Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/ZlwHGGCAPWXwCV7-KFkBAPdiziQ.roa
File: ZlwHGGCAPWXwCV7-KFkBAPdiziQ.roa (raw, json)
Hash identifier: gqaRpLDXQDMvwKaw+wtGcGoG5Z6An6UpSQBdx5f6iyY=
Subject key identifier: 66:5C:07:18:60:80:3D:65:F0:09:5E:FE:28:59:01:00:F7:62:CE:24
Certificate issuer: /CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Certificate serial: 01856C6F0CD5CE1D8558FB5758FCB45D42B2
Authority key identifier: 53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/ZlwHGGCAPWXwCV7-KFkBAPdiziQ.roa
Signing time: Sun 01 Jan 2023 08:24:55 +0000
ROA not before: Sun 01 Jan 2023 08:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 217.169.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:0c:d5:ce:1d:85:58:fb:57:58:fc:b4:5d:42:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Validity
Not Before: Jan 1 08:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=665c071860803d65f0095efe28590100f762ce24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:20:e2:f7:09:7a:8e:d0:bd:b8:08:a7:da:b9:
57:e4:04:4d:87:23:3c:db:58:c3:33:ee:d4:a9:23:
11:44:63:79:f9:26:a1:ee:22:ae:63:3c:10:36:be:
eb:e0:d0:8c:a0:ff:c2:87:74:71:01:0a:56:9c:36:
26:6f:bf:35:89:01:14:46:b9:91:f7:ba:b7:ad:f9:
81:21:e8:d3:99:f0:55:df:2a:c6:10:2c:31:8a:dd:
f8:69:c8:11:fa:6f:91:a6:96:fd:2c:19:8f:81:c1:
83:92:18:01:99:c9:7a:bd:e5:ab:52:98:f9:70:c0:
79:8d:76:26:19:f5:a0:0d:66:77:f7:03:e9:fa:27:
70:ff:50:3d:cd:09:f3:1f:c1:1c:aa:10:be:b9:eb:
da:8f:1e:f3:57:5e:79:54:c7:5e:c5:78:5a:5d:84:
de:2d:56:32:db:94:74:1f:46:85:39:49:16:aa:84:
b5:12:4a:b7:a0:ea:e4:96:f1:9d:56:4f:42:98:8a:
5e:79:6a:e1:5e:1c:a8:b5:54:50:d2:c6:0e:b6:1d:
bb:fc:b0:2b:04:5c:2e:1a:64:1b:52:11:0e:0e:b3:
6d:ce:0a:07:4f:38:24:b1:d9:cc:09:80:d0:38:02:
59:3f:0c:cb:65:37:7f:24:bc:fd:0d:6c:97:e4:fc:
07:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5C:07:18:60:80:3D:65:F0:09:5E:FE:28:59:01:00:F7:62:CE:24
X509v3 Authority Key Identifier:
keyid:53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/ZlwHGGCAPWXwCV7-KFkBAPdiziQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.169.118.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:de:25:da:7f:a7:48:ff:2b:f0:6f:d6:14:9a:22:6b:a8:9c:
d9:fc:24:1d:e6:19:c5:c2:a0:07:fc:e5:42:68:eb:e6:1d:7b:
24:3b:62:f8:f9:3d:78:2f:3d:bc:fd:60:aa:b5:b9:f2:fe:8a:
f8:6a:c8:6d:6d:12:50:44:02:16:0e:94:e8:cd:40:20:ba:1a:
0e:24:f6:65:b8:27:22:20:1f:3f:15:19:c4:e0:ae:ae:35:8b:
c9:5d:56:c7:84:ed:9b:7f:2b:92:84:86:e4:8b:18:1f:3b:2e:
f6:f9:ad:39:5f:15:9b:45:d6:d4:c6:5b:a5:5e:c3:f5:ba:46:
7c:67:37:e4:82:f5:94:32:11:62:d2:76:f2:52:51:2c:45:12:
b8:75:db:6b:d3:24:36:83:93:8b:4a:d7:0f:35:ec:40:17:07:
12:6a:f3:79:b9:6a:c6:49:12:ee:a3:32:5a:8f:64:08:f9:5b:
02:28:09:7d:87:7a:be:7d:3b:52:80:68:2f:5d:a3:85:43:7e:
ae:3f:3d:b3:9c:a1:73:99:ec:9d:0e:64:8b:b1:ff:e7:31:f7:
ce:aa:9b:6d:82:e2:a7:5d:2c:da:1c:5a:4d:f7:d6:5d:ed:be:
5f:0d:fa:f5:4f:44:a6:67:2c:cc:51:6a:d0:b2:1e:06:01:e1:
2c:c1:13:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:03 2024 by rpki-client on console-fra.rpki-client.org