Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ZGiPta-4xM14mo_c7QQC1DPUERE.roa
File: ZGiPta-4xM14mo_c7QQC1DPUERE.roa (raw, json)
Hash identifier: 9sJaVRVH9KLwpHuhoXFlmIJ39fyzjxyU83lG/mjrRQs=
Subject key identifier: 64:68:8F:B5:AF:B8:C4:CD:78:9A:8F:DC:ED:04:02:D4:33:D4:11:11
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018752A0132560281753D289F4627662102B
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ZGiPta-4xM14mo_c7QQC1DPUERE.roa
Signing time: Wed 05 Apr 2023 18:13:54 +0000
ROA not before: Wed 05 Apr 2023 18:13:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54641
IP address blocks: 91.186.220.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:52:a0:13:25:60:28:17:53:d2:89:f4:62:76:62:10:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 5 18:13:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64688fb5afb8c4cd789a8fdced0402d433d41111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ab:9e:0b:fa:fd:d1:98:bd:54:17:e7:bf:e0:
ef:70:94:64:97:58:e4:36:db:77:57:45:67:77:76:
7f:f7:df:b9:75:f2:3c:2a:cf:00:1b:a5:a9:7a:f4:
57:ff:be:88:f9:3b:ba:1f:e7:47:63:54:0f:4f:4c:
5d:d3:2f:e4:6b:d4:4d:69:0f:21:12:10:ef:4f:9a:
3c:a4:ae:ac:56:cc:35:86:4a:45:69:34:7b:d4:89:
f5:59:53:ae:e0:52:fa:9c:6b:c4:b3:6b:6d:17:1c:
a3:10:60:cc:ee:d4:bb:9d:20:0f:be:58:c0:f4:e6:
75:8c:f8:72:86:0d:d9:3d:9d:03:71:51:e3:ca:a1:
01:d6:c8:ff:ce:80:07:e3:9c:57:02:4a:43:3c:b4:
ba:c5:38:4c:f3:44:e7:a6:96:d6:d9:07:a4:65:6d:
96:33:7f:aa:5c:1e:ef:60:38:7a:a5:3a:f0:65:f3:
ba:10:96:c3:15:fe:25:bf:ba:6f:60:b6:7f:89:1c:
b2:65:e6:ff:64:3f:b1:66:0d:d0:e2:e9:54:5a:d9:
95:0f:90:a5:7f:9d:6a:dd:ce:12:81:79:2e:f3:0f:
82:e7:56:69:ab:38:53:fc:f9:43:66:6d:51:14:e2:
6f:d1:a7:08:dc:a5:b0:35:0b:ab:87:6a:71:e6:89:
d7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:68:8F:B5:AF:B8:C4:CD:78:9A:8F:DC:ED:04:02:D4:33:D4:11:11
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ZGiPta-4xM14mo_c7QQC1DPUERE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.220.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:ed:7e:fd:d8:9f:fa:9f:31:33:0f:81:8d:df:1a:8c:b1:ad:
53:51:ed:cd:c5:92:cf:c0:85:68:45:a4:f3:a0:06:79:b2:7b:
c1:c6:88:3e:ad:98:87:04:f1:fa:5f:2b:4f:e9:82:38:28:7e:
cd:e1:f9:4d:8f:a5:8c:ab:4c:38:18:98:a2:d1:4a:42:5f:e5:
ac:a5:74:3b:18:8e:53:b9:7d:e8:20:70:7e:ce:13:0c:f4:02:
ab:39:9b:6f:26:c5:32:3f:70:ff:39:21:1a:dc:41:0f:6d:7d:
43:9f:7e:d0:58:e1:4d:97:ab:3c:bb:7c:87:62:56:14:58:73:
40:cc:21:25:1c:96:8b:59:98:b5:de:5d:84:31:c4:d0:45:f1:
2c:f6:26:20:90:d1:1f:7c:66:bd:cc:d8:68:fb:82:02:82:78:
fb:37:24:20:54:fd:90:0d:cd:f6:37:7b:02:ce:0a:a3:e3:17:
6c:3a:ae:dc:05:72:46:54:85:05:b2:02:f9:f7:7a:ae:2a:93:
5c:c2:93:9c:76:08:eb:b6:4f:26:0f:85:4e:cb:41:99:4b:3c:
dd:09:92:42:b3:1b:dc:e9:73:d1:80:0e:01:cf:e2:2f:f8:20:
b2:04:64:1f:4b:27:62:1a:7d:9f:27:27:61:ab:a5:ec:d8:92:
fb:26:4b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org