Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/zH9_S0EkBoieqHtVRfoTa6u8ljY.roa
File: zH9_S0EkBoieqHtVRfoTa6u8ljY.roa (raw, json)
Hash identifier: UMZE9mah+30Tna5i3eHyOy1J1hlRYOkk7CdappdFdUY=
Subject key identifier: CC:7F:7F:4B:41:24:06:88:9E:A8:7B:55:45:FA:13:6B:AB:BC:96:36
Certificate issuer: /CN=b9762db1282ffd084761232038f81f5d29e640d5
Certificate serial: 01856E268526B059BC027FFCB75CA8C6B958
Authority key identifier: B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/zH9_S0EkBoieqHtVRfoTa6u8ljY.roa
Signing time: Sun 01 Jan 2023 16:24:56 +0000
ROA not before: Sun 01 Jan 2023 16:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 185.139.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Mar 2023 13:20:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:85:26:b0:59:bc:02:7f:fc:b7:5c:a8:c6:b9:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9762db1282ffd084761232038f81f5d29e640d5
Validity
Not Before: Jan 1 16:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc7f7f4b412406889ea87b5545fa136babbc9636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dd:b9:73:60:6d:8f:13:f7:ed:bd:07:b5:e8:
0b:13:12:ab:2a:3c:76:a8:ab:7a:fa:94:6b:67:78:
c3:26:21:30:cf:54:7b:31:d3:95:77:14:a1:62:73:
f9:46:b8:b1:0e:46:2b:6f:0e:37:c0:29:67:94:e8:
e9:63:a9:aa:33:dd:6a:4f:3e:f7:e4:41:bc:ba:40:
22:e2:91:ff:63:87:08:36:1c:a8:2d:86:cb:07:83:
90:15:61:19:fe:84:ca:c8:bb:24:13:58:3f:45:0b:
fe:ef:4d:27:08:fd:02:65:5b:58:86:a7:78:1b:1f:
b3:08:e4:06:e5:5b:cb:da:c3:37:20:79:38:94:26:
6f:ab:00:b0:18:b2:80:74:80:ec:96:68:36:a3:b7:
e4:c5:0b:d6:93:88:f5:4a:5b:48:e1:ee:05:46:a1:
c5:67:f6:65:d4:f3:df:c4:f2:21:fc:2b:74:44:e5:
91:ae:dd:da:21:bf:ed:1c:76:f1:fb:db:59:d8:ef:
65:71:ab:61:7d:2b:cc:7e:12:1e:34:c6:c4:1c:0c:
28:af:64:2e:20:c6:37:65:e0:91:18:b8:c4:c9:1b:
22:ee:7c:37:28:19:d9:74:20:d4:cd:af:92:2b:a2:
c6:48:23:e7:74:6d:42:c9:33:c2:03:aa:e3:08:7a:
c4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7F:7F:4B:41:24:06:88:9E:A8:7B:55:45:FA:13:6B:AB:BC:96:36
X509v3 Authority Key Identifier:
keyid:B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/zH9_S0EkBoieqHtVRfoTa6u8ljY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.35.0/24
Signature Algorithm: sha256WithRSAEncryption
71:92:6f:01:15:fd:a6:33:9f:93:14:ba:8d:14:03:64:21:e2:
8e:90:b8:63:1a:7e:91:d0:f2:a2:b2:31:ee:da:ec:29:38:ff:
42:ad:06:64:d4:e6:ad:f6:f6:4f:f1:51:92:76:26:16:5e:f1:
08:49:fb:38:44:29:a8:80:d9:88:de:00:b0:6d:c0:1b:14:33:
1b:08:82:a9:1a:11:92:ba:32:f7:46:08:a3:24:fc:1d:b1:5f:
1a:ea:6d:f0:90:18:5a:d1:ce:ae:fa:54:8a:c8:d0:a1:e9:27:
9e:11:0d:4a:d2:94:b6:e1:8a:77:d3:71:c9:b4:17:ef:d9:79:
bf:3a:7c:36:d8:ca:62:2a:9e:80:76:89:8f:d8:29:f3:a1:c2:
c2:02:9d:2b:dd:c0:30:f4:c1:6b:7d:e3:65:0e:42:c4:01:73:
23:65:4d:26:04:14:31:18:a1:9d:dd:f6:02:4e:64:55:51:f6:
55:1b:f0:f9:c7:6e:f8:f7:79:5c:8f:9a:ce:0b:ce:71:4d:cd:
15:50:1d:10:41:ce:ae:81:95:a4:48:a7:12:24:f4:9d:11:61:
39:bf:f5:d5:22:67:c7:38:b4:8b:a8:cf:03:51:5b:91:b2:b4:
cc:e9:ce:fb:99:73:ee:bc:57:06:a8:91:3b:0e:66:12:12:f1:
72:49:5c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:47 2024 by rpki-client on console-ams.rpki-client.org