Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/zppKMM4FXjOanDnkq3qgboVXBmY.roa
File: zppKMM4FXjOanDnkq3qgboVXBmY.roa (raw, json)
Hash identifier: mPK63dyHnQR9VWcVS3E/QarN71tnrVqCnQLEjDBxMc0=
Subject key identifier: CE:9A:4A:30:CE:05:5E:33:9A:9C:39:E4:AB:7A:A0:6E:85:57:06:66
Certificate issuer: /CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Certificate serial: 01857368631F054DA4667CB8818DECCD4E1B
Authority key identifier: B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/zppKMM4FXjOanDnkq3qgboVXBmY.roa
Signing time: Mon 02 Jan 2023 16:54:59 +0000
ROA not before: Mon 02 Jan 2023 16:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39440
IP address blocks: 81.88.184.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:63:1f:05:4d:a4:66:7c:b8:81:8d:ec:cd:4e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Validity
Not Before: Jan 2 16:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce9a4a30ce055e339a9c39e4ab7aa06e85570666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3b:e8:98:98:b7:81:73:d6:b4:dd:e4:49:6d:
71:17:02:bb:1f:17:a3:06:32:8c:bc:4f:c7:f7:49:
35:99:74:38:98:8a:ff:be:40:48:89:33:54:73:ea:
5e:f1:b6:34:8f:25:09:81:56:ea:37:a1:8f:04:20:
47:4e:54:3c:36:99:ab:1f:7c:a4:79:97:de:68:aa:
a1:bd:75:4c:f5:53:31:a0:56:cc:93:d5:63:c7:50:
65:9a:51:7e:45:4a:b7:e9:4c:47:b5:dd:39:40:59:
4b:42:4e:a0:ee:e6:15:5f:20:4f:4d:7e:ca:db:69:
d7:e1:4a:61:a5:e5:15:fb:ac:20:78:b8:d9:42:95:
0f:6c:5f:61:17:90:23:d0:3f:8c:a3:b9:8b:f2:cb:
50:3a:3a:99:f5:fb:ca:b9:24:1b:95:de:bb:fe:87:
16:41:12:ed:cd:f3:9f:6e:a8:22:e8:87:63:2f:32:
a4:2e:fe:16:17:14:0e:3f:6b:f8:b2:e3:60:2b:d1:
b7:69:4c:a1:5f:c1:c6:06:ae:00:6b:c4:a7:40:50:
e5:42:1b:7f:2b:2e:76:52:cf:82:bf:2a:b2:cf:41:
ba:09:09:b0:5e:2a:d9:dd:68:26:b2:1b:0d:60:b3:
3e:e8:fb:23:2b:b6:1a:1c:b1:15:29:61:82:cb:50:
7d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9A:4A:30:CE:05:5E:33:9A:9C:39:E4:AB:7A:A0:6E:85:57:06:66
X509v3 Authority Key Identifier:
keyid:B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/zppKMM4FXjOanDnkq3qgboVXBmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.88.184.0/21
Signature Algorithm: sha256WithRSAEncryption
29:25:35:5f:38:ce:d4:25:08:60:ac:56:45:33:0d:c5:27:b0:
e7:e7:eb:9a:01:e8:6e:d8:7c:7b:f7:e4:6c:1c:a8:54:a8:61:
e0:89:c0:54:ca:9b:68:88:c5:86:62:56:bc:0d:65:64:85:e4:
7b:a0:b9:cf:f0:b3:5b:c6:b7:5b:9d:90:51:cd:df:fb:a4:db:
c4:e4:72:e4:f2:b4:40:86:fb:e1:ff:af:c4:56:ff:06:5d:97:
4b:9e:44:4d:78:5c:df:00:b7:cf:87:d8:fa:c6:28:7e:98:09:
4b:42:98:3f:a4:59:df:f7:5b:28:c6:e6:4a:8b:f3:91:48:a7:
c4:bf:af:70:e2:5a:a8:17:54:95:b1:e2:b0:fa:b2:20:fb:ad:
ca:9e:98:4a:e0:84:26:3a:a0:a8:04:c9:8a:82:d4:ae:b2:1f:
7d:e7:57:72:12:e8:8f:76:e9:ac:9e:ed:8f:27:d9:08:17:02:
20:8b:60:cf:22:e4:e4:0c:cb:81:dc:d8:45:b0:ec:5f:55:e1:
ef:39:ca:88:b7:ff:1d:89:97:06:d7:a1:bb:34:88:85:81:cb:
2d:e8:f0:7f:06:aa:e8:55:37:21:be:70:60:ec:4e:eb:5b:9e:
28:e2:f0:e2:bf:f0:01:18:63:d7:47:46:e8:3f:7c:53:dc:84:
8b:1e:c1:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:33 2024 by rpki-client on console-fra.rpki-client.org