Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/9620ce-43f0-42bc-af59-435bda5bd048/1/ZCW5XLotTR3DXgzORGI73dq-qBs.roa
File: ZCW5XLotTR3DXgzORGI73dq-qBs.roa (raw, json)
Hash identifier: +6NiLoz4kwOLYsFRfJh7QOZ97KDxgsYqRp1MQqgvb4Q=
Subject key identifier: 64:25:B9:5C:BA:2D:4D:1D:C3:5E:0C:CE:44:62:3B:DD:DA:BE:A8:1B
Certificate issuer: /CN=731535a2eaebc68c1657aafcf5a788c8751d9b62
Certificate serial: 01856D662AA85E4542B8E71FCDCA17851750
Authority key identifier: 73:15:35:A2:EA:EB:C6:8C:16:57:AA:FC:F5:A7:88:C8:75:1D:9B:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxU1ourrxowWV6r89aeIyHUdm2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/9620ce-43f0-42bc-af59-435bda5bd048/1/ZCW5XLotTR3DXgzORGI73dq-qBs.roa
Signing time: Sun 01 Jan 2023 12:54:50 +0000
ROA not before: Sun 01 Jan 2023 12:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 91.218.37.0/24 maxlen: 24
2a02:ef80::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:2a:a8:5e:45:42:b8:e7:1f:cd:ca:17:85:17:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=731535a2eaebc68c1657aafcf5a788c8751d9b62
Validity
Not Before: Jan 1 12:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6425b95cba2d4d1dc35e0cce44623bdddabea81b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f1:94:ad:0d:5c:5e:47:75:c5:81:ea:08:6c:
b5:81:b4:7f:d3:db:f2:0d:4f:3e:43:65:6c:36:f1:
d5:cc:a6:4e:78:36:76:5f:d4:b8:14:01:2b:70:1e:
6d:bc:51:93:77:09:59:76:0c:43:9a:6d:c4:86:04:
e2:ba:1c:73:62:00:b8:09:d4:22:68:c1:d0:48:52:
c6:42:d3:43:d2:ae:56:9c:86:3a:8f:0e:c3:6b:f9:
76:5f:c3:4e:54:94:dd:ba:58:94:aa:33:f3:0d:31:
2b:5c:6c:a4:ca:97:88:73:8a:40:c9:34:cd:77:a1:
97:e5:09:04:5e:00:4f:db:2c:cd:df:7c:ee:ff:a5:
24:66:0a:1a:dc:03:d6:50:eb:cc:2b:a6:75:ff:6d:
31:e6:e3:dd:d1:7c:b2:f8:40:05:c3:32:4b:3c:93:
0f:af:f0:83:46:5a:3d:36:77:c7:56:f1:1f:2c:c4:
f8:4e:0c:c2:d7:ee:bf:4f:4a:92:73:6e:13:d2:58:
2b:8c:80:f1:fb:01:f4:29:f9:11:3a:de:42:47:af:
d9:1d:2c:9e:81:49:74:3a:6b:36:63:30:19:f8:a7:
d9:2b:a3:aa:d5:1c:58:8e:fc:1c:dc:62:f5:eb:2b:
b6:c6:eb:d1:16:4f:05:9c:6a:d5:be:18:55:ae:06:
62:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:25:B9:5C:BA:2D:4D:1D:C3:5E:0C:CE:44:62:3B:DD:DA:BE:A8:1B
X509v3 Authority Key Identifier:
keyid:73:15:35:A2:EA:EB:C6:8C:16:57:AA:FC:F5:A7:88:C8:75:1D:9B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxU1ourrxowWV6r89aeIyHUdm2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/9620ce-43f0-42bc-af59-435bda5bd048/1/ZCW5XLotTR3DXgzORGI73dq-qBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/9620ce-43f0-42bc-af59-435bda5bd048/1/cxU1ourrxowWV6r89aeIyHUdm2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.37.0/24
IPv6:
2a02:ef80::/48
Signature Algorithm: sha256WithRSAEncryption
8b:35:b4:e4:d5:d7:aa:29:6c:21:85:6f:63:3b:7b:3b:f9:eb:
a7:27:45:0d:11:c3:66:c4:19:a4:7f:9e:8e:5b:b8:38:8b:6a:
07:5a:ab:f8:90:8b:30:f0:6b:f9:00:70:43:9a:2a:ba:1a:6f:
f4:ee:a1:72:90:77:e4:18:4c:1f:4e:6b:ba:09:0c:5d:05:be:
e4:4a:9f:c4:34:48:9b:9a:d2:ad:75:ac:57:ca:36:f1:7c:07:
51:94:cd:2a:78:71:79:54:bc:94:85:d5:58:7b:a2:77:1d:ee:
a1:f6:80:eb:d4:b0:07:e5:e9:3c:8e:f5:a2:86:2f:2a:cc:04:
87:41:f9:4e:e6:f3:7a:3a:9d:4f:d3:2a:91:d8:d8:86:b8:7b:
ca:96:7a:43:bf:83:67:06:50:fe:33:ca:11:25:36:6b:3f:d1:
cb:b6:7f:6b:c7:ec:82:86:c6:bc:66:dd:8d:5c:34:b5:d2:64:
db:7f:62:d3:c7:3b:c9:a0:5a:4b:4b:a3:04:d2:dc:b8:2a:b7:
71:82:b1:dd:04:70:c6:bc:10:d2:26:86:20:c7:e1:2e:91:26:
d2:af:ca:84:08:98:a3:1a:df:9d:c5:cc:07:bb:3c:95:7c:79:
e9:8f:ba:17:6b:d6:24:df:87:9b:91:a3:bc:4e:07:1b:07:fe:
3f:06:3a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:51 2024 by rpki-client on console.sobornost.net