Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/ZmgsHmOFx_hdOfl4cjSM32Vkg1s.roa
File: ZmgsHmOFx_hdOfl4cjSM32Vkg1s.roa (raw, json)
Hash identifier: s+6vucCoUI/582SFiNdkAbUrUVxwpxcmzDo4zZvYgj8=
Subject key identifier: 66:68:2C:1E:63:85:C7:F8:5D:39:F9:78:72:34:8C:DF:65:64:83:5B
Certificate issuer: /CN=3a00807698f0b097d69ab3926917d1dcc838a624
Certificate serial: 018B8E030BB97A392C7728B018AFD5757ADA
Authority key identifier: 3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/ZmgsHmOFx_hdOfl4cjSM32Vkg1s.roa
Signing time: Thu 02 Nov 2023 03:10:46 +0000
ROA not before: Thu 02 Nov 2023 03:10:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213220
IP address blocks: 193.239.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 16:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8e:03:0b:b9:7a:39:2c:77:28:b0:18:af:d5:75:7a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a00807698f0b097d69ab3926917d1dcc838a624
Validity
Not Before: Nov 2 03:10:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66682c1e6385c7f85d39f97872348cdf6564835b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3c:0c:9d:50:a1:5d:7c:76:26:1f:c1:36:6e:
31:dc:97:6d:61:46:5a:25:2d:e9:e1:40:39:b8:23:
92:5e:7e:3b:75:34:15:41:44:99:a2:9d:02:03:10:
4b:1b:e3:df:e3:0a:ba:57:f3:38:7d:0c:83:2a:bd:
29:af:58:ae:d1:69:7b:32:e5:a7:9e:b6:23:41:e9:
9b:ed:65:0a:7f:fb:88:5a:50:d7:c8:d6:19:1b:8a:
79:75:56:25:49:c6:1b:b5:5a:ef:73:f2:df:bb:42:
a0:36:69:6c:ce:76:21:96:ad:22:ea:0e:03:e0:16:
b8:c8:9b:5d:0b:33:1b:36:b9:c6:72:ab:54:db:b5:
5e:d9:a0:b7:10:a8:56:bc:4c:6e:15:8a:8b:de:d4:
fe:36:7d:f5:cc:1c:c0:d9:23:59:09:a5:47:82:dc:
f2:25:b0:de:cc:06:a4:51:54:9c:90:7a:4d:9f:23:
88:5d:8e:a2:ad:25:c7:23:ba:a2:00:1f:77:ab:d9:
3c:82:4a:03:f9:ef:4a:a2:3a:a3:1f:ca:d3:35:b3:
71:8e:86:5c:d8:2e:db:bb:cc:c1:a4:b4:ef:57:22:
94:bf:77:83:91:76:bd:ee:6b:d3:f0:d3:44:55:e4:
58:9f:f2:61:4c:8a:2e:44:d9:fc:c0:dd:99:5b:70:
b8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:68:2C:1E:63:85:C7:F8:5D:39:F9:78:72:34:8C:DF:65:64:83:5B
X509v3 Authority Key Identifier:
keyid:3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/ZmgsHmOFx_hdOfl4cjSM32Vkg1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.179.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:9a:cb:a2:06:8b:6b:03:c5:32:31:b9:5b:84:2b:ba:73:3c:
da:6d:b1:71:28:2f:46:74:80:64:95:57:92:97:43:0d:7c:98:
b3:7b:60:60:a2:0e:22:40:61:2c:b6:80:27:4e:e7:fa:03:f5:
df:4c:4e:ee:12:fe:e8:54:f3:e2:5b:9f:d5:24:7c:73:93:8b:
94:f5:95:1d:b0:06:65:e5:e9:0a:46:58:21:63:65:c2:f5:8a:
65:16:8e:b0:fa:a5:fb:23:c4:92:95:96:05:d4:29:60:90:d2:
02:7d:24:2f:b0:1c:b5:a6:e0:53:5c:cd:33:37:17:98:f5:0c:
fb:29:2b:c9:01:ce:e3:91:9d:73:b6:f3:ad:54:df:04:d7:c7:
95:63:93:d2:e8:64:51:17:bb:4e:08:6c:58:17:5e:b9:7d:af:
b0:64:65:a2:4b:88:dc:d3:9c:89:64:8b:e1:bc:0f:2d:01:04:
cf:95:30:83:9f:52:87:aa:e0:cb:b1:34:3d:76:f9:3d:cc:e5:
34:17:1a:d2:22:a9:44:aa:76:b5:a6:a9:f5:aa:d4:4c:fe:e4:
4d:36:b0:f6:0c:6d:fa:b1:16:5d:c5:57:22:2f:a8:9f:ca:49:
0e:b3:14:47:b4:8a:fe:ed:24:70:05:e8:f1:ad:5c:dd:84:a0:
e2:e6:52:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:26 2024 by rpki-client on console-fra.rpki-client.org