Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/cf028e-757e-4843-a1ea-4c74d332ea58/1/ZHBIULy8HHLvvQuPtgCZF7-HboM.roa
File: ZHBIULy8HHLvvQuPtgCZF7-HboM.roa (raw, json)
Hash identifier: Iza0hfjiU3fGZdwV13smmJt3L1C1hemuhlz2hjLpv3A=
Subject key identifier: 64:70:48:50:BC:BC:1C:72:EF:BD:0B:8F:B6:00:99:17:BF:87:6E:83
Certificate issuer: /CN=d959676fe138d4eb2aae19bb6731fee6292d793d
Certificate serial: 018CC86FCE3150E76C66B19F241B577E7D3E
Authority key identifier: D9:59:67:6F:E1:38:D4:EB:2A:AE:19:BB:67:31:FE:E6:29:2D:79:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Vlnb-E41Osqrhm7ZzH-5ikteT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/cf028e-757e-4843-a1ea-4c74d332ea58/1/ZHBIULy8HHLvvQuPtgCZF7-HboM.roa
Signing time: Tue 02 Jan 2024 04:30:19 +0000
ROA not before: Tue 02 Jan 2024 04:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 185.103.188.0/24 maxlen: 24
185.103.189.0/24 maxlen: 24
185.103.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Mar 2024 08:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:ce:31:50:e7:6c:66:b1:9f:24:1b:57:7e:7d:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d959676fe138d4eb2aae19bb6731fee6292d793d
Validity
Not Before: Jan 2 04:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64704850bcbc1c72efbd0b8fb6009917bf876e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5a:95:8d:33:b6:b2:f0:75:6e:70:28:23:77:
9d:f8:00:a7:5a:14:10:69:57:49:fa:7f:1d:69:6b:
b2:5b:dd:37:ac:3f:0e:2d:d6:de:8d:d5:91:56:6b:
51:0d:a8:f3:a1:e5:47:e5:4b:e4:fa:51:f2:a2:85:
4a:83:65:6e:7e:5d:e7:8d:0e:52:a8:a2:ae:bc:2f:
bd:1f:c7:88:38:db:e2:d2:14:ec:fe:1a:00:c5:c1:
71:45:02:2d:df:4a:1e:25:e2:12:d1:92:dc:6a:6f:
b3:73:a6:7a:de:cc:fe:81:73:8f:ff:2f:e6:9a:57:
04:8a:8f:45:06:f9:a1:9e:71:bd:e6:ef:c0:5c:7f:
4c:3c:d5:94:53:0c:b8:23:b6:20:61:f6:cf:39:26:
8a:b4:ce:86:9d:9c:ed:68:77:71:de:19:32:21:24:
b2:16:c1:56:fc:12:4e:04:b6:22:e8:1c:47:36:de:
66:7e:6e:ec:1d:ad:38:73:27:46:81:96:16:73:9d:
ec:9b:8a:8b:d4:e8:ca:a9:d6:df:61:ac:55:f8:d8:
a7:3e:f1:67:4e:3a:b6:18:2e:b3:28:b8:5d:f8:86:
16:76:9c:06:ca:d2:1c:b6:4b:84:d3:05:42:42:eb:
6a:71:29:d6:f4:b5:dc:40:02:3b:83:5a:e2:7b:1c:
df:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:70:48:50:BC:BC:1C:72:EF:BD:0B:8F:B6:00:99:17:BF:87:6E:83
X509v3 Authority Key Identifier:
keyid:D9:59:67:6F:E1:38:D4:EB:2A:AE:19:BB:67:31:FE:E6:29:2D:79:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Vlnb-E41Osqrhm7ZzH-5ikteT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/cf028e-757e-4843-a1ea-4c74d332ea58/1/ZHBIULy8HHLvvQuPtgCZF7-HboM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/cf028e-757e-4843-a1ea-4c74d332ea58/1/2Vlnb-E41Osqrhm7ZzH-5ikteT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.188.0-185.103.190.255
Signature Algorithm: sha256WithRSAEncryption
31:6b:be:cb:d5:39:ed:9c:ee:c6:9c:29:fa:12:f5:bb:c9:10:
80:94:fb:e6:fe:57:e1:76:a0:31:d1:5d:93:62:04:b7:f9:14:
92:e3:b6:f3:40:2a:90:c4:41:e1:37:43:88:d4:42:2a:af:c8:
86:1d:83:32:be:6f:28:20:b2:dc:2c:da:51:5e:05:c2:b4:88:
b4:88:0d:b3:16:52:2b:7d:30:76:d1:4d:03:67:f7:d1:3d:7a:
41:30:a5:0f:3e:4f:b6:53:65:80:fb:6d:8a:1f:48:46:8e:1a:
a4:db:ab:24:cb:d8:e4:7c:a5:9d:77:7b:45:1c:8f:19:d0:98:
9d:b4:01:00:e6:9c:7c:a8:0c:f9:37:9e:91:df:fd:a7:47:b6:
d3:f9:75:34:cf:19:5e:03:7d:d1:1c:20:e9:9a:81:01:71:99:
01:d6:0b:38:57:ca:80:75:b7:8e:73:af:53:7d:00:ec:06:4b:
ed:ef:47:19:64:57:89:35:0a:ac:6b:f7:32:c3:be:59:be:a0:
9a:d5:b2:53:42:ee:8a:19:95:39:03:3d:2f:40:5e:69:b7:c6:
05:dd:73:93:9f:b8:2e:7f:b7:16:5e:05:c8:a5:3c:2e:24:59:
8e:9c:eb:fa:d8:c0:b1:96:5c:58:ea:b2:a5:dc:08:cf:b2:e6:
7e:78:42:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:58 2024 by rpki-client on console-ams.rpki-client.org