Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/zm7OMH0a_lOZ0UBtdVqV2d1kA2M.roa
File: zm7OMH0a_lOZ0UBtdVqV2d1kA2M.roa (raw, json)
Hash identifier: IbzmxB9iiyE11qpBf+I1/Xf7vJ9/yGmMmLKmgC2dqBM=
Subject key identifier: CE:6E:CE:30:7D:1A:FE:53:99:D1:40:6D:75:5A:95:D9:DD:64:03:63
Certificate issuer: /CN=21a00080cd2cb1bb073903b32b25ad660a366486
Certificate serial: 0191795F6CE751987101A8D7183AC62BAE30
Authority key identifier: 21:A0:00:80:CD:2C:B1:BB:07:39:03:B3:2B:25:AD:66:0A:36:64:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/zm7OMH0a_lOZ0UBtdVqV2d1kA2M.roa
Signing time: Thu 22 Aug 2024 09:16:22 +0000
ROA not before: Thu 22 Aug 2024 09:16:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51167
IP address blocks: 195.191.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 07:20:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:79:5f:6c:e7:51:98:71:01:a8:d7:18:3a:c6:2b:ae:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21a00080cd2cb1bb073903b32b25ad660a366486
Validity
Not Before: Aug 22 09:16:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce6ece307d1afe5399d1406d755a95d9dd640363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8a:36:b3:bc:33:60:c8:60:3a:4d:9f:fe:48:
de:75:b4:23:16:a7:63:9f:2f:20:2d:66:5b:a3:65:
e2:fe:b7:ec:c1:f0:77:ed:a6:ec:54:6b:2d:bb:21:
d0:df:8b:56:86:59:af:a1:a9:98:bb:89:1d:7d:cc:
31:db:5a:a8:ca:03:ce:9d:da:fe:66:9a:6e:c9:56:
f9:c8:ae:12:af:34:f6:44:35:9b:26:8b:75:e1:ab:
ff:3b:60:11:f4:7c:11:7a:24:7c:36:50:13:da:d0:
7d:91:ac:80:11:21:8a:05:1e:16:16:47:13:a2:cc:
3f:c6:2e:cb:e8:88:01:ee:56:fd:3c:37:79:f0:1a:
20:0c:27:0e:68:33:9b:40:11:80:50:26:69:b4:1f:
6e:da:17:66:d2:91:d4:02:55:e9:8d:13:ac:ba:8d:
c2:a6:57:c3:59:73:ad:8a:e6:8f:ed:df:01:e5:d0:
ed:3b:cf:e3:82:49:fa:f6:d5:f5:6b:88:0a:58:98:
53:46:96:2e:53:48:97:61:3b:de:b2:ff:37:ba:83:
ec:92:d4:0c:99:88:13:dc:f7:bf:ea:ed:45:57:89:
2b:1b:83:ce:2b:09:a2:fa:fb:b7:8e:f5:0e:b0:be:
f5:9b:a4:87:4f:d2:ce:13:78:16:fd:09:64:97:e8:
5f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:6E:CE:30:7D:1A:FE:53:99:D1:40:6D:75:5A:95:D9:DD:64:03:63
X509v3 Authority Key Identifier:
keyid:21:A0:00:80:CD:2C:B1:BB:07:39:03:B3:2B:25:AD:66:0A:36:64:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/zm7OMH0a_lOZ0UBtdVqV2d1kA2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.65.0/24
Signature Algorithm: sha256WithRSAEncryption
41:a8:ce:9d:af:56:f5:ac:d6:19:96:1e:32:f7:e7:a0:1b:bb:
18:07:cc:37:73:10:cb:d6:7c:63:ce:1a:f9:e7:c4:ac:2f:e1:
dc:3c:8b:4a:1b:22:9e:9b:84:4b:f5:3f:d6:77:4f:8a:11:ad:
a9:7a:08:0e:78:a8:7c:cd:cf:6a:28:df:4b:27:00:5f:74:66:
ce:66:1d:0f:3a:6f:49:01:44:d9:9d:1a:29:85:ea:20:1d:7e:
83:72:6c:96:c8:62:b5:f2:e4:d3:a9:f7:ba:b1:92:fd:20:19:
66:be:b7:01:cb:bf:79:49:c9:95:e8:ae:11:85:ae:d1:40:d8:
2a:9c:8d:43:1a:41:40:e9:76:ee:b9:42:d3:ae:a6:10:6c:4b:
89:48:27:b9:81:05:c5:75:04:9e:0a:11:c6:8e:70:13:b5:ba:
b4:cc:48:f0:40:27:e5:ea:96:8c:06:03:09:55:5a:31:a4:40:
d6:55:da:d3:44:73:70:e7:29:b6:fb:d3:ff:0c:9c:ca:83:90:
a4:2e:5f:32:c5:58:d2:95:e0:d5:60:b6:07:1d:1d:c7:2b:f8:
15:56:5c:c5:a1:bf:7d:f3:f0:30:dc:e6:3c:ee:78:59:8a:01:
ae:f9:dc:0d:bc:94:4f:df:73:e6:20:eb:55:f0:03:62:39:50:
7f:ad:93:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 09:29:21 2024 by rpki-client on console-ams.rpki-client.org