Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/zi1Mx2ERFJqhPneL_6G_JPRLPaI.roa
File: zi1Mx2ERFJqhPneL_6G_JPRLPaI.roa (raw, json)
Hash identifier: NPN1cbjfEQkz+KQSMwqwuTPZ1rW6xsdzy8oBLebm3Ck=
Subject key identifier: CE:2D:4C:C7:61:11:14:9A:A1:3E:77:8B:FF:A1:BF:24:F4:4B:3D:A2
Certificate issuer: /CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Certificate serial: 01856F5DED5D96D0B49A0508472D4D463714
Authority key identifier: FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/zi1Mx2ERFJqhPneL_6G_JPRLPaI.roa
Signing time: Sun 01 Jan 2023 22:05:04 +0000
ROA not before: Sun 01 Jan 2023 22:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136620
IP address blocks: 144.48.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:ed:5d:96:d0:b4:9a:05:08:47:2d:4d:46:37:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Validity
Not Before: Jan 1 22:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce2d4cc76111149aa13e778bffa1bf24f44b3da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:53:43:13:87:fa:37:7d:a8:a1:b2:9f:3e:29:
b4:44:f5:0c:21:4f:c4:3b:5f:31:16:a5:3d:c9:b2:
a4:7c:fe:8a:ee:48:53:3f:6d:65:f1:16:fd:4d:f5:
8b:67:ef:66:67:a8:b8:a0:0b:dc:9d:07:99:b8:4d:
d0:99:9e:0c:ed:3f:37:8a:47:52:48:c5:39:ed:b2:
da:f2:12:4b:01:09:36:54:12:a9:3e:e6:89:74:db:
c9:b2:2c:32:27:92:0a:36:ab:f8:33:7e:7b:ff:9f:
81:64:cd:a6:0b:48:54:88:b8:48:f3:38:07:be:5a:
ec:17:f1:95:41:e9:6e:00:b7:eb:4b:ee:ca:6d:65:
3a:30:b2:bf:9a:43:de:94:b7:b4:40:2d:65:36:31:
9b:69:cf:45:ad:6a:de:06:e2:9f:9a:ff:42:83:c1:
be:ff:bb:bf:9e:a5:a9:97:52:74:d4:82:5d:59:cc:
18:b4:bf:36:69:b8:3c:a2:8e:b5:58:a8:71:67:90:
1d:69:3f:ed:48:9b:88:ba:5a:db:2a:6e:8f:79:1f:
57:c3:38:f9:3f:96:ed:fb:49:8b:2b:f4:c2:77:63:
e4:26:2c:a8:e1:be:2e:65:97:ba:3d:89:27:bb:38:
1f:d8:41:68:46:f8:d8:69:2c:d6:5a:94:aa:97:f8:
f1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:2D:4C:C7:61:11:14:9A:A1:3E:77:8B:FF:A1:BF:24:F4:4B:3D:A2
X509v3 Authority Key Identifier:
keyid:FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/zi1Mx2ERFJqhPneL_6G_JPRLPaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/_97EpGpubk-aktC6Lgs6tWWL4b0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.48.63.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:14:0b:43:e5:db:2b:17:c0:a1:81:4e:77:45:91:4d:57:c3:
27:36:61:96:1a:0d:e0:7b:68:93:00:b7:98:97:7d:17:d0:ae:
48:68:fe:ec:1e:cd:78:98:d5:57:8e:68:05:26:da:96:91:74:
66:a8:4d:83:a6:43:c3:41:5e:88:b0:64:e8:b3:e3:3e:a3:13:
b1:52:f7:cd:67:9c:35:76:f9:3f:6e:b2:44:61:90:20:7f:56:
3b:8c:3d:fd:ad:69:5d:03:58:b7:e8:c9:5d:5f:81:fa:01:28:
22:ba:93:67:54:14:e2:93:1b:89:09:93:39:ab:df:27:e9:2f:
4e:d5:d1:f7:a2:d2:c8:c0:6d:21:9b:6c:22:e8:6e:f2:6c:09:
ce:e4:41:86:ad:0c:2d:fe:e5:c5:00:4c:bb:35:a9:66:e7:15:
ac:19:2e:7c:07:a0:d0:27:51:4c:d2:fb:a5:57:78:d3:5b:e3:
03:66:10:af:4f:04:91:e9:4a:29:08:e0:10:84:9d:28:10:3d:
86:ee:b0:a8:69:de:1f:a4:e0:d8:5f:24:39:a7:87:c5:07:c7:
84:de:63:52:85:4d:86:39:e2:1d:5d:74:f9:39:3a:fa:e5:56:
d0:09:eb:33:e6:76:6b:41:37:ee:96:e8:57:dd:65:0d:22:f7:
73:36:75:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:56 2024 by rpki-client on console-fra.rpki-client.org