Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/ZGXVDVA8biiuIb9qDKUugh5IERY.roa
File: ZGXVDVA8biiuIb9qDKUugh5IERY.roa (raw, json)
Hash identifier: v4WmBkuC0vib93POh9TWf9MAbc4kOIwRz0adF21PVYo=
Subject key identifier: 64:65:D5:0D:50:3C:6E:28:AE:21:BF:6A:0C:A5:2E:82:1E:48:11:16
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 018B81282F86D47612CAE7D00040802E3BAD
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/ZGXVDVA8biiuIb9qDKUugh5IERY.roa
Signing time: Mon 30 Oct 2023 15:16:16 +0000
ROA not before: Mon 30 Oct 2023 15:16:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.95.224.0/23 maxlen: 24
45.95.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:28:2f:86:d4:76:12:ca:e7:d0:00:40:80:2e:3b:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Oct 30 15:16:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6465d50d503c6e28ae21bf6a0ca52e821e481116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:07:88:d4:6b:f2:0d:ce:cf:e9:4e:dc:1c:09:
48:0e:ac:2a:25:0c:43:da:d5:2c:9c:c2:b7:e8:5c:
8d:14:cb:99:81:2d:14:25:90:fa:17:92:d7:2c:0e:
15:ab:af:91:e7:1d:ec:9e:08:ee:0f:80:86:60:94:
07:0d:73:db:e0:78:b7:4d:38:c5:3c:f2:8a:0a:0c:
99:fe:b4:88:81:20:3a:e7:11:8c:ee:9a:db:67:55:
00:d1:a3:1b:0e:37:cb:fe:42:74:6b:69:b2:90:6c:
b0:33:35:80:98:27:ba:53:fe:ad:7f:2e:4a:f3:74:
91:a8:ce:67:4a:e4:4c:d8:f4:e7:c9:d1:d1:b8:e5:
7d:58:c0:63:34:ed:bb:92:85:b3:ce:ea:a5:e1:ea:
a4:4e:99:24:5e:c7:ce:0a:96:61:9f:b9:b4:fe:4f:
2d:86:5a:cf:5e:ee:0a:5d:c5:8a:60:ee:78:01:6c:
3c:30:30:94:a1:46:65:10:48:02:d5:8e:8d:f5:b5:
e0:aa:6b:e2:10:1e:86:8e:a7:67:7d:fa:f7:b3:29:
b8:b4:03:b1:6c:ee:e0:7e:b5:0f:64:f2:23:3f:7d:
01:b3:42:ca:db:8e:5d:5f:23:de:fc:cc:b5:75:67:
2f:2c:05:32:c7:8e:f1:48:62:ca:e8:1c:68:fd:a7:
d8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:65:D5:0D:50:3C:6E:28:AE:21:BF:6A:0C:A5:2E:82:1E:48:11:16
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/ZGXVDVA8biiuIb9qDKUugh5IERY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.224.0/23
45.95.227.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:90:16:95:15:49:26:66:68:7d:c8:fc:6a:ca:65:f9:30:66:
48:bd:3e:af:1f:45:31:7b:cd:4b:89:15:32:05:69:64:f1:41:
bd:c9:bc:d3:72:5b:4d:cf:4a:5d:c9:75:99:91:dc:81:aa:f0:
7f:d9:db:e3:73:ee:53:17:3c:cf:5e:67:a1:db:f0:48:77:41:
33:51:b7:b8:8e:fe:06:27:9e:74:74:3f:42:58:59:0f:b5:be:
65:8b:c0:aa:4b:68:66:14:fe:e6:be:35:57:b5:1f:d4:81:c4:
bc:26:69:74:ee:1e:de:fb:cc:ac:9d:70:16:7f:b8:3a:a1:3a:
a5:6f:50:c8:8f:71:ac:a3:bc:c2:ac:28:43:56:df:5d:e4:d2:
a1:d9:eb:19:2b:97:27:9f:87:88:04:36:f8:0a:4a:30:a2:29:
fd:38:db:4f:28:25:63:84:45:f3:3d:b5:fc:51:5c:e1:75:4c:
28:70:6f:ad:be:30:7f:15:01:bd:73:19:f7:3f:11:0b:b9:9f:
92:9e:2e:e4:4c:c2:9f:27:ba:76:d6:40:76:a7:5e:be:bb:79:
85:b9:42:3a:71:96:7d:2c:a2:3a:e3:28:f5:26:da:6b:04:80:
c7:6c:16:c5:1e:ca:dc:01:36:de:5b:86:61:2b:a2:24:e0:be:
b9:38:5d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:56 2024 by rpki-client on console-ams.rpki-client.org