Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ZMvNVwXccDcCpcjI3Jt8LKdaykY.roa
File: ZMvNVwXccDcCpcjI3Jt8LKdaykY.roa (raw, json)
Hash identifier: BccAE/PnUuTxlTsw79/H4XNGOAdcJU0ncd8sOcxBaPo=
Subject key identifier: 64:CB:CD:57:05:DC:70:37:02:A5:C8:C8:DC:9B:7C:2C:A7:5A:CA:46
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE64CE72705E160B1D99472E16FBF7F
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ZMvNVwXccDcCpcjI3Jt8LKdaykY.roa
Signing time: Sun 01 Jan 2023 10:35:10 +0000
ROA not before: Sun 01 Jan 2023 10:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12982
IP address blocks: 212.72.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:4c:e7:27:05:e1:60:b1:d9:94:72:e1:6f:bf:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64cbcd5705dc703702a5c8c8dc9b7c2ca75aca46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:33:f2:8c:03:18:24:6e:02:18:5e:95:9e:ca:
ae:d8:53:08:eb:ad:2d:01:25:90:49:1a:18:52:95:
f4:c6:00:cf:d2:c3:98:6f:b9:c6:22:c8:7b:ae:bf:
ec:88:f5:80:9c:13:4b:58:14:6b:7a:f9:9c:14:6a:
a9:1c:6d:ea:d3:b5:39:93:59:3c:37:fd:d0:c5:26:
28:68:52:48:50:bb:d3:e3:7f:83:18:0a:8f:42:ea:
03:1f:4b:18:cb:f9:a0:e8:84:ee:d8:82:d5:34:80:
cd:27:99:90:ad:c6:5b:b3:39:ca:fc:e5:63:0d:35:
fb:d4:43:82:3a:95:f6:d9:a2:35:56:2a:f9:b8:07:
87:b8:11:90:84:9c:19:96:88:cb:ea:71:0e:5a:96:
f4:8d:28:e6:e6:a8:92:38:84:18:bf:0e:a5:01:99:
90:85:09:f4:f1:e0:4a:50:31:fc:4e:85:c2:9c:a0:
49:0f:00:40:e7:b1:11:52:24:b5:af:41:42:a7:7e:
70:bf:f0:e2:2a:ce:57:49:f9:a9:e1:de:76:0c:70:
6c:f7:ac:72:4e:fe:b4:b7:23:5d:88:9d:d6:f0:4c:
10:2f:93:9d:a2:54:8d:fc:ef:fd:da:fd:0e:c8:b6:
9f:22:43:94:30:e9:cb:39:68:0c:b5:1b:06:34:02:
b7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:CB:CD:57:05:DC:70:37:02:A5:C8:C8:DC:9B:7C:2C:A7:5A:CA:46
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ZMvNVwXccDcCpcjI3Jt8LKdaykY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.72.195.0/24
Signature Algorithm: sha256WithRSAEncryption
00:8e:75:ff:61:30:2b:24:ec:7d:a8:91:d8:78:99:c9:00:a8:
84:90:e8:4e:95:35:58:9f:1a:66:88:e9:5e:9d:bf:14:ed:50:
76:c7:c5:24:35:72:ce:86:06:bb:77:f7:24:4a:f9:ed:04:e3:
9f:a0:98:1e:f7:16:5e:da:bc:6c:b3:ca:97:53:dd:44:aa:41:
80:b1:62:b0:a0:17:a1:59:2a:d8:a3:72:ef:d8:99:cf:8b:1b:
ad:3d:75:af:69:46:7d:e0:46:e3:04:2a:0c:0d:49:c1:9c:f3:
0b:92:e7:a8:36:b8:20:35:bd:d6:cb:dd:cc:fe:3b:f2:81:1a:
1d:50:7a:0b:80:7a:70:8b:86:b6:c8:63:b4:55:bf:f8:3b:cc:
ed:ca:ee:33:00:82:d4:e3:75:67:df:d1:ab:06:b5:07:10:f6:
01:8a:61:f4:7d:a1:1b:a4:c9:3f:02:1f:6c:11:2e:72:58:f9:
5b:14:ab:04:a0:d6:f5:9c:29:5d:5b:ef:fa:83:68:6e:bb:4e:
55:77:95:7a:15:13:7c:cc:64:4c:10:df:d1:8b:36:78:c3:8b:
16:68:5e:1a:e4:2f:66:bc:e2:a9:4b:a5:c9:e9:ab:29:9d:5d:
85:e2:ab:6a:91:10:1e:da:12:96:68:ce:f0:b4:06:97:71:90:
87:46:21:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org