Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZGOG2aryksAALQfOYj9KLoEhbgA.roa
File: ZGOG2aryksAALQfOYj9KLoEhbgA.roa (raw, json)
Hash identifier: 5poiLg+zcpd1DIejEDUwFfcpiqUO/6u1cpXBC76Ddcc=
Subject key identifier: 64:63:86:D9:AA:F2:92:C0:00:2D:07:CE:62:3F:4A:2E:81:21:6E:00
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190CF73514C46BD61192DB03A1F1E619210
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZGOG2aryksAALQfOYj9KLoEhbgA.roa
Signing time: Sat 20 Jul 2024 09:22:39 +0000
ROA not before: Sat 20 Jul 2024 09:22:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215439
IP address blocks: 193.124.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 04:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cf:73:51:4c:46:bd:61:19:2d:b0:3a:1f:1e:61:92:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 20 09:22:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=646386d9aaf292c0002d07ce623f4a2e81216e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f2:58:cd:6d:61:6a:d1:58:d4:79:04:a6:2b:
61:3f:bb:7d:38:e1:09:cb:7f:c1:d9:ce:46:41:f6:
5d:92:06:2e:cc:6b:68:6c:c6:95:05:3a:d5:a4:f1:
ae:89:7d:59:e2:8a:b1:b1:75:ac:e3:11:cf:db:90:
bc:48:fe:e7:c2:c0:25:f7:8f:80:9e:16:9b:cd:33:
6f:a5:d9:03:f9:a2:63:8c:82:7d:8a:96:36:f3:ba:
98:64:4c:36:59:fa:6e:d3:cd:a3:db:cc:b7:87:dd:
d0:84:cb:e2:f0:a5:ff:8f:d1:78:c0:6f:cd:a6:f6:
c4:5b:a0:6c:80:db:b3:36:5d:93:4b:d7:3f:7c:41:
f5:da:09:c4:f1:4f:9c:39:6b:2e:17:67:20:df:d4:
26:e5:ab:e2:15:15:a7:29:41:f9:f4:70:5f:cc:c3:
df:8e:99:f8:d7:ba:d3:25:22:5b:6a:4b:ec:50:d5:
63:f9:58:78:8f:5d:23:58:b5:21:ae:f3:e7:18:3f:
ee:9d:5d:a1:5f:c7:d8:98:33:4d:a2:af:15:58:5c:
4d:47:cf:8f:86:b9:5e:1c:0a:64:2a:dc:04:5f:28:
7c:dc:4d:dd:22:46:2e:2e:6a:a2:09:fd:90:4d:a4:
0b:45:ce:8b:a0:5d:f2:e5:f2:45:15:c8:bd:7b:50:
54:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:63:86:D9:AA:F2:92:C0:00:2D:07:CE:62:3F:4A:2E:81:21:6E:00
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZGOG2aryksAALQfOYj9KLoEhbgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.44.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:63:39:d1:43:09:9f:31:30:21:9c:19:06:df:d4:f3:9f:2d:
89:55:42:4a:82:1e:5c:d7:66:c9:a1:b4:6f:ab:82:c2:bd:ee:
32:54:4a:45:97:44:18:e6:3c:ab:06:42:b7:08:98:1c:b9:45:
9b:fa:a2:38:45:7d:91:60:06:5e:c1:71:19:70:0b:2e:70:c6:
78:ef:d0:02:0b:b8:d2:b1:45:0f:82:7f:3b:ac:bb:00:c9:60:
f0:42:66:1c:aa:44:3f:f5:7b:6a:4d:61:86:bd:23:e0:6e:11:
8c:78:e3:d8:75:52:2c:57:5e:76:d7:a6:d5:9a:78:94:08:65:
05:2a:7b:5c:ae:18:fa:1e:7a:10:22:c6:52:3a:9c:23:64:9a:
7f:ea:97:bd:da:c4:70:cd:e1:2d:17:05:96:d5:10:1c:a8:23:
26:ed:a2:b4:b2:e3:c5:98:ef:ae:b4:aa:33:04:07:fc:21:0b:
e7:a9:1b:3b:11:51:7d:93:65:97:81:fe:c9:13:ee:a0:e1:4e:
57:92:28:e1:c3:44:c3:50:1c:8d:50:f7:df:e9:82:da:80:9e:
06:1a:1c:9c:c2:35:8e:ef:c5:f4:e4:1e:7f:d1:87:a3:4a:96:
2f:c0:ec:6e:02:16:6c:73:51:35:89:fe:5c:51:8b:54:de:5a:
d0:24:65:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 05:50:33 2024 by rpki-client on console-fra.rpki-client.org