Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/246769-d876-4f22-9a1c-45c5f456d4bb/1/zhEYOXMitws6ILruriND_59y9wc.roa
File: zhEYOXMitws6ILruriND_59y9wc.roa (raw, json)
Hash identifier: WhzAgrCDiFQDAs/gcCCIshBovnDOmxdQALV08/cJr+o=
Subject key identifier: CE:11:18:39:73:22:B7:0B:3A:20:BA:EE:AE:23:43:FF:9F:72:F7:07
Certificate issuer: /CN=4c2f58d394af703fb9ef0fc537bed0e97db75a8f
Certificate serial: 01857095130F790C1CAC2ABC57E932092DC4
Authority key identifier: 4C:2F:58:D3:94:AF:70:3F:B9:EF:0F:C5:37:BE:D0:E9:7D:B7:5A:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TC9Y05SvcD-57w_FN77Q6X23Wo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/246769-d876-4f22-9a1c-45c5f456d4bb/1/zhEYOXMitws6ILruriND_59y9wc.roa
Signing time: Mon 02 Jan 2023 03:44:55 +0000
ROA not before: Mon 02 Jan 2023 03:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 559
IP address blocks: 146.136.0.0/16 maxlen: 16
152.96.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:13:0f:79:0c:1c:ac:2a:bc:57:e9:32:09:2d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c2f58d394af703fb9ef0fc537bed0e97db75a8f
Validity
Not Before: Jan 2 03:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce1118397322b70b3a20baeeae2343ff9f72f707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:95:63:c6:ea:bd:c3:57:52:49:2a:47:67:e0:
06:8a:65:56:b8:0a:2d:7c:14:3b:5a:0a:1c:e9:b0:
32:05:99:50:de:3e:de:97:3f:f0:30:33:ec:ed:d7:
8c:16:bb:11:99:c8:40:5a:a6:fb:ee:92:e7:c6:f2:
4f:71:91:16:58:2b:dc:c9:b4:2f:a4:a8:08:62:6a:
16:53:61:ab:3d:e7:29:1f:3c:0f:77:2a:a4:c9:3a:
15:22:c6:d3:b9:56:ed:31:3c:57:9e:91:76:a7:b7:
3f:86:a2:93:7f:52:c2:0d:44:d4:8f:e0:2f:dc:4d:
0d:68:17:67:03:aa:58:ec:e0:0d:0c:7f:7b:80:12:
12:5d:ad:28:a2:a7:b1:59:54:5d:67:7a:ef:0f:99:
d4:10:ce:8f:c7:09:b6:48:96:9b:3b:9f:9b:80:55:
ea:49:78:11:0f:09:9e:13:a9:08:2d:b6:2d:11:86:
4e:05:87:b2:9a:2e:bf:38:df:00:2e:a2:f3:bc:ec:
62:43:1c:d5:6b:5c:5a:5c:7b:48:8a:c1:a1:b4:97:
51:3e:56:76:65:d2:04:02:c0:92:78:f6:55:3c:65:
34:da:8c:74:d4:e2:6c:09:9d:d1:94:5d:23:2a:58:
df:6e:e4:61:17:f2:e6:16:92:3b:f8:af:31:a5:a3:
6f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:11:18:39:73:22:B7:0B:3A:20:BA:EE:AE:23:43:FF:9F:72:F7:07
X509v3 Authority Key Identifier:
keyid:4C:2F:58:D3:94:AF:70:3F:B9:EF:0F:C5:37:BE:D0:E9:7D:B7:5A:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TC9Y05SvcD-57w_FN77Q6X23Wo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/246769-d876-4f22-9a1c-45c5f456d4bb/1/zhEYOXMitws6ILruriND_59y9wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/246769-d876-4f22-9a1c-45c5f456d4bb/1/TC9Y05SvcD-57w_FN77Q6X23Wo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.136.0.0/16
152.96.0.0/16
Signature Algorithm: sha256WithRSAEncryption
aa:fd:a3:d8:59:a8:1d:ff:47:0d:30:8f:ef:01:6a:eb:70:a8:
62:d8:9f:d5:80:63:6c:9c:01:e6:a2:0a:1f:e2:c0:e0:dc:7c:
0c:51:f2:d8:ba:61:f1:88:8b:f9:d3:da:20:41:e1:76:0c:c3:
63:fb:97:92:74:61:6b:c3:08:a5:e5:6a:72:5a:48:04:ab:ef:
7a:ab:46:16:b2:2c:b1:84:17:26:bb:7b:ba:5d:10:24:94:10:
e1:fa:38:19:d3:02:98:80:8d:79:5e:b2:aa:67:82:6e:91:b8:
8d:47:dd:09:3d:4a:bc:f0:47:d3:7f:a6:fd:0d:cc:1e:0f:7c:
f1:df:20:04:0a:18:fb:46:34:79:de:d2:ef:81:e7:76:c8:ec:
99:7d:5f:5b:9d:dc:16:dd:55:cb:15:fd:fa:de:6b:56:7a:cc:
6a:0d:1b:d5:05:08:77:30:3e:10:54:aa:d1:56:e2:f1:b2:fd:
2b:e6:55:fd:dd:66:1c:98:9d:d6:95:16:09:28:48:e8:51:74:
df:f7:77:c6:4a:8e:e1:06:1c:77:58:ed:a5:d5:7f:c9:90:36:
56:07:f2:e7:68:f2:e7:9b:09:2b:c6:e4:a8:c5:28:e1:d3:97:
e9:6d:c7:3d:89:35:8b:85:78:49:f7:43:08:97:11:da:13:29:
10:68:3d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:39 2024 by rpki-client on console-fra.rpki-client.org