Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/zcgJQEgXY2Y0-M1BLipQpoEXpwU.roa
File: zcgJQEgXY2Y0-M1BLipQpoEXpwU.roa (raw, json)
Hash identifier: RldSp9oaIucYM/1j3jO1uNQpP0/zcxSVWF6SMRemXUQ=
Subject key identifier: CD:C8:09:40:48:17:63:66:34:F8:CD:41:2E:2A:50:A6:81:17:A7:05
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB84E8FB6BB635330A9D56E9F1D9F55
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/zcgJQEgXY2Y0-M1BLipQpoEXpwU.roa
Signing time: Sun 01 Jan 2023 09:44:56 +0000
ROA not before: Sun 01 Jan 2023 09:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39931
IP address blocks: 83.206.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:4e:8f:b6:bb:63:53:30:a9:d5:6e:9f:1d:9f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdc809404817636634f8cd412e2a50a68117a705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:7a:e7:94:40:de:a7:23:50:40:b4:3e:70:c0:
91:18:36:56:56:fc:b2:0c:fb:68:31:b9:dc:7c:60:
50:b1:40:07:8d:d6:04:fe:05:ac:7a:56:ef:59:e2:
ae:1c:02:a0:c1:91:6e:c1:00:98:3c:30:ad:54:de:
34:d9:24:9f:38:4c:8a:6b:c1:e0:e2:5f:16:c7:b7:
ed:34:fa:0b:ee:37:d0:5b:2c:7c:fc:d9:a1:71:46:
5c:e3:70:36:58:85:fb:41:27:db:a8:1b:b8:d9:8c:
3f:61:a2:be:96:de:e8:62:48:e3:e9:8b:3e:2d:65:
23:cc:d4:7b:f0:b2:8a:15:cd:e8:f7:30:63:be:a2:
40:d6:89:0e:bc:71:fc:f4:cc:79:d8:0c:1c:5a:d6:
82:f6:d0:a1:2e:c9:de:35:2e:4e:a4:60:b6:3f:6d:
6d:c7:a8:62:36:95:f1:cf:d1:bd:2b:b8:0c:f2:ac:
4f:4d:a2:37:fa:5a:db:54:54:03:21:b0:95:9a:ab:
5e:88:4d:bb:19:c5:10:1d:74:81:77:6b:3f:c5:ed:
75:f7:a0:b2:89:2f:0c:83:72:98:93:8a:a7:58:84:
bb:f9:75:a6:99:eb:4c:64:91:0c:e9:21:4d:df:4d:
7e:ce:5c:57:45:b5:e5:ba:fb:d4:4e:ed:c9:53:13:
d0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C8:09:40:48:17:63:66:34:F8:CD:41:2E:2A:50:A6:81:17:A7:05
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/zcgJQEgXY2Y0-M1BLipQpoEXpwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.206.188.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:d9:0e:82:c2:e7:f0:d0:3f:8f:c7:12:8c:89:e9:c3:00:83:
4f:36:e2:d1:83:4b:1c:ad:93:83:64:f8:10:21:da:70:2f:9d:
09:62:a8:b7:90:f9:c2:83:4c:05:fc:5a:4c:93:cb:94:f5:e9:
ee:1f:ee:c2:04:89:1f:f4:90:04:f9:97:c5:02:38:66:a1:0f:
4f:2c:97:be:0a:9d:ca:f9:f7:e8:8c:15:9c:c4:b8:33:7a:c6:
f6:ef:fa:95:71:30:de:e2:a0:7c:93:e8:1e:b2:3b:47:21:60:
eb:91:1f:9e:99:db:77:f0:eb:73:ff:96:ce:42:0b:f9:20:a7:
61:a3:82:00:4d:73:66:e8:89:d3:3e:7f:4a:94:57:ac:0a:cd:
0b:7b:5c:9e:54:a3:ad:b2:2f:7b:87:47:20:49:7a:8e:1a:2b:
16:e4:de:7e:8a:a0:8b:ca:0c:70:5f:8a:50:1d:ba:3f:97:7a:
17:1d:63:07:0c:64:36:79:d3:ee:25:bd:15:7b:30:2f:15:a8:
11:a1:0d:1a:79:70:fd:f7:9c:93:20:9a:5f:6d:a6:fb:6e:44:
50:4c:d2:1a:31:43:ae:e4:6f:a9:3e:bc:8c:9c:ad:76:cd:72:
a4:cf:7c:9e:37:f3:05:0f:f9:ba:83:15:5d:96:c5:59:c4:b9:
59:c8:be:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:20 2024 by rpki-client on console-ams.rpki-client.org