Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZviBZk76k6YtK9mVXeQ85fhaQk8.roa
File: ZviBZk76k6YtK9mVXeQ85fhaQk8.roa (raw, json)
Hash identifier: 1UFHpVSzgSezgOCt05dC+HPPq95au2YNaC7JADB/zTA=
Subject key identifier: 66:F8:81:66:4E:FA:93:A6:2D:2B:D9:95:5D:E4:3C:E5:F8:5A:42:4F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CCA2A941D1EB62B40D426A2ADA4323BF8
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZviBZk76k6YtK9mVXeQ85fhaQk8.roa
Signing time: Tue 02 Jan 2024 12:33:57 +0000
ROA not before: Tue 02 Jan 2024 12:33:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216127
IP address blocks: 194.58.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 05:59:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:94:1d:1e:b6:2b:40:d4:26:a2:ad:a4:32:3b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 2 12:33:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66f881664efa93a62d2bd9955de43ce5f85a424f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a2:e6:62:66:95:3a:a4:92:93:7c:d0:a2:22:
f5:02:96:04:ac:77:6a:5e:5c:b2:8c:be:8f:c1:16:
2e:6e:fa:c8:a7:e5:a0:35:b4:1f:8b:eb:bc:51:8e:
8c:8d:d7:40:67:8b:49:c1:6e:cb:f3:88:77:0b:0d:
fd:e5:29:b0:29:45:ed:bc:96:7a:34:1d:54:dd:a3:
c8:2d:85:50:3b:bc:a0:26:c9:da:bc:8a:8a:91:84:
8c:0f:21:68:94:2f:40:57:39:ba:71:72:c8:d1:ec:
2a:a3:ec:d1:17:69:d7:20:b0:22:ad:0d:86:3c:32:
93:33:31:20:be:fe:cb:49:07:6a:96:e6:56:0d:e9:
c9:79:9f:b7:cc:22:c9:d4:36:7f:12:4b:c8:11:c4:
af:f9:f1:51:f3:6b:5f:55:2e:f8:52:b8:bf:86:c2:
92:09:02:bc:68:55:63:d5:ea:4f:dd:9a:04:24:2c:
d9:34:09:64:3f:2f:fc:c4:5b:19:4b:c5:a8:66:4c:
20:43:2e:4d:d9:fc:44:70:c1:c1:55:bc:04:6a:01:
58:1b:e8:02:6c:0c:8a:fa:06:c4:2c:66:13:06:f9:
12:7c:4c:9d:60:43:1d:af:37:cb:7e:29:55:bf:29:
3c:1a:db:5d:69:59:bc:ab:f0:6f:b1:b5:23:1f:ee:
64:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:F8:81:66:4E:FA:93:A6:2D:2B:D9:95:5D:E4:3C:E5:F8:5A:42:4F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZviBZk76k6YtK9mVXeQ85fhaQk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.33.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:4f:85:c9:53:54:24:2b:1a:f4:5f:93:db:f0:49:3a:5d:04:
cf:8b:65:f9:a6:7c:76:23:d3:c1:0b:b6:fe:27:1b:45:60:9b:
bd:89:ce:8d:7c:84:1d:b2:98:9a:a2:4c:cb:29:6b:ae:01:93:
5a:f6:5a:95:68:a0:c6:0b:01:05:25:c8:c4:e1:9a:35:f4:79:
e8:04:a1:25:28:d0:66:14:7e:7d:0e:20:3a:bf:38:1a:f9:ed:
b6:c9:6c:9e:e1:04:c9:78:94:27:c8:91:a0:bc:d4:4a:06:f9:
d3:35:c8:00:0b:cc:9c:8c:ec:cb:0b:7e:a6:df:6d:57:2e:ea:
49:e3:db:9c:dd:42:65:1f:3b:e5:37:72:2c:39:61:e1:b7:0e:
8b:e2:6b:16:43:49:bb:6c:bf:fd:e4:b4:01:eb:10:72:a1:46:
1d:76:eb:fe:e4:da:34:17:9b:ff:6b:86:43:86:52:61:dd:00:
ae:a7:1a:ba:58:15:5b:51:23:57:57:37:2f:63:0f:03:b6:a5:
6e:4c:82:f3:08:1e:b7:0e:1d:a2:82:c9:6d:37:7c:a7:4e:35:
c3:2a:b7:7b:fc:4c:f8:d6:e7:a7:6a:5c:81:c2:a1:f1:8f:cd:
b1:6a:02:9b:59:1d:d3:60:0d:4e:d9:13:7b:21:69:2e:d3:7b:
83:b8:4a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 08:47:21 2024 by rpki-client on console-ams.rpki-client.org