Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/z1WNwZD9LQIXQU8U5qSoAAzxz6M.roa
File: z1WNwZD9LQIXQU8U5qSoAAzxz6M.roa (raw, json)
Hash identifier: VpGar3dGJjuixbwDWD4YpZIcGckhsLlwPeGqZ7q8Lvg=
Subject key identifier: CF:55:8D:C1:90:FD:2D:02:17:41:4F:14:E6:A4:A8:00:0C:F1:CF:A3
Certificate issuer: /CN=572bc93f1580fc95274d983940f3efaede304ae5
Certificate serial: 01864A83683DE14B8F6A332F144157D20319
Authority key identifier: 57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/z1WNwZD9LQIXQU8U5qSoAAzxz6M.roa
Signing time: Mon 13 Feb 2023 11:22:51 +0000
ROA not before: Mon 13 Feb 2023 11:22:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200887
IP address blocks: 185.244.236.0/24 maxlen: 24
2a13:1584::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 14 Feb 2023 22:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:83:68:3d:e1:4b:8f:6a:33:2f:14:41:57:d2:03:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572bc93f1580fc95274d983940f3efaede304ae5
Validity
Not Before: Feb 13 11:22:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf558dc190fd2d0217414f14e6a4a8000cf1cfa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9a:c8:e1:38:b4:1e:3a:52:7a:ea:d7:d1:55:
e6:ec:07:4b:95:dd:1b:0b:7f:10:09:b3:79:39:02:
32:4b:c1:4a:c1:13:59:b8:6e:a0:b1:37:24:cf:29:
3f:59:79:2e:56:e2:be:6f:2b:ae:f2:bc:8e:ef:68:
e2:cd:44:37:5c:31:4f:c6:69:70:7d:eb:ee:44:a2:
42:6f:ba:d3:9e:66:c2:8d:de:28:de:ff:ee:21:25:
e2:08:0b:1d:85:f8:52:fa:7f:00:8c:ad:6d:cd:84:
64:f4:c3:65:ca:a6:57:cd:2c:2c:52:44:58:d0:58:
a0:6e:65:88:d5:91:7a:3b:1e:b0:a1:cb:23:3b:63:
f9:ff:ce:d5:47:d9:dd:fb:c9:50:a8:51:55:9c:ed:
e8:af:79:62:d4:93:75:64:5a:aa:3a:61:83:a6:1b:
1b:14:a8:32:d5:7a:cc:5a:0c:2e:28:22:20:51:e8:
44:dc:78:3e:18:8f:72:8a:b4:a7:f2:20:c9:18:d2:
db:ab:a0:1d:27:f9:4c:5c:b0:8a:7c:57:f4:ff:f4:
bc:df:47:9a:c2:34:2f:16:7f:9e:f8:24:1b:be:3f:
83:95:1b:07:17:47:f7:51:46:30:78:72:a4:95:79:
48:61:b6:4f:a6:ae:6a:72:b5:d7:88:ac:81:54:eb:
07:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:55:8D:C1:90:FD:2D:02:17:41:4F:14:E6:A4:A8:00:0C:F1:CF:A3
X509v3 Authority Key Identifier:
keyid:57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/z1WNwZD9LQIXQU8U5qSoAAzxz6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/VyvJPxWA_JUnTZg5QPPvrt4wSuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.236.0/24
IPv6:
2a13:1584::/30
Signature Algorithm: sha256WithRSAEncryption
1b:b0:f8:21:b5:f9:58:33:c9:a7:f0:cd:45:8f:cc:29:b2:26:
ce:0c:b0:46:8c:f2:6e:4c:4f:b9:9c:f2:ab:a4:93:c0:1c:ad:
ac:58:87:21:be:90:62:c0:35:1e:e0:60:3c:9b:3c:71:bf:3f:
59:fe:ef:43:c8:88:5e:a5:53:e0:0a:4b:68:88:93:94:80:56:
7f:f3:52:55:e5:29:6c:0b:03:81:db:09:5a:dc:8c:9a:0e:74:
48:31:21:3e:aa:35:ef:14:1b:0b:05:b9:cc:7f:e7:8f:2b:d0:
91:18:27:05:43:1b:31:3f:08:93:5e:2e:2a:a6:07:f7:7a:16:
6e:f2:cf:fc:0f:64:e0:00:63:a5:f1:fb:50:d7:49:fe:8e:75:
2a:93:9f:59:04:a4:24:22:64:43:78:7b:c1:99:8f:f1:62:18:
03:f0:12:4a:5b:49:42:e8:b4:83:a5:2d:79:5d:a5:ff:8f:e1:
c8:fb:e2:85:cb:75:a6:ed:08:24:67:1a:fd:15:48:f1:4f:bb:
cc:0d:88:02:4b:f3:d7:f4:c3:af:43:65:d6:23:19:59:27:0a:
b9:3e:25:f8:c4:10:50:fe:a0:38:27:7e:9c:7d:42:5a:df:20:
40:7a:ff:f5:f8:4d:af:5c:2a:8a:7b:b7:7e:a3:33:7b:51:5e:
8f:16:83:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org