Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zYg2GymU1PYNQxjNqwLVNTQhTd4.roa
File: zYg2GymU1PYNQxjNqwLVNTQhTd4.roa (raw, json)
Hash identifier: Ln6i0rwi95tNK4wnarMs+CbVoM4Cslcp2OGQVrO9ybw=
Subject key identifier: CD:88:36:1B:29:94:D4:F6:0D:43:18:CD:AB:02:D5:35:34:21:4D:DE
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0190BF41BCC2A87A1B831A2F08EDA6C460D5
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zYg2GymU1PYNQxjNqwLVNTQhTd4.roa
Signing time: Wed 17 Jul 2024 05:54:34 +0000
ROA not before: Wed 17 Jul 2024 05:54:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 93.123.74.0/24 maxlen: 24
185.222.161.0/24 maxlen: 24
193.58.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Aug 2024 10:13:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:41:bc:c2:a8:7a:1b:83:1a:2f:08:ed:a6:c4:60:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 17 05:54:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd88361b2994d4f60d4318cdab02d53534214dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5d:35:81:03:62:8e:3b:5d:fa:c6:36:39:00:
81:01:30:21:7e:8f:40:31:ca:da:8b:7f:36:46:15:
8f:37:69:66:cc:b0:d9:06:e5:c9:23:eb:75:4a:22:
0a:02:e0:58:17:29:1e:33:3e:b7:32:dc:38:6a:e5:
db:4d:cd:b2:69:6c:7a:ea:af:09:96:65:a9:4e:76:
cf:a1:0d:48:ee:bb:d9:59:63:4a:c7:c5:b3:7b:3b:
88:d1:f2:a4:b5:d0:14:f7:1b:ae:e9:85:0a:b9:00:
98:47:10:0b:5c:25:a7:bc:16:2b:b1:46:eb:f0:ae:
6c:15:df:12:f2:98:00:86:0c:d8:85:fa:b3:07:26:
b9:da:50:2b:c0:19:1d:e5:b8:8d:97:0b:95:e3:c7:
96:32:7c:82:e2:58:7f:a7:12:b4:36:0f:55:c7:0a:
86:85:9f:1f:33:8f:ed:4f:96:d9:23:3f:f1:1a:45:
51:0a:8c:b0:48:36:18:78:a0:96:bc:23:cc:77:b0:
94:27:40:d0:e9:63:35:f8:77:1f:14:0a:98:26:aa:
51:77:de:69:ba:13:8d:74:07:01:85:4b:18:c9:15:
e1:2d:b3:ae:b5:e8:ed:19:92:06:a1:ae:d7:fe:ad:
e6:d4:8b:da:23:4b:83:68:12:8f:eb:b0:62:3f:b1:
bc:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:88:36:1B:29:94:D4:F6:0D:43:18:CD:AB:02:D5:35:34:21:4D:DE
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zYg2GymU1PYNQxjNqwLVNTQhTd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.123.74.0/24
185.222.161.0/24
193.58.122.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:a9:ca:78:63:05:ef:60:e2:16:c6:05:ca:05:f5:64:a8:4c:
8b:ba:af:b3:26:9e:75:8d:c0:94:1c:6e:33:d4:7b:bb:c3:17:
16:14:d2:95:f0:82:04:ed:a8:5f:91:3c:89:91:99:2f:58:fd:
32:c2:0e:da:e9:99:0f:03:eb:2a:d8:2f:7e:b0:77:58:7e:a6:
9e:a1:94:92:53:e7:2d:33:da:20:60:c9:87:e6:2d:c9:84:8b:
1b:27:92:15:ad:ca:95:7d:27:78:6f:58:8a:84:e3:43:64:8b:
8a:58:c8:4e:8e:aa:4e:26:dd:02:c9:e6:0d:3b:5c:e6:5f:8b:
d9:02:db:6e:ec:c1:59:bd:e0:26:14:fc:0a:98:c8:ec:1a:f0:
75:57:89:7e:07:f4:ab:c2:88:7a:ac:a6:12:d0:52:e9:07:f8:
0f:a8:96:89:d6:6d:6d:85:95:85:dc:df:94:f4:b3:5c:77:45:
87:ab:63:54:61:55:99:62:fc:4a:be:1f:35:d2:27:3e:b8:e1:
66:80:80:26:01:55:75:f6:4c:14:11:d1:9a:d4:9a:8b:cf:d8:
8a:da:08:e3:eb:78:85:66:06:c9:db:07:a4:fd:78:44:c0:18:
67:f7:5b:18:41:09:67:96:e8:b1:09:96:70:c3:9a:0f:79:d7:
a6:bc:59:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 15:32:58 2024 by rpki-client on console-ams.rpki-client.org