Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/6eb85e-bbb0-4da7-a4e0-d2ea6004d553/1/zWIi7hNvPhnQikIJQj1igmI6RBU.roa
File: zWIi7hNvPhnQikIJQj1igmI6RBU.roa (raw, json)
Hash identifier: on5FTb4AsSefU4AHuKMZcDCKEzkRjwlWu5yZH1PhpWA=
Subject key identifier: CD:62:22:EE:13:6F:3E:19:D0:8A:42:09:42:3D:62:82:62:3A:44:15
Certificate issuer: /CN=0ca71ff956ab8f8f7e7f59d409ac7af7a2b0a864
Certificate serial: 01856D9D1489E9D9B43B751EAAD12FD4A8A5
Authority key identifier: 0C:A7:1F:F9:56:AB:8F:8F:7E:7F:59:D4:09:AC:7A:F7:A2:B0:A8:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKcf-Varj49-f1nUCax696KwqGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/6eb85e-bbb0-4da7-a4e0-d2ea6004d553/1/zWIi7hNvPhnQikIJQj1igmI6RBU.roa
Signing time: Sun 01 Jan 2023 13:54:49 +0000
ROA not before: Sun 01 Jan 2023 13:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208207
IP address blocks: 193.151.229.0/24 maxlen: 24
2001:67c:27f4::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:14:89:e9:d9:b4:3b:75:1e:aa:d1:2f:d4:a8:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ca71ff956ab8f8f7e7f59d409ac7af7a2b0a864
Validity
Not Before: Jan 1 13:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd6222ee136f3e19d08a4209423d6282623a4415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e6:51:97:88:1f:87:1b:db:61:a6:23:6a:12:
72:94:11:f1:b9:d2:bb:a9:39:04:41:c9:14:3a:f8:
fb:67:d7:f1:62:f6:8c:d5:a8:7f:87:9d:a3:40:cb:
5f:78:26:f3:e8:4b:e1:36:95:6a:ce:37:67:a7:e4:
dc:06:76:f9:5a:b9:a5:c5:1d:53:13:03:b3:68:81:
de:a8:be:ed:f1:4f:71:b6:fd:b5:59:a2:bc:78:3a:
37:aa:7c:94:a2:62:60:d8:c7:28:8b:c1:23:16:0e:
9f:3b:90:cc:6a:e2:72:fe:b5:b9:4f:7d:b9:e4:dd:
67:d4:f0:c3:b6:6b:61:77:a1:88:13:ca:c8:3c:c0:
74:19:09:38:7a:4a:16:05:16:6d:0b:f1:68:f1:1e:
c5:03:7a:6e:26:ab:b2:bf:0c:a9:34:30:2c:53:c7:
9d:4c:00:e2:c7:a8:e4:16:7a:2d:c9:f1:2f:8e:29:
2b:54:bc:29:36:91:25:c9:78:35:fd:61:7c:d7:79:
d8:9d:93:93:d6:45:79:de:e2:fa:40:ba:8a:a2:f3:
d2:3b:83:5d:42:d6:40:75:a5:f7:ab:df:23:e6:34:
5e:d2:44:e1:56:bd:a6:f9:76:f4:c2:3c:65:8a:67:
dc:55:16:53:f2:a5:69:41:af:26:b8:e2:b8:59:f4:
7f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:62:22:EE:13:6F:3E:19:D0:8A:42:09:42:3D:62:82:62:3A:44:15
X509v3 Authority Key Identifier:
keyid:0C:A7:1F:F9:56:AB:8F:8F:7E:7F:59:D4:09:AC:7A:F7:A2:B0:A8:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKcf-Varj49-f1nUCax696KwqGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6eb85e-bbb0-4da7-a4e0-d2ea6004d553/1/zWIi7hNvPhnQikIJQj1igmI6RBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6eb85e-bbb0-4da7-a4e0-d2ea6004d553/1/DKcf-Varj49-f1nUCax696KwqGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.229.0/24
IPv6:
2001:67c:27f4::/48
Signature Algorithm: sha256WithRSAEncryption
01:17:23:41:35:5b:2b:03:00:87:c3:14:51:f2:71:63:fa:66:
e9:d7:fb:f0:fd:c1:34:c4:72:79:aa:38:76:62:de:0d:4d:5a:
5d:75:c6:15:b9:68:a7:ec:dc:2e:35:57:fa:29:80:00:a2:bd:
25:2e:3f:30:c8:07:1b:28:1a:be:95:0b:17:e6:6b:4e:08:5e:
fa:5b:80:7a:74:81:f7:44:c1:0c:3f:62:40:07:82:86:80:56:
dd:bd:8e:9e:47:e8:c4:b0:8c:51:e2:49:b2:42:38:9c:1a:a7:
a7:14:9e:72:ac:80:a0:c6:fb:8f:18:e2:99:16:6d:e0:46:de:
85:cf:22:3d:9d:ea:dd:fa:5f:cf:40:51:2b:0b:7e:3b:5e:70:
3b:8a:89:4f:9a:0f:9f:f1:ab:e0:b0:d4:98:08:f6:35:e2:f6:
ef:18:ec:0b:11:e2:b3:a0:41:e5:c2:7d:66:d9:06:bc:71:be:
ed:e1:f7:6a:9c:14:6c:94:80:4b:41:3b:b2:df:3d:f3:fa:06:
eb:4c:80:69:7b:21:fc:9f:a1:e6:06:94:36:65:9d:f5:d8:41:
9d:71:5f:f4:69:e0:93:55:9f:9d:14:e9:a3:55:6b:82:2a:71:
f0:cd:78:1f:af:6a:58:4f:af:ef:92:7f:5b:09:cf:3f:10:45:
7a:ad:e9:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:40 2024 by rpki-client on console-ams.rpki-client.org