Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/zEnXw9_Zu-RuEig1Ar9MKGDtVnQ.roa
File: zEnXw9_Zu-RuEig1Ar9MKGDtVnQ.roa (raw, json)
Hash identifier: r9KwsdEUQOBIrRKWx0DhRA1kQZiKCmY6SYQJRcb6ze0=
Subject key identifier: CC:49:D7:C3:DF:D9:BB:E4:6E:12:28:35:02:BF:4C:28:60:ED:56:74
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE65F4915209217A963A4CAEDB61DA1
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/zEnXw9_Zu-RuEig1Ar9MKGDtVnQ.roa
Signing time: Sun 01 Jan 2023 10:35:14 +0000
ROA not before: Sun 01 Jan 2023 10:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60147
IP address blocks: 213.130.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:5f:49:15:20:92:17:a9:63:a4:ca:ed:b6:1d:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc49d7c3dfd9bbe46e12283502bf4c2860ed5674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8e:99:36:9f:bf:dc:3e:a0:c2:1e:54:3f:fd:
c1:62:64:7e:51:75:4b:23:db:75:45:1f:e1:9a:5f:
6d:52:28:c3:d1:2e:93:99:24:c3:bc:78:d0:2a:4d:
9d:e8:78:31:e3:a7:1d:c6:b3:e8:4c:68:e0:3b:47:
36:bd:dc:4d:6b:e0:3f:0b:a6:e6:8d:0c:1a:4d:3d:
de:63:fd:fb:5b:1e:49:c0:4e:35:d0:6f:17:dc:b3:
a0:03:72:9c:a2:62:72:89:d2:cb:e9:24:0a:4f:13:
29:30:f8:3a:d8:59:02:c3:ed:d4:83:0f:d5:98:f7:
bf:01:fc:59:ba:81:7e:c4:0e:f4:bf:d1:6a:eb:cf:
de:7e:cc:f5:96:09:07:d2:51:be:3c:08:a9:d8:ce:
44:75:52:90:72:fc:16:46:b3:d9:f9:20:a6:f1:fb:
6e:a5:81:89:44:12:0b:f2:7d:db:68:46:4e:1c:05:
49:ae:2c:b2:c0:09:aa:dd:ce:33:73:bd:1e:11:ec:
42:bf:86:bf:ff:ff:87:1c:5a:31:ba:57:9c:ea:60:
e4:5a:19:23:de:be:1f:d0:20:08:57:4e:fe:3e:9f:
bb:5e:23:18:3f:18:42:02:fd:94:c3:fb:14:c2:b7:
3d:1a:06:4f:78:2f:54:e4:5a:3a:e4:11:f5:e9:83:
fd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:49:D7:C3:DF:D9:BB:E4:6E:12:28:35:02:BF:4C:28:60:ED:56:74
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/zEnXw9_Zu-RuEig1Ar9MKGDtVnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.130.95.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:2b:29:03:bc:71:f2:21:c6:1c:ec:52:0c:e4:08:d7:7f:f0:
ad:70:51:bb:84:18:04:e2:98:06:b5:6b:70:46:29:36:d9:1b:
cd:5b:6c:e6:44:da:f8:f7:52:fb:de:6a:c8:12:96:46:2c:74:
c9:bd:1a:fd:67:b6:2c:f3:45:eb:f9:c8:66:37:0b:72:fb:f0:
79:a4:ad:63:6e:eb:e1:b9:c0:ea:35:0b:e3:2b:8f:7d:a5:a5:
7c:6c:0d:d0:21:bc:1d:a2:c8:81:c7:4e:b1:cc:04:2c:b7:dc:
b2:97:1c:ac:93:80:65:c4:2a:d2:50:84:21:9f:aa:7c:63:2a:
54:77:8b:73:ce:14:ca:b1:c6:bd:38:4b:13:5a:42:e3:26:53:
bc:03:fd:5f:13:ae:af:53:fb:8c:76:90:b3:eb:7b:82:13:44:
77:fb:bf:86:50:0d:b8:c0:ec:b2:e5:e3:e9:31:09:bc:e2:d4:
d7:9c:bc:db:c1:86:f7:cc:57:d1:b0:50:29:f0:b8:ad:47:ac:
78:97:ba:e6:ba:ad:97:bc:b6:df:eb:8c:09:76:ff:39:f6:db:
0e:c4:c0:16:24:bd:27:da:bd:f9:6d:5e:69:ec:a8:ee:e5:b0:
36:a7:9f:e0:a4:fa:f7:9c:df:d7:cd:be:43:4b:63:78:54:3e:
8e:67:70:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org