Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/zWxWo_qNHeER7NxS-8gT7zgUL-Y.roa
File: zWxWo_qNHeER7NxS-8gT7zgUL-Y.roa (raw, json)
Hash identifier: oVYQbpkm/0eUH+uLDO3MhYfLN6Y+B8wLES6YEVQHGSk=
Subject key identifier: CD:6C:56:A3:FA:8D:1D:E1:11:EC:DC:52:FB:C8:13:EF:38:14:2F:E6
Certificate issuer: /CN=9246785f469be8aa7151e3333e47465d478fd0e7
Certificate serial: 01890071ADD6184BE5D5984C3DC4BB2B00BC
Authority key identifier: 92:46:78:5F:46:9B:E8:AA:71:51:E3:33:3E:47:46:5D:47:8F:D0:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkZ4X0ab6KpxUeMzPkdGXUeP0Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/zWxWo_qNHeER7NxS-8gT7zgUL-Y.roa
Signing time: Wed 28 Jun 2023 05:19:57 +0000
ROA not before: Wed 28 Jun 2023 05:19:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60902
IP address blocks: 185.24.17.0/24 maxlen: 24
185.24.16.0/24 maxlen: 24
185.24.19.0/24 maxlen: 24
185.24.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:00:71:ad:d6:18:4b:e5:d5:98:4c:3d:c4:bb:2b:00:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9246785f469be8aa7151e3333e47465d478fd0e7
Validity
Not Before: Jun 28 05:19:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd6c56a3fa8d1de111ecdc52fbc813ef38142fe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9a:ad:45:be:03:ba:45:bd:b0:fb:20:2d:82:
51:9c:bd:41:4d:b2:19:3c:0a:37:36:15:fa:61:64:
bc:ad:b2:2a:3c:a0:f5:85:1b:66:11:c7:06:f5:99:
26:55:27:07:a7:65:59:68:8b:db:39:af:cc:54:38:
78:82:48:f3:02:c2:af:5a:40:5a:c4:9c:7e:3f:a2:
4a:c5:12:94:52:fc:fa:03:44:92:a0:b1:cf:23:e5:
d0:86:1e:d0:56:c0:7f:d2:e3:a8:a2:71:29:c0:6e:
8d:6f:24:9c:a8:6e:a3:31:02:d6:04:5b:28:69:1c:
74:eb:f3:be:07:0a:12:47:42:c1:83:71:38:a2:53:
53:b9:32:41:e1:c6:eb:0b:22:60:4e:ed:f8:3d:b0:
de:e4:50:e1:ec:ff:5e:0a:60:8f:9c:bf:5b:e3:b9:
a7:ac:27:29:6c:e3:0a:75:bc:22:e3:15:0b:a9:45:
9e:36:43:e9:e9:97:26:85:72:2a:e5:50:91:b4:02:
42:14:7b:e7:20:dd:fb:98:68:71:4c:c5:5e:14:19:
07:ce:cf:78:37:3a:27:f8:19:bd:7e:96:a9:83:82:
af:7e:3d:8c:ad:af:03:e8:29:68:6b:1f:64:b1:64:
cf:37:a5:83:7e:8a:68:59:d0:23:08:aa:b8:0b:1f:
0f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:6C:56:A3:FA:8D:1D:E1:11:EC:DC:52:FB:C8:13:EF:38:14:2F:E6
X509v3 Authority Key Identifier:
keyid:92:46:78:5F:46:9B:E8:AA:71:51:E3:33:3E:47:46:5D:47:8F:D0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkZ4X0ab6KpxUeMzPkdGXUeP0Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/zWxWo_qNHeER7NxS-8gT7zgUL-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/kkZ4X0ab6KpxUeMzPkdGXUeP0Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.16.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:5a:32:c6:1c:93:8f:25:57:e9:7c:92:d3:99:53:0d:c3:87:
67:bf:99:52:20:db:b7:87:ba:bb:ec:2d:89:8b:8b:c6:11:ed:
47:b1:bd:bd:87:62:25:ed:39:0e:19:f9:ed:7f:79:dc:f0:97:
79:0a:4f:5c:10:9d:66:74:8b:70:75:86:e7:2e:bb:07:31:6c:
17:ae:b7:e6:ed:59:8a:de:bb:51:2d:7d:42:5d:b2:9b:d9:a7:
ba:8b:70:58:a4:f1:36:c9:c4:43:d6:14:e7:c1:55:d7:55:de:
b3:34:20:ac:57:5a:2e:b0:42:3c:ef:23:92:c1:0d:ef:b5:7e:
38:e6:df:60:c9:cf:cd:21:77:48:b0:b2:09:d2:06:49:c9:99:
83:21:14:71:e4:68:19:85:1c:0b:d8:7f:75:02:0a:6d:53:6d:
aa:2c:d8:b4:60:8e:aa:58:36:a0:f6:79:b1:58:b1:27:d7:e7:
9f:9e:71:fe:db:e7:82:c2:45:9d:83:b3:b2:26:55:ac:8a:ab:
5b:e8:0c:39:a3:95:cc:1c:d5:c9:57:dc:08:1f:78:40:65:b8:
89:e3:03:88:48:4e:24:09:dc:83:6a:3a:f2:7f:7b:3d:88:65:
4d:58:6b:d7:76:dd:05:c6:ac:a7:fa:b3:7b:ce:23:f0:f6:2f:
96:d2:33:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:20 2024 by rpki-client on console-fra.rpki-client.org