Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/45830c-4a86-402c-a1ee-4009d879b97e/1/zf0z30V9IchEgcGQlWSfjPBPnvA.roa
File: zf0z30V9IchEgcGQlWSfjPBPnvA.roa (raw, json)
Hash identifier: E2xqBVITlG+OqMOPMlqFeGigQQpvdKVA26OrKNF1Ymc=
Subject key identifier: CD:FD:33:DF:45:7D:21:C8:44:81:C1:90:95:64:9F:8C:F0:4F:9E:F0
Certificate issuer: /CN=112d0c4f16dc8922129ff6050e235562317565e5
Certificate serial: 0185719E7FA12B5876FC6698915861B0BFCD
Authority key identifier: 11:2D:0C:4F:16:DC:89:22:12:9F:F6:05:0E:23:55:62:31:75:65:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ES0MTxbciSISn_YFDiNVYjF1ZeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/45830c-4a86-402c-a1ee-4009d879b97e/1/zf0z30V9IchEgcGQlWSfjPBPnvA.roa
Signing time: Mon 02 Jan 2023 08:34:50 +0000
ROA not before: Mon 02 Jan 2023 08:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51724
IP address blocks: 91.221.36.0/24 maxlen: 24
91.221.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:7f:a1:2b:58:76:fc:66:98:91:58:61:b0:bf:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112d0c4f16dc8922129ff6050e235562317565e5
Validity
Not Before: Jan 2 08:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdfd33df457d21c84481c19095649f8cf04f9ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:92:cc:98:18:0b:20:e4:67:a1:9f:bc:dd:92:
85:2c:1e:04:9b:88:53:8a:36:fe:f4:e0:13:36:a6:
1c:b1:db:4b:4d:08:13:48:9f:90:97:ac:c4:ba:bf:
b1:ef:7a:d1:bb:dd:9a:e5:97:ad:92:2d:64:4d:05:
52:9a:26:22:a0:b8:7b:85:f7:21:1a:ce:9e:d3:17:
75:fe:56:91:20:88:53:f0:21:4a:28:ef:82:a8:4a:
9e:35:1e:44:d8:12:67:6c:a5:d4:ae:c7:6c:f4:91:
ef:9a:cd:aa:a1:0f:91:e2:22:9a:3c:78:1d:e5:2d:
08:a9:09:af:3e:16:09:2a:2a:3c:93:1b:e0:fd:d1:
3e:6c:39:3c:aa:b2:e2:08:d4:0f:9a:c8:a6:e6:51:
3c:87:11:f9:b0:47:84:25:b6:7e:18:38:93:26:28:
93:bd:96:99:29:f1:3a:ef:a7:23:bc:9e:4b:d0:a0:
c8:be:0d:d0:b5:ea:0e:58:35:e3:4d:2a:dd:60:db:
08:96:0c:f9:cf:f0:7c:83:b8:bb:cf:81:bd:e5:97:
c4:ea:10:43:4f:cc:dc:39:40:8d:5f:29:9b:4d:13:
d4:f6:b8:dd:0f:22:b2:23:04:26:68:f7:50:67:2b:
52:71:04:3d:1f:2d:1f:05:d6:8f:f7:1c:2b:0f:e6:
2c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:FD:33:DF:45:7D:21:C8:44:81:C1:90:95:64:9F:8C:F0:4F:9E:F0
X509v3 Authority Key Identifier:
keyid:11:2D:0C:4F:16:DC:89:22:12:9F:F6:05:0E:23:55:62:31:75:65:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ES0MTxbciSISn_YFDiNVYjF1ZeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/45830c-4a86-402c-a1ee-4009d879b97e/1/zf0z30V9IchEgcGQlWSfjPBPnvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/45830c-4a86-402c-a1ee-4009d879b97e/1/ES0MTxbciSISn_YFDiNVYjF1ZeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.36.0/23
Signature Algorithm: sha256WithRSAEncryption
05:87:d3:42:00:8b:04:26:d6:a9:19:2e:ac:fe:5f:1a:a4:36:
ef:42:67:94:a2:10:07:93:57:a0:44:4d:4a:06:cc:99:c0:a0:
c4:f5:1b:24:92:9e:f0:51:3f:e3:f0:d3:68:d1:e6:22:75:32:
eb:a6:c5:29:f8:1a:a3:d6:b7:b4:20:5a:f8:4a:3d:b5:53:77:
f0:e5:c4:40:4e:d6:81:b7:14:de:5d:2b:52:a0:c0:b6:0e:8d:
0b:70:36:22:94:99:fe:6c:ab:2b:3a:b1:86:bc:40:23:51:05:
97:8c:ff:69:6c:f2:40:c6:cd:38:f2:9e:f0:e5:7f:9e:62:13:
5b:51:dd:f7:57:c2:f8:2e:f8:0c:59:fe:73:ea:bb:80:59:fb:
3c:ed:dd:99:21:be:fb:a3:c1:b9:54:ce:07:94:40:7a:19:16:
11:91:21:3e:64:0b:bf:10:62:8c:ea:c3:96:6f:a9:93:19:c5:
1a:27:e2:5f:ad:89:b7:45:5d:b4:f1:73:81:28:18:c6:a9:58:
0d:27:05:10:be:1a:73:6e:47:61:d6:3a:62:69:8c:58:92:9a:
23:d2:e2:db:de:4c:1f:f7:44:62:ef:1e:38:f5:ad:15:f9:9c:
23:bc:53:5c:b8:1e:87:9e:28:c3:a2:2a:69:49:20:78:ec:4d:
80:e9:51:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:34 2024 by rpki-client on console-fra.rpki-client.org