Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/z3lZcvLILz8y48hfOXghACA7eNo.roa
File: z3lZcvLILz8y48hfOXghACA7eNo.roa (raw, json)
Hash identifier: +lpmgu6jSxGERNBjrDdFRUoDaPfi8VSWa/2Mp0yuby8=
Subject key identifier: CF:79:59:72:F2:C8:2F:3F:32:E3:C8:5F:39:78:21:00:20:3B:78:DA
Certificate issuer: /CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81
Certificate serial: 01894F00FA22723CED524196FE6104E8FC96
Authority key identifier: 4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/z3lZcvLILz8y48hfOXghACA7eNo.roa
Signing time: Thu 13 Jul 2023 11:26:51 +0000
ROA not before: Thu 13 Jul 2023 11:26:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210281
IP address blocks: 185.157.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 10:38:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4f:00:fa:22:72:3c:ed:52:41:96:fe:61:04:e8:fc:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81
Validity
Not Before: Jul 13 11:26:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf795972f2c82f3f32e3c85f39782100203b78da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7f:6a:5c:f4:50:be:5d:e7:b2:7a:c7:92:23:
5c:42:f1:7a:1f:90:0b:aa:43:8e:6c:c7:63:a0:11:
83:89:80:66:57:48:03:52:b8:b5:31:a0:d3:f6:5a:
e0:3e:7c:27:fc:0a:15:87:05:b3:9f:38:fe:d4:62:
78:ea:c1:53:19:e9:7a:5f:db:e8:48:91:bf:84:ed:
cc:48:c4:7f:7c:3a:89:5c:4b:54:e0:27:e8:e6:99:
f7:b5:02:62:19:ba:e7:18:cf:4c:ea:e3:25:cd:e0:
d8:d7:37:81:8a:49:09:48:8a:ec:7b:52:45:11:c6:
a7:b1:b2:3c:ab:0f:c8:93:31:4c:d2:c3:47:df:eb:
03:51:be:2d:75:0b:35:22:0b:4f:ff:61:02:0a:0a:
34:13:85:ec:e8:1e:06:fd:a5:3b:0e:f7:98:df:b9:
da:41:16:29:ae:d8:40:b7:a0:67:4b:94:39:eb:16:
7d:57:bb:5b:d9:a4:bd:1b:18:f5:04:82:f2:85:8b:
4d:83:09:02:d7:2f:57:03:ef:ca:cd:d5:53:ec:13:
ba:57:2c:ae:45:2e:fd:80:4a:0e:08:bb:5d:1b:3c:
20:b5:6b:66:4a:94:7d:f2:ba:72:cd:74:fb:2d:23:
e6:35:11:a1:e1:dc:c4:8b:3b:6c:01:d4:2c:78:ba:
7a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:79:59:72:F2:C8:2F:3F:32:E3:C8:5F:39:78:21:00:20:3B:78:DA
X509v3 Authority Key Identifier:
keyid:4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/z3lZcvLILz8y48hfOXghACA7eNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.120.0/24
Signature Algorithm: sha256WithRSAEncryption
39:94:f1:65:63:9b:6f:0b:22:27:95:3f:a8:ee:cd:dc:f8:59:
38:56:7a:f0:48:39:7c:73:79:d8:09:f7:6c:ed:a7:d8:23:d5:
37:ac:cb:e3:0a:77:b3:bc:53:60:1b:b3:23:a3:4c:d8:95:74:
2f:4c:4e:86:74:07:00:10:49:95:87:e0:58:c0:b6:d4:06:ce:
22:ac:a1:7a:5b:51:b0:35:a5:30:47:89:d1:ec:0c:0a:78:f3:
ab:69:93:b2:5b:8f:7a:a8:32:9c:89:8d:a5:fc:67:23:0a:be:
c0:36:26:c8:4b:b5:e3:cf:45:14:a1:8e:4d:08:21:82:68:74:
43:61:b5:f2:04:8f:96:fa:9a:3f:43:e3:02:ee:3f:e8:8a:ac:
38:f1:2b:62:12:e9:b6:20:d6:5a:08:c1:2f:2f:58:ea:14:b2:
7e:d8:a1:c1:0f:41:0f:d6:e6:df:c0:c5:73:03:65:1b:01:93:
2d:5b:0b:a9:0c:2e:e5:59:a1:1e:97:11:e9:d9:f7:f6:98:75:
a4:39:69:43:b4:d1:f0:ad:cf:7f:c2:42:e4:aa:42:a9:de:bf:
fe:5f:20:81:73:27:1a:c5:d5:f0:f7:ad:96:58:b3:3d:9e:4c:
62:cb:b8:47:c2:0a:8d:39:c6:ab:8a:2f:54:fe:9f:94:02:41:
0c:1b:0c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:53 2024 by rpki-client on console-fra.rpki-client.org