Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/zt_bEx6zL1DSzi-tNJoIZ_BizdE.roa
File: zt_bEx6zL1DSzi-tNJoIZ_BizdE.roa (raw, json)
Hash identifier: G30rrCxh6mLuBVDveJ8Y36gxVfrWrd0Z1wxFChMPTrE=
Subject key identifier: CE:DF:DB:13:1E:B3:2F:50:D2:CE:2F:AD:34:9A:08:67:F0:62:CD:D1
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 0186E713E952012CBA780911163A9A45D80A
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/zt_bEx6zL1DSzi-tNJoIZ_BizdE.roa
Signing time: Wed 15 Mar 2023 21:01:27 +0000
ROA not before: Wed 15 Mar 2023 21:01:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211826
IP address blocks: 91.250.244.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e7:13:e9:52:01:2c:ba:78:09:11:16:3a:9a:45:d8:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Mar 15 21:01:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cedfdb131eb32f50d2ce2fad349a0867f062cdd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e4:c8:46:9e:f9:1c:85:1f:74:a3:93:4b:e6:
62:11:29:14:64:48:4b:f0:96:4e:60:30:b2:01:23:
d2:89:db:29:59:45:0d:3f:7d:1e:3d:3d:d1:0c:c8:
d1:60:9b:f7:a9:38:fc:4c:de:e5:81:4b:55:68:53:
d3:01:7e:01:c8:a8:f6:6d:27:04:80:49:05:8a:db:
32:cd:98:17:72:f0:38:3a:28:df:8c:c7:03:29:70:
e1:68:36:d4:25:c5:0c:a0:af:48:22:e4:a4:3d:f7:
c1:07:15:57:82:b5:d8:8a:25:dc:dd:1e:09:40:dd:
42:e9:06:a6:c8:bb:e2:70:c5:3e:c4:e3:0b:23:98:
4a:d0:35:a7:a7:e5:07:6e:af:87:e1:e1:e3:4e:f7:
b7:5a:40:cc:6f:c3:71:c6:8e:16:ba:b2:74:ce:ef:
ef:4d:67:56:17:f2:68:43:1a:69:da:f1:4e:ef:d4:
34:db:63:bf:68:9d:cd:f0:ab:fa:43:c0:c0:e6:13:
8b:90:8d:71:8f:d0:14:61:f2:19:e4:95:f0:b6:b5:
fb:57:95:40:39:73:c3:8a:25:dc:cd:a9:50:99:ad:
ae:d1:67:2a:95:4f:43:d0:ea:db:15:2e:a0:e4:72:
82:93:37:38:fe:aa:a7:ce:0e:38:44:0d:e8:1a:a5:
10:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:DF:DB:13:1E:B3:2F:50:D2:CE:2F:AD:34:9A:08:67:F0:62:CD:D1
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/zt_bEx6zL1DSzi-tNJoIZ_BizdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.250.244.0/24
Signature Algorithm: sha256WithRSAEncryption
10:44:08:44:ed:08:ff:02:11:67:1f:2c:62:f4:47:ed:01:56:
c1:7f:c5:3b:8a:f2:9e:c1:06:a5:10:d4:55:23:d9:fa:5e:17:
b8:55:b0:e3:1d:0d:ca:04:c4:a5:63:84:5e:6f:8b:bd:54:fa:
e5:ce:31:4b:31:61:d8:80:33:f3:5d:e1:69:94:b9:bf:a5:7b:
bb:fa:56:43:47:48:98:c9:59:0f:72:98:00:01:1c:62:3e:df:
00:3e:76:81:b3:a2:28:7c:fd:14:1b:95:f2:3b:2b:23:db:35:
5e:b1:bc:f1:bc:be:0a:7c:56:6e:fc:9c:e4:c0:e7:aa:5a:eb:
ba:e5:29:a0:66:57:b6:7f:2b:fb:04:ae:63:d4:51:28:38:c3:
35:50:0f:f7:43:1c:bf:c0:26:4b:b4:14:fb:7e:a7:42:58:ad:
63:10:83:91:5f:fb:65:d7:09:bb:3a:59:b5:57:2f:5a:ff:75:
f5:df:08:0e:25:55:28:67:ef:14:4b:f1:42:8b:7a:d1:e2:b3:
2d:9d:e1:e5:a0:00:72:d7:df:0f:05:86:98:dc:06:99:d8:d5:
86:e7:34:76:cb:2d:3a:52:f7:13:a6:12:ad:20:f3:44:2e:ca:
bc:97:aa:27:3d:85:03:e0:9e:23:5d:5a:a1:13:42:97:29:2a:
ef:0a:13:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:05 2023 by rpki-client on console-fra.rpki-client.org