Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ZgSNR-HalGg31xpujs3RQ1ThDUg.roa
File: ZgSNR-HalGg31xpujs3RQ1ThDUg.roa (raw, json)
Hash identifier: mP/UF6KYRmJuMF5K5m+phpy9rPc42C074Li1345uVwM=
Subject key identifier: 66:04:8D:47:E1:DA:94:68:37:D7:1A:6E:8E:CD:D1:43:54:E1:0D:48
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01912C82A532EFA8EFF92B33A9D7EBF50C75
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ZgSNR-HalGg31xpujs3RQ1ThDUg.roa
Signing time: Wed 07 Aug 2024 11:04:05 +0000
ROA not before: Wed 07 Aug 2024 11:04:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215127
IP address blocks: 87.120.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 13:45:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2c:82:a5:32:ef:a8:ef:f9:2b:33:a9:d7:eb:f5:0c:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 7 11:04:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66048d47e1da946837d71a6e8ecdd14354e10d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9c:1a:34:8e:a2:6c:ef:0d:6c:3b:9b:5a:55:
49:7d:3a:4a:ee:49:73:df:60:0d:1b:59:f2:7f:94:
1e:6e:1f:fe:0a:cd:2d:ff:71:b0:c1:a9:46:d2:d3:
fc:c8:65:6f:d4:25:c8:5c:a7:c6:a5:5e:f2:ee:ac:
d3:04:48:8e:e2:48:8e:7f:5a:05:8b:c6:a5:99:84:
5b:2e:90:da:44:72:3b:1f:7a:cc:91:b3:01:35:ff:
dd:ff:a4:18:b3:44:01:30:f2:78:5d:f4:9e:8b:a4:
f1:2c:d3:27:10:03:6e:c0:ab:00:33:fa:0f:00:69:
e7:53:a6:4f:cd:03:49:76:44:cd:95:4b:41:1d:45:
46:38:36:56:8d:d6:8c:47:28:58:79:37:d6:6e:4b:
5f:d0:31:14:00:7e:f8:97:08:a6:0c:6c:ff:10:36:
16:1d:0c:ab:33:34:25:a4:88:61:ca:c7:f5:00:fa:
d0:f6:f5:87:40:0f:3f:f7:39:cb:e0:bb:1a:ed:0e:
f8:c3:ce:cb:0b:1b:19:df:33:51:de:43:d7:00:3d:
22:c8:03:d5:51:5a:60:2d:5c:e4:0c:14:7e:55:f9:
05:f4:66:32:36:0c:97:ac:70:3c:42:39:e0:ba:e2:
98:bd:ad:46:db:f1:6c:8d:77:9c:ce:6b:21:b8:ca:
e3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:04:8D:47:E1:DA:94:68:37:D7:1A:6E:8E:CD:D1:43:54:E1:0D:48
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ZgSNR-HalGg31xpujs3RQ1ThDUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.166.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:26:64:fb:ca:7a:91:24:2c:e8:98:29:bd:04:e5:08:25:2b:
ad:28:11:8c:1c:da:7b:43:cd:46:e6:46:8b:a0:ab:fd:0e:99:
1c:08:0f:3d:46:43:4a:ef:3e:ff:8e:0f:33:cd:36:70:fc:d8:
99:d6:50:95:b8:a4:9f:17:77:b9:fe:5f:ca:9b:1f:aa:e0:58:
a0:88:a6:c8:70:20:74:b7:ba:3a:ef:cd:39:56:53:86:96:97:
b1:a2:df:d5:c1:3c:8f:13:6f:90:ea:90:31:e8:40:83:80:d4:
e9:cc:12:e2:c3:41:94:08:c7:9a:59:2a:de:5b:81:88:62:68:
34:18:ed:a2:2d:05:fe:31:d2:08:7c:7a:db:7c:40:47:e1:70:
09:3f:c5:87:ab:eb:cb:d3:31:35:6e:a6:30:4c:a6:68:71:b7:
4b:e6:65:56:fa:d4:c0:1b:a8:d3:22:f8:e9:20:02:1e:63:7d:
bf:92:d4:4a:5d:18:bf:16:39:6e:3e:a4:cf:94:4f:d5:ba:6f:
5f:24:ef:a1:b5:04:6d:e9:ac:a6:da:7e:1e:ff:d5:e3:ff:e9:
30:df:5a:30:72:0b:05:36:17:65:55:95:97:7c:80:cd:44:03:
ad:37:cc:f5:fb:76:a1:43:7d:dc:7d:c5:9c:aa:1a:70:71:d7:
b9:56:b7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 18:00:52 2024 by rpki-client on console-ams.rpki-client.org