Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/ZFIJ_D_blJbT7mFlDEWlpj2lgUU.roa
File: ZFIJ_D_blJbT7mFlDEWlpj2lgUU.roa (raw, json)
Hash identifier: CAhK3R6h7C5gSFiox3qKqwonZWhfyWUQFTbAWwDpsOQ=
Subject key identifier: 64:52:09:FC:3F:DB:94:96:D3:EE:61:65:0C:45:A5:A6:3D:A5:81:45
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 018CB49788ADAB9DD404371BE01C046A0E61
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/ZFIJ_D_blJbT7mFlDEWlpj2lgUU.roa
Signing time: Fri 29 Dec 2023 08:01:18 +0000
ROA not before: Fri 29 Dec 2023 08:01:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210542
IP address blocks: 45.146.202.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b4:97:88:ad:ab:9d:d4:04:37:1b:e0:1c:04:6a:0e:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Dec 29 08:01:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645209fc3fdb9496d3ee61650c45a5a63da58145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:31:71:1d:ff:a9:af:75:b0:6c:46:1e:a0:a0:
f6:a0:cf:48:5b:29:06:01:20:3f:84:d1:86:45:c1:
7a:88:26:e1:4f:42:e8:1f:cb:73:7b:ce:4e:ce:3b:
f0:e3:70:cf:d5:a4:1e:4c:09:2a:5e:6c:d0:14:54:
2f:b5:46:30:c3:95:52:11:01:45:de:97:1b:8b:5d:
c5:94:1e:09:20:d3:07:50:8a:f9:79:3b:e4:4c:6f:
bd:a4:ca:32:3d:d6:3c:7c:6b:06:bf:6a:c0:d8:53:
9e:df:14:34:4c:5b:4f:30:9b:b7:9f:36:dd:e6:8d:
be:77:8d:62:b0:89:68:77:48:24:88:58:c2:fd:b6:
42:dd:31:16:fe:72:bd:35:28:63:dc:ef:25:5a:f6:
61:47:4a:6f:2b:81:56:9f:c2:d0:5e:b7:57:37:7c:
02:d3:d2:68:68:99:2f:33:2e:6a:a6:3b:d3:52:0f:
10:49:9c:24:aa:86:f9:aa:83:0d:e5:1e:37:87:37:
48:8a:8a:f8:ea:74:83:72:97:78:1f:ad:5c:d2:0f:
f2:ee:95:b7:fd:77:ef:10:bc:07:22:e3:0a:11:19:
44:4c:c7:6c:2f:d4:fd:f0:60:77:86:72:89:e8:9c:
10:de:ed:d7:37:1b:9e:81:0e:d8:07:3d:62:71:d8:
e5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:52:09:FC:3F:DB:94:96:D3:EE:61:65:0C:45:A5:A6:3D:A5:81:45
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/ZFIJ_D_blJbT7mFlDEWlpj2lgUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/23
Signature Algorithm: sha256WithRSAEncryption
09:01:c7:92:3d:32:bc:6b:4b:ed:e9:41:31:dc:b7:21:e7:02:
f1:1e:66:3e:9b:ec:e7:bd:d3:b2:d4:cc:c3:44:a1:a1:49:f7:
1f:eb:e4:b7:a4:7c:88:a8:7e:95:04:ad:49:34:00:5e:0f:cd:
ed:47:35:65:c2:48:ac:ef:cd:bb:c9:0a:b3:af:6d:1d:c9:e6:
57:b4:88:85:f7:3b:8c:d0:c0:bc:b8:8d:a3:fb:4e:06:89:c8:
47:81:89:d8:1d:b1:99:96:94:d6:f6:b3:55:56:cf:fa:0e:ed:
b5:d2:46:92:0a:01:8d:f3:89:61:b1:6d:e2:5c:31:e6:07:83:
df:fb:f2:dd:2e:d4:7d:aa:a1:4a:1a:66:4c:b7:08:ab:2b:f0:
0a:e0:c9:62:36:f5:17:f2:a7:9d:e2:62:b3:76:94:a3:cc:62:
82:00:87:3a:48:ba:3a:2c:84:95:4f:3d:31:0d:29:80:e2:02:
0f:01:d7:a5:ad:32:1f:d5:e4:b7:32:e5:28:d9:d0:cf:e5:d2:
93:6e:f0:e6:81:fc:85:91:fb:df:0b:b8:29:ad:6e:49:1c:82:
d1:c8:de:ae:b9:72:9f:18:f7:1c:51:f8:ae:26:31:e4:8a:d1:
4e:77:a6:27:42:b0:af:96:a2:b0:3a:07:6f:2f:93:08:44:41:
41:c3:85:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org