Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/61a0a9-c466-469c-afbe-8fed50909770/1/znxe2RjTx0TKbh414YMHNJgb-g4.roa
File: znxe2RjTx0TKbh414YMHNJgb-g4.roa (raw, json)
Hash identifier: XFUo6zUUTm8OHC08rTYiBohrWJI34acIFLZhKUfAxbg=
Subject key identifier: CE:7C:5E:D9:18:D3:C7:44:CA:6E:1E:35:E1:83:07:34:98:1B:FA:0E
Certificate issuer: /CN=990a80968e4c9603ca2b13dd1d1465965d8f3dbf
Certificate serial: 0185730CA1E1FD9B3EE58ACD2A1F40AE2DD9
Authority key identifier: 99:0A:80:96:8E:4C:96:03:CA:2B:13:DD:1D:14:65:96:5D:8F:3D:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mQqAlo5MlgPKKxPdHRRlll2PPb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/61a0a9-c466-469c-afbe-8fed50909770/1/znxe2RjTx0TKbh414YMHNJgb-g4.roa
Signing time: Mon 02 Jan 2023 15:14:45 +0000
ROA not before: Mon 02 Jan 2023 15:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42659
IP address blocks: 194.110.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:a1:e1:fd:9b:3e:e5:8a:cd:2a:1f:40:ae:2d:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=990a80968e4c9603ca2b13dd1d1465965d8f3dbf
Validity
Not Before: Jan 2 15:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce7c5ed918d3c744ca6e1e35e1830734981bfa0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c4:e3:d7:17:57:75:8a:1a:4c:15:ae:5d:91:
ce:b0:0b:14:57:64:d8:8b:1f:a4:dd:19:78:bf:2b:
fa:a7:a3:2b:1a:43:a9:f7:f1:70:1f:e9:d0:6e:b9:
35:b1:59:2b:ba:aa:1d:4b:e5:cd:5a:c9:ba:4d:f4:
c9:f8:f5:2d:89:9c:cf:c5:cc:e4:b8:75:5d:3b:f6:
aa:d8:25:ef:35:d8:80:0c:76:f2:21:ae:40:74:b5:
4c:f9:33:58:08:7d:96:10:a4:30:94:64:7b:bc:89:
8e:e4:11:85:8a:f3:bc:55:99:2c:69:3e:ca:33:8f:
8b:60:9e:64:40:40:8d:1c:16:17:84:4e:d1:71:12:
5b:45:17:4f:27:96:3d:e5:bf:a6:25:7c:02:3b:11:
da:a8:0a:11:fe:7a:a9:2d:f4:e2:c5:1f:8f:d9:ef:
71:9b:04:b0:07:cb:04:98:31:6e:cd:4f:6d:e2:4e:
e7:8e:69:6b:c1:85:91:e1:fe:35:4e:93:6e:10:a0:
ac:82:30:81:a9:b9:6b:ce:3b:49:86:22:43:79:0a:
8b:f2:f4:67:a2:2d:25:ec:90:76:c5:c9:f0:e2:a1:
97:ed:0b:88:a4:4b:2f:5a:7d:cb:c2:4e:71:84:51:
77:56:ea:b5:b2:53:c5:d6:c8:7e:1b:fa:ef:3f:30:
07:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:7C:5E:D9:18:D3:C7:44:CA:6E:1E:35:E1:83:07:34:98:1B:FA:0E
X509v3 Authority Key Identifier:
keyid:99:0A:80:96:8E:4C:96:03:CA:2B:13:DD:1D:14:65:96:5D:8F:3D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mQqAlo5MlgPKKxPdHRRlll2PPb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/61a0a9-c466-469c-afbe-8fed50909770/1/znxe2RjTx0TKbh414YMHNJgb-g4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/61a0a9-c466-469c-afbe-8fed50909770/1/mQqAlo5MlgPKKxPdHRRlll2PPb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.136.0/24
Signature Algorithm: sha256WithRSAEncryption
72:dd:6c:e8:47:de:c0:7a:77:12:af:21:50:95:b0:76:81:c4:
97:01:58:4c:04:88:a1:7e:b9:95:29:3e:0d:25:b5:8f:f8:d5:
e9:07:22:a2:34:70:fc:68:8b:7c:5c:f7:d6:3a:97:97:97:21:
4c:19:c6:6a:b8:50:30:d0:ae:cc:94:d1:6e:5e:c4:d3:0c:1b:
ee:8e:48:b0:ec:08:75:1e:eb:6c:ac:58:a4:10:39:c0:5e:cb:
17:a4:a6:bb:40:3c:c5:9c:b4:df:f0:cf:c7:03:cc:30:04:46:
f3:c2:06:bc:d4:cc:1d:1d:5e:3f:a4:a2:6a:07:52:8b:8d:e5:
d1:b5:5d:ad:4f:7e:b6:2a:c6:64:94:a2:58:a4:52:79:97:79:
c6:8a:3f:db:03:f4:f1:3d:11:9b:f1:71:9e:64:24:ab:18:20:
18:6f:a8:7a:fd:87:be:3e:45:99:20:3e:38:22:f6:e7:3f:39:
07:a5:38:cd:41:12:2c:bb:ea:d1:27:fd:af:8f:e4:ce:85:ee:
c7:1c:df:03:bb:a5:e4:b4:7e:ab:52:bd:2f:f3:2d:da:2a:42:
b1:d7:68:0f:7c:40:cc:1d:5c:64:2c:c6:c5:06:ac:6c:a6:22:
e0:06:11:bc:0b:59:2f:5c:47:33:a9:dc:ef:5a:34:0d:83:f3:
7b:1a:91:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:45 2024 by rpki-client on console-ams.rpki-client.org