:2c:65:a1:4e:94:47:
a4:bf:8b:3b:1f:3b:b3:0f:82:c9:0b:7a:ac:4e:95:
51:7f:da:e7:e0:c8:0b:7d:88:6f:a7:f9:24:d8:5c:
68:9c:bb:0d:41:76:6e:2b:09:0c:82:f6:33:0f:3d:
62:63:e4:ec:11:74:95:ee:2e:e0:2f:83:f4:89:a2:
af:f3:50:d7:62:67:2e:3a:b4:bf:e7:4a:37:7f:08:
87:22:df:b4:5e:d3:77:95:97:9e:f7:1d:64:01:e8:
77:eb:24:42:72:b1:26:71:64:85:76:77:33:df:18:
ca:88:d0:6b:65:c5:5a:21:87:c8:16:ef:bf:63:78:
f1:0a:8e:7c:79:dd:73:a1:da:1e:a3:6b:db:f3:19:
c7:f5:44:4c:56:9b:9c:7f:49:d5:61:eb:ff:70:8b:
10:1b:f8:f8:7c:d6:db:79:9c:29:33:36:c9:26:dd:
d2:03:d9:48:cc:7d:65:11:bf:ad:e8:3a:c7:43:2c:
12:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:0C:15:96:43:DF:06:AA:97:91:D2:1E:70:26:8E:46:BB:DF:7C:8A
X509v3 Authority Key Identifier:
keyid:58:DC:FB:0F:F4:F2:8B:8F:FA:D6:EB:0D:D2:9E:B2:B6:AF:62:9A:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WNz7D_Tyi4_61usN0p6ytq9immg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b663df-ac1c-4529-8c8b-712135a6b750/1/ZQwVlkPfBqqXkdIecCaORrvffIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b663df-ac1c-4529-8c8b-712135a6b750/1/WNz7D_Tyi4_61usN0p6ytq9immg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.79.0/24
Signature Algorithm: sha256WithRSAEncryption
14:67:51:68:0c:69:d7:d5:08:ad:fc:cb:b0:05:69:52:4e:ed:
7c:71:b4:8d:e5:c6:5e:03:b1:dc:0d:2a:cc:03:96:a9:9d:7e:
a9:93:bb:b7:8f:4f:ef:2d:7b:b1:57:d3:a8:bb:22:a9:fb:ea:
d5:f0:3d:34:37:59:48:73:28:92:2a:fd:0b:c2:c0:f9:ee:ad:
56:78:f8:d8:d8:68:f1:b0:dc:be:83:05:4e:5f:a8:5c:23:b4:
c2:b6:95:59:f1:d8:14:8b:6f:de:cd:b1:29:88:9a:e6:c0:f1:
a5:d6:19:9f:a2:e7:e2:dd:9a:da:99:6c:53:c2:97:31:0e:ca:
c9:5b:dd:e3:91:e8:c5:ff:7b:5c:69:5e:dc:7c:32:6b:ff:05:
ed:32:e3:d6:2a:ef:db:a6:96:bc:d9:14:85:5c:37:3d:e0:5b:
fb:33:a8:32:b1:b9:0b:88:71:41:98:fb:09:ec:ae:5a:91:f4:
84:94:fd:3f:02:1d:a4:4d:f6:ec:23:c1:00:ab:c8:7e:26:97:
ae:97:15:13:c3:5e:27:37:31:c0:c8:c7:9b:ec:27:2f:f7:8a:
5f:c0:6f:b4:2d:ae:ae:55:e3:7a:5f:11:de:e5:f5:0f:da:1d:
34:2d:be:bd:24:cf:b8:fc:4d:c4:28:01:86:3f:96:03:fb:b1:
96:f9:40:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:12 2024 by rpki-client on console-ams.rpki-client.org