Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e673cf-27d7-4169-8c6f-9901565dd853/1/ZHQhV7bnZ6OPowT0zlWxxEfcj2Y.roa
File: ZHQhV7bnZ6OPowT0zlWxxEfcj2Y.roa (raw, json)
Hash identifier: XF66d73wdVJSbabQdvlSBWzhIDmUibY/hePQO6eZoWI=
Subject key identifier: 64:74:21:57:B6:E7:67:A3:8F:A3:04:F4:CE:55:B1:C4:47:DC:8F:66
Certificate issuer: /CN=ff0696719401ebb1ddbba9ad4fb8c66f14ef70a5
Certificate serial: 0185711E69891C34EC8E55BE19BB18338852
Authority key identifier: FF:06:96:71:94:01:EB:B1:DD:BB:A9:AD:4F:B8:C6:6F:14:EF:70:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_waWcZQB67Hdu6mtT7jGbxTvcKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e673cf-27d7-4169-8c6f-9901565dd853/1/ZHQhV7bnZ6OPowT0zlWxxEfcj2Y.roa
Signing time: Mon 02 Jan 2023 06:14:56 +0000
ROA not before: Mon 02 Jan 2023 06:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48952
IP address blocks: 185.161.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:69:89:1c:34:ec:8e:55:be:19:bb:18:33:88:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff0696719401ebb1ddbba9ad4fb8c66f14ef70a5
Validity
Not Before: Jan 2 06:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64742157b6e767a38fa304f4ce55b1c447dc8f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:0f:9e:27:bc:d6:a2:01:72:0e:75:07:c5:8e:
e3:88:48:f6:5c:2e:1f:dd:f6:93:6f:86:8b:ed:cd:
c8:eb:dc:ca:8c:33:72:a8:4e:6b:08:1c:05:6d:35:
37:6f:f1:a0:1d:b3:27:37:f4:82:87:9e:4c:87:8d:
ac:7d:d3:11:25:7d:14:be:83:bf:45:d8:7a:40:81:
b7:22:b7:08:37:a9:e9:2a:d4:87:35:d0:7e:c3:57:
2d:96:e6:7a:a6:95:0c:97:1a:fe:4b:6a:8d:ba:36:
39:61:45:e7:22:ca:9e:42:a3:3d:a4:d7:99:97:bc:
93:fe:d5:f6:0d:40:29:de:03:79:7a:c6:ac:67:69:
32:6e:0c:47:b0:ce:ba:53:05:6b:76:3f:dd:69:4f:
d5:ea:58:98:21:d8:28:ef:a2:87:9b:69:94:28:79:
2f:76:ba:9e:c7:c3:f3:55:d6:90:24:40:e3:22:c2:
83:6c:6b:00:55:76:3d:a1:4c:19:2e:99:42:77:3d:
12:05:44:89:0e:64:45:5b:ff:c9:93:2c:c2:8f:ee:
f5:fe:27:bb:d8:13:f1:27:04:2e:24:8f:0f:01:8e:
68:0f:8c:d5:bd:47:bf:cc:0b:98:be:10:06:05:03:
f4:0d:4a:fe:89:79:06:f2:40:d4:75:30:63:f9:35:
e3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:74:21:57:B6:E7:67:A3:8F:A3:04:F4:CE:55:B1:C4:47:DC:8F:66
X509v3 Authority Key Identifier:
keyid:FF:06:96:71:94:01:EB:B1:DD:BB:A9:AD:4F:B8:C6:6F:14:EF:70:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_waWcZQB67Hdu6mtT7jGbxTvcKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e673cf-27d7-4169-8c6f-9901565dd853/1/ZHQhV7bnZ6OPowT0zlWxxEfcj2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e673cf-27d7-4169-8c6f-9901565dd853/1/_waWcZQB67Hdu6mtT7jGbxTvcKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.40.0/22
Signature Algorithm: sha256WithRSAEncryption
65:3d:35:1d:8b:3b:7d:43:59:97:f8:64:94:93:3f:82:0c:d6:
3f:48:73:6a:8c:d2:78:03:39:76:4e:61:88:5a:0e:88:00:ed:
84:c0:ab:b6:c4:cc:2f:9b:6d:70:92:20:52:ee:7f:ff:f2:1f:
d6:4a:a8:41:5e:87:a5:b2:50:14:ca:08:38:fc:0b:36:e3:64:
c5:ca:5c:c9:b8:7c:44:1a:2a:f8:f6:c8:72:41:a1:59:43:97:
df:ec:89:26:fb:66:c1:1e:6e:44:03:5c:a8:ec:03:88:2f:6e:
af:bc:70:88:20:79:85:c3:c8:9f:51:69:3e:7f:1b:bf:9f:6f:
2d:57:6d:00:3a:0b:da:12:5d:2f:4c:53:98:8b:bb:f4:9d:ef:
f3:40:3f:ae:08:bf:51:ec:16:d2:7f:b9:86:0f:52:bc:e6:80:
69:e0:ef:8b:a3:23:dd:c2:6f:e0:a8:db:2c:40:3e:de:40:ec:
31:0c:d4:57:ce:e5:6f:4d:6d:ad:e3:2a:06:8b:9d:6f:2a:af:
33:76:01:23:47:75:bf:4e:85:eb:f8:a5:30:b0:60:78:31:76:
ac:38:a6:3f:57:d0:d7:d6:71:31:f9:88:f4:c0:d5:62:11:18:
b5:10:01:8b:be:86:a7:29:bf:5c:72:c7:93:02:ee:0b:ae:00:
41:44:01:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:11 2024 by rpki-client on console-ams.rpki-client.org