Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/ZFWJgytuaKleQCeKlyUbzFznJHQ.roa
File: ZFWJgytuaKleQCeKlyUbzFznJHQ.roa (raw, json)
Hash identifier: V8+hywgoVmjLtbHj3purLtvY955J/3+BTOnKtwb9yhg=
Subject key identifier: 64:55:89:83:2B:6E:68:A9:5E:40:27:8A:97:25:1B:CC:5C:E7:24:74
Certificate issuer: /CN=7a8746a76cda8369009d28941ef156239c6a63a1
Certificate serial: 018AF5A93CFA7834F4CB07E3344642A1CFDA
Authority key identifier: 7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/ZFWJgytuaKleQCeKlyUbzFznJHQ.roa
Signing time: Tue 03 Oct 2023 13:10:23 +0000
ROA not before: Tue 03 Oct 2023 13:10:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5378
IP address blocks: 84.70.32.0/19 maxlen: 19
84.66.192.0/18 maxlen: 18
84.68.128.0/18 maxlen: 18
84.70.64.0/18 maxlen: 18
84.68.64.0/19 maxlen: 19
84.70.0.0/19 maxlen: 19
84.68.96.0/19 maxlen: 19
84.65.0.0/18 maxlen: 18
84.71.192.0/18 maxlen: 18
84.68.224.0/19 maxlen: 19
84.65.128.0/18 maxlen: 18
84.67.64.0/18 maxlen: 18
84.69.0.0/18 maxlen: 18
84.65.64.0/18 maxlen: 18
84.67.0.0/18 maxlen: 18
84.68.192.0/19 maxlen: 19
84.70.128.0/18 maxlen: 18
84.69.64.0/18 maxlen: 18
84.64.0.0/13 maxlen: 13
84.67.160.0/19 maxlen: 19
84.64.64.0/18 maxlen: 18
84.71.0.0/18 maxlen: 18
81.76.0.0/14 maxlen: 14
84.66.0.0/18 maxlen: 18
84.67.192.0/19 maxlen: 19
84.64.0.0/18 maxlen: 18
84.70.192.0/18 maxlen: 18
84.65.192.0/18 maxlen: 18
84.67.128.0/19 maxlen: 19
84.68.0.0/18 maxlen: 18
84.69.192.0/18 maxlen: 18
84.64.192.0/18 maxlen: 18
84.71.128.0/18 maxlen: 18
84.66.128.0/18 maxlen: 18
84.69.128.0/18 maxlen: 18
84.64.128.0/18 maxlen: 18
84.67.224.0/19 maxlen: 19
84.71.64.0/18 maxlen: 18
84.66.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Tue 03 Oct 2023 14:51:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f5:a9:3c:fa:78:34:f4:cb:07:e3:34:46:42:a1:cf:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8746a76cda8369009d28941ef156239c6a63a1
Validity
Not Before: Oct 3 13:10:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645589832b6e68a95e40278a97251bcc5ce72474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cc:21:19:be:e0:fe:1d:0e:f2:a3:31:cf:98:
d7:68:14:54:7d:17:a6:a8:5d:6a:02:47:f2:03:6d:
e3:19:aa:b6:c8:86:dc:a3:e5:59:00:48:57:a4:06:
c6:17:a1:1b:24:51:64:30:1f:53:df:fb:4d:0c:16:
1b:26:1b:c6:93:c6:13:54:ae:b4:d4:2b:0b:ad:47:
10:28:13:30:10:d8:33:d5:7c:66:39:bd:95:5c:b0:
35:e1:6b:66:cd:2e:be:06:72:23:d1:c0:30:e7:c3:
49:69:b1:06:9f:d5:1e:71:57:ce:60:11:8c:76:d4:
ae:82:84:ee:75:62:b8:dd:6c:70:dc:b0:ca:b7:61:
61:f8:63:4e:b0:fc:93:81:43:97:6f:e6:bb:31:db:
f6:15:d4:38:d6:29:ab:87:b8:12:99:af:73:ad:9b:
58:aa:41:04:f6:26:9c:e6:b4:61:40:61:6f:b1:23:
10:8f:c9:8c:db:f2:72:94:6f:fb:35:c3:ba:65:3c:
8b:30:52:46:ad:1d:42:d8:31:a7:aa:74:4d:79:3f:
49:44:81:d4:08:2b:37:b2:71:fa:ea:e8:bf:7f:a8:
44:55:47:da:9d:df:b7:b8:08:fe:2a:eb:4a:3e:b4:
f2:ad:2e:7f:5d:60:e4:b4:0b:5e:60:ec:39:07:a7:
af:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:55:89:83:2B:6E:68:A9:5E:40:27:8A:97:25:1B:CC:5C:E7:24:74
X509v3 Authority Key Identifier:
keyid:7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/ZFWJgytuaKleQCeKlyUbzFznJHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/eodGp2zag2kAnSiUHvFWI5xqY6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.76.0.0/14
84.64.0.0/13
Signature Algorithm: sha256WithRSAEncryption
20:45:8d:3f:f5:6a:d0:2d:d3:61:6b:59:cf:fa:7e:b5:35:e3:
80:22:b0:2a:e6:e8:cf:3c:24:66:75:3b:1c:4a:d6:3c:a5:51:
29:02:25:1a:fc:ec:ea:cb:cf:1b:8c:e8:9f:de:4d:6e:32:1f:
ce:14:eb:92:fb:76:bb:a9:2b:a0:c5:b0:fc:38:43:d2:f5:1d:
eb:ea:1c:0a:cf:b6:6b:cd:10:ff:42:ad:fc:22:1a:09:81:1e:
b6:13:0d:d5:94:b4:ca:5c:dc:f6:76:f1:63:72:73:a2:12:92:
4f:4b:2b:98:c1:c5:f1:bb:16:e9:7a:f1:27:e0:50:6b:79:e7:
a8:5a:e8:78:96:59:24:96:cd:02:13:bc:2c:06:21:bd:10:21:
94:ce:4d:e5:d2:d2:86:28:4b:a2:bd:74:88:5f:80:cb:cc:ba:
29:b2:f1:ac:b5:9b:9e:fd:1f:59:43:35:2b:71:5a:ee:0b:a7:
75:01:f6:6c:f0:b7:bb:cf:b0:e4:0a:4e:5e:85:06:1b:99:90:
00:37:4d:56:ae:af:4b:5d:f3:14:77:83:11:6f:85:c0:70:db:
b3:34:b7:42:89:a9:70:ab:bd:92:f0:82:2c:b4:8f:70:58:5e:
ee:03:d9:c8:6e:db:cb:73:5e:b9:35:53:bf:f4:df:a2:9b:4c:
b6:1e:3a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:22 2024 by rpki-client on console-ams.rpki-client.org