Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ZcMNLBEH8I92Y7o3kdI9MlXcPO4.roa
File: ZcMNLBEH8I92Y7o3kdI9MlXcPO4.roa (raw, json)
Hash identifier: yjBrYufm50tFOnLQ5nkFNfEhPbqdHfJ75hKRPoZ3t1k=
Subject key identifier: 65:C3:0D:2C:11:07:F0:8F:76:63:BA:37:91:D2:3D:32:55:DC:3C:EE
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CEA2CB2A84453B02598A915756856
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ZcMNLBEH8I92Y7o3kdI9MlXcPO4.roa
Signing time: Mon 02 Jan 2023 03:36:01 +0000
ROA not before: Mon 02 Jan 2023 03:36:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208046
IP address blocks: 91.186.216.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:ea:2c:b2:a8:44:53:b0:25:98:a9:15:75:68:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:36:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65c30d2c1107f08f7663ba3791d23d3255dc3cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:78:a5:68:7d:16:18:ba:db:c3:dc:b3:19:7d:
f7:92:f3:23:69:12:1d:d8:2c:86:1c:14:96:4a:d9:
65:6d:41:6e:f9:47:ce:e5:bf:f0:03:31:14:99:83:
2e:60:90:82:dd:5e:87:6a:5a:2e:4b:89:eb:03:d7:
89:f3:90:19:97:0d:1a:66:34:bd:fe:ee:65:5f:f9:
85:72:4f:85:3f:87:de:fc:4d:bb:19:c1:ab:96:80:
c5:ca:f1:e8:9b:68:76:f7:44:1f:02:72:87:e0:2d:
70:f3:6a:8d:71:ff:d7:17:31:36:36:d9:74:74:54:
6a:65:20:43:12:73:d1:78:9d:e5:02:30:4f:28:bf:
d9:42:ae:93:7b:95:37:52:2e:25:00:e4:4d:e5:58:
1d:1a:28:4f:d7:d4:48:35:54:6f:e8:6c:99:c9:28:
b9:18:f8:aa:e3:21:a7:54:fe:38:15:55:a6:46:d5:
e9:a0:18:d6:21:2b:eb:fc:2f:ac:e6:0c:07:13:eb:
99:c0:0e:59:ef:55:5d:c8:f5:6f:6b:5d:eb:7e:3f:
3e:52:3b:48:de:71:82:e1:a4:5b:07:77:20:ea:9c:
5a:96:aa:4d:88:47:ce:10:df:66:e6:d0:72:b3:4d:
73:a5:f2:b0:98:d7:a4:4c:3a:64:bc:2e:a9:d5:6a:
ff:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C3:0D:2C:11:07:F0:8F:76:63:BA:37:91:D2:3D:32:55:DC:3C:EE
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ZcMNLBEH8I92Y7o3kdI9MlXcPO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.216.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:d8:1b:c4:98:cd:9b:52:db:c5:62:8a:c6:58:d0:ab:82:bd:
72:00:4e:22:01:39:5d:57:d7:61:8e:9c:cd:e9:c1:d6:06:b4:
31:7d:ed:bf:c4:02:73:07:05:7f:4c:74:a2:6d:a1:be:d5:21:
cd:ec:56:6b:67:55:37:d7:ba:8c:c3:88:14:48:83:75:7e:2a:
c8:e4:8e:ef:fa:01:74:e8:c8:5c:ef:37:9a:fd:4e:37:23:e2:
a9:94:4f:2b:25:44:5f:9e:ff:07:ef:2f:cf:4e:3e:fa:94:7e:
00:29:87:94:55:71:9e:c1:d9:98:49:dc:33:22:7d:cc:88:21:
ae:e0:0a:56:f0:91:3d:0e:9b:6f:18:aa:6e:39:ee:89:4a:d3:
82:68:0e:29:97:3c:da:e5:ee:81:8d:07:9d:62:fc:2f:f5:0a:
3d:1d:d8:9d:72:a8:5e:bf:f5:ef:ef:b6:1b:26:8b:f4:c5:b5:
2d:eb:84:16:00:c0:94:59:ef:1f:2b:1a:65:ba:fb:24:64:20:
f9:9f:5f:90:03:63:5a:f6:73:3d:89:c3:bd:8b:db:22:2b:01:
b5:b6:c4:c9:45:63:17:7c:90:8f:bc:bb:7f:31:3b:10:19:ee:
62:34:81:e2:39:d6:87:d0:e9:79:41:40:9a:95:59:08:09:c1:
a4:cb:d3:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org