Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/ZNf5QQ30f-B-CaMSqo4EJpwLNxM.roa
File: ZNf5QQ30f-B-CaMSqo4EJpwLNxM.roa (raw, json)
Hash identifier: pUjNZuafySs8rmUmEw97YS/6jnSVAMHZCtsr8AeVNTk=
Subject key identifier: 64:D7:F9:41:0D:F4:7F:E0:7E:09:A3:12:AA:8E:04:26:9C:0B:37:13
Certificate issuer: /CN=0b5a5390b8d68021803e7be9fcf5e8e1393ac043
Certificate serial: 01857115285B726C82502D889451BEC842D4
Authority key identifier: 0B:5A:53:90:B8:D6:80:21:80:3E:7B:E9:FC:F5:E8:E1:39:3A:C0:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1pTkLjWgCGAPnvp_PXo4Tk6wEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/ZNf5QQ30f-B-CaMSqo4EJpwLNxM.roa
Signing time: Mon 02 Jan 2023 06:04:49 +0000
ROA not before: Mon 02 Jan 2023 06:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43066
IP address blocks: 93.184.130.0/24 maxlen: 24
93.184.131.0/24 maxlen: 24
93.184.128.0/20 maxlen: 20
93.184.128.0/24 maxlen: 24
93.184.129.0/24 maxlen: 24
93.184.132.0/23 maxlen: 23
93.184.132.0/24 maxlen: 24
93.184.137.0/24 maxlen: 24
93.184.138.0/24 maxlen: 24
93.184.135.0/24 maxlen: 24
93.184.136.0/24 maxlen: 24
93.184.134.0/24 maxlen: 24
93.184.139.0/24 maxlen: 24
93.184.133.0/24 maxlen: 24
93.184.142.0/24 maxlen: 24
93.184.143.0/24 maxlen: 24
93.184.141.0/24 maxlen: 24
93.184.140.0/24 maxlen: 24
2a05:d880::/48 maxlen: 48
2a05:d880::/30 maxlen: 30
2a05:d880:4::/48 maxlen: 48
2a05:d880:2::/48 maxlen: 48
2a05:d880:3::/48 maxlen: 48
2a05:d880:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:28:5b:72:6c:82:50:2d:88:94:51:be:c8:42:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5a5390b8d68021803e7be9fcf5e8e1393ac043
Validity
Not Before: Jan 2 06:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64d7f9410df47fe07e09a312aa8e04269c0b3713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:47:11:e5:fb:e0:fd:51:fc:fa:38:7d:f3:14:
3b:fe:6a:d5:d1:c3:19:56:24:6c:f9:e8:a7:8a:2c:
64:27:07:7a:25:cc:5d:dd:42:77:38:7a:f2:74:56:
4e:08:67:e8:b4:93:d7:f5:8d:99:18:91:18:f5:fe:
cf:0d:bb:dc:d6:d4:89:22:7b:77:a1:43:96:cc:fd:
cc:44:6d:f5:d6:f0:b3:f5:c8:35:9d:7b:f9:8d:20:
ca:39:ad:c5:76:ca:be:91:3a:e2:53:6f:ef:c6:f4:
74:8c:a5:79:7f:04:bb:01:77:a0:90:67:e5:b7:46:
2f:66:b3:7b:b2:a2:4c:ea:5f:2d:42:b2:f4:50:48:
be:13:82:1f:0c:a2:8d:16:f8:dd:64:5e:55:b5:e4:
31:66:19:27:88:73:34:91:4c:ce:d8:d0:be:dc:5e:
4f:e1:3f:ad:f2:ab:bc:b7:48:ab:e3:b9:2b:a5:12:
c0:36:df:e2:d0:d2:d3:d4:f1:ac:5f:b0:2a:5f:0c:
b6:84:59:82:1c:61:43:c3:c6:62:b8:1f:88:1e:80:
9b:b1:fe:28:43:a6:50:3f:3a:ff:df:13:eb:51:8d:
fa:1d:83:c7:58:6b:bb:a3:ff:db:c0:8c:82:5a:50:
6a:2a:01:d6:a2:c8:94:33:14:e8:18:19:f4:58:f9:
79:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D7:F9:41:0D:F4:7F:E0:7E:09:A3:12:AA:8E:04:26:9C:0B:37:13
X509v3 Authority Key Identifier:
keyid:0B:5A:53:90:B8:D6:80:21:80:3E:7B:E9:FC:F5:E8:E1:39:3A:C0:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1pTkLjWgCGAPnvp_PXo4Tk6wEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/ZNf5QQ30f-B-CaMSqo4EJpwLNxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/C1pTkLjWgCGAPnvp_PXo4Tk6wEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.184.128.0/20
IPv6:
2a05:d880::/30
Signature Algorithm: sha256WithRSAEncryption
92:70:97:ff:bd:eb:2e:8f:45:15:5c:8e:40:ab:87:b1:82:4c:
fa:a3:43:10:ce:c3:16:0e:33:e3:9b:1e:0e:52:97:57:42:d4:
ff:4e:ce:86:4f:92:5d:20:68:54:1b:97:af:a5:2a:06:bb:1e:
31:61:69:99:13:0a:cf:5e:70:de:85:8d:2c:56:d3:b2:75:b7:
de:1d:b7:73:81:08:06:93:65:fe:bc:c0:02:50:7d:f2:77:62:
a3:ab:3f:12:86:0d:ee:5d:ae:6c:57:9d:61:2a:38:06:7c:b0:
0d:4c:83:71:23:6b:df:04:7a:04:30:d3:ec:e9:d4:4b:f5:72:
8d:fb:79:6b:bc:10:1a:fd:bb:c4:59:b2:c6:16:2c:5e:0e:f5:
87:c8:60:5a:d1:45:1d:bf:f8:f2:ea:ad:a5:d1:0f:71:69:ff:
6a:36:0b:2e:e3:b9:70:ef:97:90:70:09:20:26:c9:ce:46:41:
f3:da:94:ca:b2:bf:70:76:21:71:ea:f7:e0:a0:18:e4:16:9b:
68:10:42:61:43:f4:28:b2:5e:ad:2f:d7:54:84:b7:c5:fc:cf:
c0:01:a7:65:04:5f:77:c5:6d:e9:60:5b:d9:53:d1:98:e0:df:
84:6f:8e:2a:ce:da:6a:f1:45:68:af:1d:e6:06:48:2e:3f:ce:
1b:49:7e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:09 2024 by rpki-client on console-ams.rpki-client.org