Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/ZzQ0w3J7m9VEnGuJVmaNTSJ4pjA.roa
File: ZzQ0w3J7m9VEnGuJVmaNTSJ4pjA.roa (raw, json)
Hash identifier: dSNr8fIn3rJgysRn1IuHJz6G48Xfl0Mg6KVUpy9V5+I=
Subject key identifier: 67:34:34:C3:72:7B:9B:D5:44:9C:6B:89:56:66:8D:4D:22:78:A6:30
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018B29545A96A8EEF65E9390DEC510658D13
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/ZzQ0w3J7m9VEnGuJVmaNTSJ4pjA.roa
Signing time: Fri 13 Oct 2023 13:57:55 +0000
ROA not before: Fri 13 Oct 2023 13:57:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211922
IP address blocks: 164.215.99.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:29:54:5a:96:a8:ee:f6:5e:93:90:de:c5:10:65:8d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Oct 13 13:57:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=673434c3727b9bd5449c6b8956668d4d2278a630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4b:b4:3b:aa:4f:95:7b:a4:95:f3:52:55:5c:
4b:2a:7a:26:47:64:39:10:fd:d5:a7:9a:56:18:e4:
1e:f9:82:a0:df:bf:92:53:67:12:23:ae:3c:76:42:
8d:ec:50:6b:4d:71:05:c7:6e:0b:19:85:d7:3a:d1:
6a:fb:0a:58:36:c1:72:b3:6e:03:bc:6a:6e:42:23:
87:65:ee:58:5c:13:92:19:93:a6:4b:87:44:85:cb:
cc:02:de:9b:c6:c5:1c:24:43:9c:86:f9:c5:ea:62:
e9:f2:7c:7c:6f:86:92:d3:a6:45:94:a2:1f:09:34:
57:5b:44:13:84:8c:94:15:d3:5b:13:b0:fb:20:c8:
ee:a9:ab:d1:58:a2:5a:81:db:8d:4c:02:05:dd:4f:
49:63:d1:ee:bd:4b:03:57:5e:b2:ca:dd:39:59:8e:
ee:32:4d:92:e8:9b:a9:56:0d:be:ec:3a:a6:08:89:
2e:d3:58:bc:fd:6b:60:ce:28:d6:3b:ad:f0:86:81:
6c:4b:f0:49:b1:a6:b9:c8:cc:7d:de:ab:7e:33:11:
1b:50:ab:4d:77:b1:d4:44:31:81:79:5b:bb:ba:af:
d6:2c:b1:7e:b2:12:77:6d:55:a2:ac:75:b0:5b:04:
48:c7:b9:87:ca:25:11:58:7d:17:5a:cf:1d:c6:96:
e2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:34:34:C3:72:7B:9B:D5:44:9C:6B:89:56:66:8D:4D:22:78:A6:30
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/ZzQ0w3J7m9VEnGuJVmaNTSJ4pjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.99.0/24
Signature Algorithm: sha256WithRSAEncryption
24:ca:7e:fd:a3:39:3b:58:01:a7:11:f3:21:48:6d:ec:b9:16:
82:6b:1c:e2:47:da:48:f8:45:83:b6:0f:ee:ae:43:16:9f:e5:
dc:19:e1:4b:f4:99:70:7f:f3:65:c9:a1:a7:c4:d8:f9:43:12:
20:b8:11:c0:03:82:7b:ce:c9:f5:80:b4:44:6d:be:57:83:b1:
55:60:62:0f:1c:2f:a4:30:98:2d:ad:6e:f6:e9:a9:0e:90:e4:
e6:3c:b2:2b:ed:05:65:99:71:8b:bd:91:da:fc:99:48:78:52:
ec:67:6c:7e:dd:9c:78:c7:e2:1b:ad:b1:a6:1a:20:ea:08:4f:
ea:56:d1:98:c0:c3:3d:d1:a4:d4:a7:fc:65:16:cb:bd:20:eb:
03:71:da:7a:0c:b0:44:92:39:89:5a:7b:0e:42:ac:95:31:8d:
77:68:bb:0e:6b:be:0e:51:b2:75:0b:db:16:25:d8:77:28:cf:
84:64:e2:81:1f:df:d2:1b:b2:a9:30:8e:8a:b0:d2:f4:12:ef:
92:79:c1:4b:8a:08:f4:1b:f1:1c:54:9b:ba:3e:39:f5:f3:f3:
32:0a:9a:12:97:ef:6e:d0:05:b7:1c:35:a3:68:3a:a1:a7:42:
6b:04:6a:f0:72:5f:1e:2f:a5:7a:13:f0:5e:5a:91:91:6b:4a:
b5:9a:e3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:09 2024 by rpki-client on console-ams.rpki-client.org