Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZAQfYuROV_OoFqO_Z8f-D8Y87UI.roa
File: ZAQfYuROV_OoFqO_Z8f-D8Y87UI.roa (raw, json)
Hash identifier: spwTJCrMNRkEroYUegiVCHLHT224ml+iVgjw3PNRXds=
Subject key identifier: 64:04:1F:62:E4:4E:57:F3:A8:16:A3:BF:67:C7:FE:0F:C6:3C:ED:42
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0188E345BBB0C12F6BCCBD93804708AD4033
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZAQfYuROV_OoFqO_Z8f-D8Y87UI.roa
Signing time: Thu 22 Jun 2023 13:22:58 +0000
ROA not before: Thu 22 Jun 2023 13:22:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21082
IP address blocks: 194.87.63.0/24 maxlen: 24
195.58.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 19:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e3:45:bb:b0:c1:2f:6b:cc:bd:93:80:47:08:ad:40:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 22 13:22:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64041f62e44e57f3a816a3bf67c7fe0fc63ced42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:fb:a9:9e:3c:de:7a:9a:62:14:13:6e:ca:50:
72:78:07:26:ca:b9:9a:4d:ae:3c:a3:ac:26:cd:20:
9b:ce:a5:14:98:74:e4:6b:30:fa:fc:cc:e0:83:1f:
ca:a7:e7:23:53:eb:70:32:87:a5:ad:df:26:a0:6f:
45:62:13:eb:43:10:c8:51:f2:ea:94:64:f7:ad:71:
c5:a0:cd:a4:25:18:f6:23:0d:b1:86:53:6d:8b:da:
da:45:27:4f:07:bd:f9:6f:d1:83:f9:5a:94:9f:52:
fc:f5:80:04:e0:59:fc:93:50:f6:75:f7:81:c7:7e:
33:99:24:70:c5:ca:e7:02:b4:eb:df:37:42:40:14:
f0:aa:1a:e6:b2:e2:2b:66:a5:89:18:75:6d:8a:6e:
56:c4:30:42:59:ac:80:b0:61:4e:74:07:25:7b:84:
6a:d1:9f:28:d5:15:d9:30:b6:45:49:71:99:27:1e:
f3:41:03:c7:1d:fe:e8:ca:36:b3:67:2b:29:22:10:
33:b2:b2:4f:d1:b3:16:f8:a7:48:e2:a4:c9:4c:73:
ae:fd:69:4e:4c:b9:56:e4:e9:1c:d8:ad:a2:fd:26:
94:99:95:93:fd:85:75:a7:88:44:ee:6f:57:36:96:
f5:20:a3:d3:19:4a:b3:fc:b7:ac:a2:be:2b:6e:67:
c9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:04:1F:62:E4:4E:57:F3:A8:16:A3:BF:67:C7:FE:0F:C6:3C:ED:42
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZAQfYuROV_OoFqO_Z8f-D8Y87UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.63.0/24
195.58.58.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:65:3b:10:0f:27:26:11:91:b1:d4:22:1c:10:63:f4:6d:f4:
41:7f:49:a4:4c:1b:2b:55:79:23:21:a1:b0:0a:ae:23:b5:cc:
ee:6b:b7:d6:f9:c4:8f:51:0e:5f:e9:e3:93:d2:02:13:a5:eb:
bb:e7:1a:ef:a5:36:21:7d:5c:bb:43:c5:48:9f:5c:72:5b:81:
7e:aa:e7:f6:76:c5:83:e5:50:c1:8f:31:27:34:96:49:b4:4e:
be:53:1e:b7:cd:e0:d8:3c:9e:bc:b2:f1:18:bb:d5:3c:34:7e:
23:de:dd:4a:8d:c6:7f:30:0a:2a:a6:21:d5:dc:e9:fa:70:0e:
08:01:4b:f3:76:de:92:73:cc:8b:21:d8:ba:a7:63:f1:85:18:
b6:03:87:9b:fb:80:3c:cf:b4:79:8e:0f:e1:0c:5b:fe:a0:06:
54:61:6b:de:c5:2c:96:da:eb:25:dd:93:3a:a2:b1:cf:ad:8a:
56:f2:ca:17:64:fd:60:48:41:f6:82:1e:da:f1:9e:ef:c8:3c:
b4:f0:c0:de:83:19:27:d9:8d:60:2e:8e:a9:bd:6b:32:7e:98:
30:67:49:51:32:9f:67:c3:df:c8:4a:7e:d5:02:0e:60:9f:1e:
0e:f0:49:ee:a5:96:9f:64:12:68:57:cd:62:36:bb:b7:10:01:
b5:0f:b0:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:19 2024 by rpki-client on console-fra.rpki-client.org