Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/1b1db0-cee4-441b-93e3-126ce081529a/1/Z1vTegvzxHZjli35dALjhKDUtXI.roa
File: Z1vTegvzxHZjli35dALjhKDUtXI.roa (raw, json)
Hash identifier: pTWeQSu8YAtP4jhoiBJFwWFKc6jrSd7pduSnLa381t4=
Subject key identifier: 67:5B:D3:7A:0B:F3:C4:76:63:96:2D:F9:74:02:E3:84:A0:D4:B5:72
Certificate issuer: /CN=6531785b623492ed0c99ed79c7db7404ad4cb171
Certificate serial: 0185710C05E926AAD0A37C8A9224AD88902A
Authority key identifier: 65:31:78:5B:62:34:92:ED:0C:99:ED:79:C7:DB:74:04:AD:4C:B1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZTF4W2I0ku0Mme15x9t0BK1MsXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/1b1db0-cee4-441b-93e3-126ce081529a/1/Z1vTegvzxHZjli35dALjhKDUtXI.roa
Signing time: Mon 02 Jan 2023 05:54:51 +0000
ROA not before: Mon 02 Jan 2023 05:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210927
IP address blocks: 185.178.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:05:e9:26:aa:d0:a3:7c:8a:92:24:ad:88:90:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6531785b623492ed0c99ed79c7db7404ad4cb171
Validity
Not Before: Jan 2 05:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=675bd37a0bf3c47663962df97402e384a0d4b572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7c:a9:6f:62:c7:75:cb:a4:70:80:28:a1:84:
68:07:b5:52:90:db:c7:80:0a:73:27:06:21:54:e4:
8f:3e:7d:e8:00:f3:4d:42:0b:07:09:0d:98:6b:fc:
e2:d3:77:a4:9b:1c:4a:52:3f:6d:51:ff:ef:e6:7c:
28:6f:ae:53:b3:d7:24:35:d2:31:20:0c:f1:ee:ca:
57:10:4a:8e:40:22:67:5a:7b:b7:4d:8d:b1:9c:41:
50:cf:ee:8b:5c:a1:7b:a8:c7:7a:55:7f:fe:6a:b1:
ee:02:99:30:d7:56:74:1b:ca:ab:6b:9e:20:47:43:
a9:d5:15:68:8c:b4:c6:7d:20:67:70:7e:49:2f:50:
72:49:fd:c8:d2:e7:9e:a5:cc:d2:a2:41:3c:cf:91:
43:6e:4f:39:5b:8f:23:81:4e:3b:12:e1:02:ad:c4:
d3:86:f9:de:c4:a8:27:e7:4a:e9:5d:38:8a:b1:c9:
9f:9e:12:4f:d7:8f:44:b9:31:18:f5:4f:9c:05:b5:
63:5f:b7:75:fb:d7:44:fb:a0:bb:46:e7:32:35:4b:
46:9a:ee:b8:b7:61:78:52:4f:cc:9a:34:8d:7f:9a:
2a:da:5c:23:8c:0d:27:27:76:f6:ab:cb:2d:86:a6:
06:17:d8:9c:7b:e8:96:0e:10:27:f9:d3:98:49:a3:
1d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5B:D3:7A:0B:F3:C4:76:63:96:2D:F9:74:02:E3:84:A0:D4:B5:72
X509v3 Authority Key Identifier:
keyid:65:31:78:5B:62:34:92:ED:0C:99:ED:79:C7:DB:74:04:AD:4C:B1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZTF4W2I0ku0Mme15x9t0BK1MsXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1b1db0-cee4-441b-93e3-126ce081529a/1/Z1vTegvzxHZjli35dALjhKDUtXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1b1db0-cee4-441b-93e3-126ce081529a/1/ZTF4W2I0ku0Mme15x9t0BK1MsXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.229.0/24
Signature Algorithm: sha256WithRSAEncryption
36:ef:ab:36:8d:42:67:5e:5a:61:2b:07:00:9e:fa:49:c2:a5:
54:28:3d:e9:ed:2f:97:37:fe:ab:0a:c5:c9:1a:6c:fa:5d:5e:
ce:95:f5:c3:ae:c5:ee:85:0a:34:59:a8:6c:fb:09:f8:86:87:
30:ce:2d:de:81:bb:f0:88:55:92:f5:d3:da:86:10:2d:a3:ca:
a8:34:58:e7:e1:e4:0d:e1:8a:ca:c7:70:30:fc:32:14:b4:c5:
fa:70:00:f2:c1:0e:81:d7:86:50:37:9f:0e:49:e7:26:8f:52:
1d:45:9d:a3:76:2d:3e:61:94:20:8d:f2:09:d1:79:f5:ae:56:
78:c8:c7:14:cf:87:22:55:9c:a4:b5:d5:a2:1b:b5:1e:21:cc:
5b:f8:c4:6e:89:f3:f0:62:dc:2d:b5:25:fd:8d:2e:cb:17:42:
62:fd:92:77:38:39:ec:4e:db:2a:bf:7b:14:cc:69:14:17:d9:
d2:95:df:17:bd:b2:e7:87:e4:50:3d:5d:dc:37:41:24:44:c9:
13:6f:ed:01:62:81:64:a8:01:b2:da:a0:aa:69:f7:b6:dc:cf:
ec:d2:9b:cd:c4:73:74:78:ce:5b:e2:87:28:63:b0:d8:25:6e:
73:82:12:b0:6e:2d:b6:f8:eb:a4:8f:23:1d:c2:a9:37:a7:4f:
4a:6c:e7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:00 2023 by rpki-client on console.sobornost.net