Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/zfSpi-JUquGXHP6G68n-JTXUmpQ.roa
File: zfSpi-JUquGXHP6G68n-JTXUmpQ.roa (raw, json)
Hash identifier: pqVMosXVy5VUBmmDP8MSowd4cI2vxKVYA4KmryUYRFE=
Subject key identifier: CD:F4:A9:8B:E2:54:AA:E1:97:1C:FE:86:EB:C9:FE:25:35:D4:9A:94
Certificate issuer: /CN=f8d7213f3585b7112dff0cb43c192b1caf307d18
Certificate serial: 018847B4B3190207E1D2EA8726B0BD5D7131
Authority key identifier: F8:D7:21:3F:35:85:B7:11:2D:FF:0C:B4:3C:19:2B:1C:AF:30:7D:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-NchPzWFtxEt_wy0PBkrHK8wfRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/zfSpi-JUquGXHP6G68n-JTXUmpQ.roa
Signing time: Tue 23 May 2023 08:23:24 +0000
ROA not before: Tue 23 May 2023 08:23:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 45.140.216.0/22 maxlen: 24
2a0f:1b00::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:47:b4:b3:19:02:07:e1:d2:ea:87:26:b0:bd:5d:71:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8d7213f3585b7112dff0cb43c192b1caf307d18
Validity
Not Before: May 23 08:23:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdf4a98be254aae1971cfe86ebc9fe2535d49a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e3:80:03:91:0b:93:08:2a:5f:92:15:7f:f9:
76:df:a1:9c:3c:45:85:09:d7:35:05:97:a1:cb:c0:
46:6f:30:79:ad:1b:ec:35:a4:8c:3f:c8:a7:2d:db:
e5:33:59:1e:48:64:0f:16:1c:02:8d:b2:18:c0:ac:
32:00:e6:45:93:32:60:5a:0e:35:7f:ee:0b:54:a4:
65:61:c1:e0:ce:94:7d:12:6b:de:ec:ee:b5:04:45:
a3:a4:19:7c:2f:76:ea:89:47:f4:0e:d6:c2:18:6d:
9b:06:89:ff:1c:4f:7e:20:72:15:81:04:a7:ae:d2:
74:6f:27:84:c4:b9:da:de:87:44:05:fe:95:a5:f1:
41:33:57:79:5e:ac:ca:9e:0b:22:4c:f7:70:4d:6e:
4a:8d:0f:e9:c7:bd:4b:54:61:5e:4c:0d:0e:a5:55:
38:ca:72:ed:a8:f3:da:6b:f3:91:66:80:b0:cb:65:
fc:c7:68:dd:57:8d:71:1f:19:40:94:85:75:5c:df:
47:ee:fe:41:18:ae:16:09:f3:d5:bb:93:f7:2e:33:
38:23:49:35:4b:4e:0e:b1:4d:f8:db:21:de:cb:e0:
00:a0:10:8f:ca:20:6e:94:e1:a6:58:61:ca:40:f4:
b7:ca:0c:dc:2f:0b:91:0d:aa:25:55:5a:9c:a3:76:
ee:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F4:A9:8B:E2:54:AA:E1:97:1C:FE:86:EB:C9:FE:25:35:D4:9A:94
X509v3 Authority Key Identifier:
keyid:F8:D7:21:3F:35:85:B7:11:2D:FF:0C:B4:3C:19:2B:1C:AF:30:7D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-NchPzWFtxEt_wy0PBkrHK8wfRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/zfSpi-JUquGXHP6G68n-JTXUmpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/1-NchPzWFtxEt_wy0PBkrHK8wfRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.216.0/22
IPv6:
2a0f:1b00::/29
Signature Algorithm: sha256WithRSAEncryption
4a:c4:b1:f4:6f:8b:52:58:fa:dd:65:2d:2e:82:13:1f:70:b7:
14:2e:60:a3:e4:78:8e:99:5a:17:fc:b2:67:b3:7f:8f:b8:35:
33:ad:9c:fa:be:b7:67:88:c5:4d:6c:db:e8:cf:26:4c:ce:8a:
36:09:c5:a7:44:df:3e:23:f6:df:f6:93:cd:ea:6a:7a:8d:64:
2e:f6:3a:2e:8f:9f:f5:53:16:fc:39:7e:07:0f:32:ac:b9:e6:
d8:92:df:a6:b6:9b:96:a6:03:fc:a4:c4:a3:98:01:9e:64:18:
f3:ae:a1:3a:66:69:7c:5e:7c:6e:2e:d6:63:e9:ac:a7:5e:c4:
ab:a1:cd:e9:5c:70:47:cc:dc:39:11:38:95:fe:4a:84:93:94:
93:78:c2:d0:f7:22:0c:49:50:32:bd:7b:98:9f:8c:cd:e3:2b:
96:29:6e:61:64:00:7f:1f:44:06:07:53:8f:9f:54:4e:16:fa:
9b:77:fa:11:1b:51:c6:df:b9:10:41:ae:2a:6a:3b:b5:67:0c:
77:9a:63:1f:57:3c:0c:3e:d4:06:f2:af:f7:8a:e1:f1:44:3d:
da:d9:8f:84:78:bd:02:97:4c:f4:85:31:9a:7d:53:e7:e9:12:
65:a4:5d:d5:a1:62:00:38:31:28:73:95:5e:17:82:53:ee:9e:
5d:cb:b2:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:20 2024 by rpki-client on console-fra.rpki-client.org