Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/Z3Iz_LjsxLXq8gQ7AqUn3EcVgeI.roa
File: Z3Iz_LjsxLXq8gQ7AqUn3EcVgeI.roa (raw, json)
Hash identifier: qtldOovhHy8qkt7WYmmYCuwlY07N0wmKvy3cznBySKI=
Subject key identifier: 67:72:33:FC:B8:EC:C4:B5:EA:F2:04:3B:02:A5:27:DC:47:15:81:E2
Certificate issuer: /CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f
Certificate serial: 0185701EEA3E7E2040C00D923CD6A7DCAADD
Authority key identifier: C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/Z3Iz_LjsxLXq8gQ7AqUn3EcVgeI.roa
Signing time: Mon 02 Jan 2023 01:35:52 +0000
ROA not before: Mon 02 Jan 2023 01:35:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60676
IP address blocks: 89.34.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:ea:3e:7e:20:40:c0:0d:92:3c:d6:a7:dc:aa:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f
Validity
Not Before: Jan 2 01:35:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=677233fcb8ecc4b5eaf2043b02a527dc471581e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:88:31:9c:3b:ff:1a:46:ba:64:2f:10:40:b7:
26:f9:5c:57:f1:51:48:7e:11:ca:7b:74:f5:15:d4:
a1:15:f1:e0:1c:ac:90:39:53:1c:1a:5f:fa:40:05:
d1:21:a6:38:8d:6f:52:2b:98:d1:55:be:f0:52:6c:
b3:01:4d:86:92:0a:68:24:77:14:fb:1a:58:3f:0e:
34:2a:79:a4:c1:16:01:2d:1a:5b:8c:ed:06:51:3e:
09:08:46:df:c8:b1:ae:6c:1d:5e:61:f1:c8:68:b3:
71:31:51:22:bf:80:9d:d4:49:5c:52:ce:06:de:ba:
1d:de:2d:9b:b5:88:c6:13:fe:33:57:61:83:90:ea:
a0:fc:a9:59:45:83:13:4c:ab:52:36:5c:8f:e1:01:
69:df:72:fb:09:e4:a4:84:27:32:f2:17:dd:a9:85:
a7:fc:78:69:cf:b6:0e:93:44:f5:e6:0f:b7:56:64:
0a:30:19:30:30:af:16:a4:59:0a:75:d5:e0:f1:90:
2d:00:b1:eb:b9:0d:e8:f8:92:22:78:1b:e9:36:04:
04:07:3a:ed:c7:3a:a6:67:e7:06:4c:f0:c2:e1:c4:
78:f9:da:0f:e3:1a:12:6a:a4:43:c7:10:d2:52:9e:
79:c0:1e:a0:f2:16:bd:0a:a1:cd:03:64:68:57:98:
52:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:72:33:FC:B8:EC:C4:B5:EA:F2:04:3B:02:A5:27:DC:47:15:81:E2
X509v3 Authority Key Identifier:
keyid:C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/Z3Iz_LjsxLXq8gQ7AqUn3EcVgeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/w8BZHi60nQVZ5vzn7iqoHw9Zum8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.91.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:d2:30:88:38:c4:eb:97:8c:34:67:ca:12:96:b7:3c:49:36:
a9:55:97:a1:77:42:cc:b9:0e:2c:2e:5f:5d:18:ad:15:17:5d:
56:62:67:f6:42:73:a1:28:a5:b7:06:bf:0d:ba:49:99:6f:63:
a3:e3:cd:6c:49:d2:8c:d7:25:79:58:3b:1d:e0:72:46:65:83:
1e:5b:05:64:73:f9:97:c2:fe:d8:28:a6:04:d2:35:f0:47:96:
b7:15:94:ee:b8:27:e1:e8:6b:59:cb:64:de:22:62:a1:92:ac:
b7:49:28:6d:a0:a2:cf:12:4a:91:77:73:12:62:f6:6c:e0:f7:
46:55:34:47:d0:d5:eb:8c:e2:5e:04:64:9f:d1:80:35:c3:f4:
38:b1:de:54:90:48:a2:76:d8:1f:08:d8:ab:13:ac:69:43:1b:
a9:7f:e6:e5:ed:58:22:55:40:ef:74:51:cc:ac:0e:08:c5:d6:
f2:d8:4a:43:7d:ff:f5:5e:f1:12:55:c6:5e:14:ce:09:73:35:
c7:ec:09:a1:08:e6:98:b9:16:be:9c:cc:cb:29:66:e4:d3:9e:
7c:b4:e6:53:0b:e0:ab:ef:ff:f6:f4:13:f8:e3:3b:93:ae:e7:
da:25:f8:45:96:2a:40:47:b2:66:35:1f:11:4f:d1:b4:71:e0:
22:b2:c6:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:49 2024 by rpki-client on console-ams.rpki-client.org