Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/ZnZa_Vk3KxL_MPT7g5Zf1Y9qKx4.roa
File: ZnZa_Vk3KxL_MPT7g5Zf1Y9qKx4.roa (raw, json)
Hash identifier: orCbGUr732gLI7sKRPsRbpOi5F/7R1rKFYNXOylxvMw=
Subject key identifier: 66:76:5A:FD:59:37:2B:12:FF:30:F4:FB:83:96:5F:D5:8F:6A:2B:1E
Certificate issuer: /CN=a566d8337776c98746bd231e69e185db2a9a5be2
Certificate serial: 018776CC6D02898930F175C253D257A1F0BD
Authority key identifier: A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/ZnZa_Vk3KxL_MPT7g5Zf1Y9qKx4.roa
Signing time: Wed 12 Apr 2023 18:48:41 +0000
ROA not before: Wed 12 Apr 2023 18:48:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208575
IP address blocks: 45.128.17.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:76:cc:6d:02:89:89:30:f1:75:c2:53:d2:57:a1:f0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a566d8337776c98746bd231e69e185db2a9a5be2
Validity
Not Before: Apr 12 18:48:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66765afd59372b12ff30f4fb83965fd58f6a2b1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bf:2e:60:c4:c5:7f:32:4f:78:1b:18:3c:29:
79:8f:73:bd:4c:34:5e:67:c5:3e:af:c1:ac:2e:ab:
d8:c1:fa:17:6c:06:36:a8:64:04:95:de:f4:48:dc:
74:ac:ab:23:1c:7e:44:4d:93:02:fb:92:b0:79:ad:
33:5b:c5:7b:61:e7:14:87:ea:b3:66:6d:c9:0d:6e:
60:5c:3f:78:92:7b:d5:0f:95:c8:f0:b9:48:85:b0:
92:6e:c4:30:01:44:0e:53:fd:a0:7c:42:04:1b:a5:
88:ce:9d:3c:48:00:76:9d:7c:68:88:cf:ea:a9:dd:
6e:98:18:49:8d:52:97:e6:54:4b:f8:e1:68:ba:10:
fe:86:3e:f0:85:98:f2:79:8f:06:85:11:d3:f7:89:
ad:ff:06:f5:91:83:25:49:38:5a:95:59:47:d5:32:
54:24:d7:73:34:2f:76:5a:8b:17:b3:82:3f:0f:55:
b6:87:e1:bb:9d:11:f1:29:23:1c:51:b3:b9:14:9d:
c9:9a:68:82:ce:98:e9:eb:2b:9e:ed:99:62:25:d6:
db:e1:21:8b:7b:9c:6f:22:d8:eb:1d:4d:44:b2:df:
84:ac:fe:47:03:c6:59:d2:2c:a9:a0:92:0c:55:5f:
4d:15:f3:4f:7e:5c:3b:13:00:a5:e1:d7:87:cd:aa:
16:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:76:5A:FD:59:37:2B:12:FF:30:F4:FB:83:96:5F:D5:8F:6A:2B:1E
X509v3 Authority Key Identifier:
keyid:A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/ZnZa_Vk3KxL_MPT7g5Zf1Y9qKx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/pWbYM3d2yYdGvSMeaeGF2yqaW-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.17.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:8d:78:5e:82:f1:5d:94:0e:6a:88:c0:bb:c4:27:a7:95:98:
78:ca:5b:ac:d4:a9:eb:43:6c:f7:02:35:d1:51:65:71:a0:41:
8e:03:bf:b9:aa:57:ba:37:73:58:ec:58:79:07:35:00:88:51:
17:95:02:0a:55:74:ba:bb:73:aa:7d:54:ce:77:7d:b4:87:45:
5e:64:c0:59:4b:a6:6f:2e:a9:c1:0c:8e:4d:cb:96:60:4f:b0:
96:99:e9:ae:92:fa:90:d8:1b:95:3a:bd:03:d0:f3:61:9b:e1:
f5:66:b8:9a:17:23:8d:23:02:e9:cf:1e:e3:81:ff:14:ef:df:
a5:e5:ce:0c:da:ad:df:04:89:bf:c9:7c:a2:13:57:a9:d9:ed:
b5:8a:ef:9e:6a:94:8c:30:0e:77:69:92:8b:c2:50:a7:26:13:
be:33:04:12:69:8c:d7:db:1c:ac:e3:77:71:f3:dd:27:0f:5f:
f3:47:64:d7:82:21:b4:cb:82:fd:8d:78:bb:f4:14:60:77:d2:
c6:c5:0b:35:92:1e:b9:3f:99:87:a3:59:7a:8e:6f:56:df:b1:
d8:8e:d3:a2:b2:bc:4a:bf:b6:70:9d:90:1e:33:73:27:3c:e0:
6e:c3:b3:af:74:f9:7a:e6:fa:8b:95:84:85:fc:70:d5:fc:b0:
ff:88:85:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:09 2024 by rpki-client on console.sobornost.net