Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/b31586-3566-47b0-95cc-144d7473ea59/1/zEvYowMA4j4aaeBnud3bWYK5kBw.roa
File: zEvYowMA4j4aaeBnud3bWYK5kBw.roa (raw, json)
Hash identifier: WfKsqgvNgObwusDTWYfLW+RWVpNsFrE89zZ4j6/GUpU=
Subject key identifier: CC:4B:D8:A3:03:00:E2:3E:1A:69:E0:67:B9:DD:DB:59:82:B9:90:1C
Certificate issuer: /CN=19b390b62d09950d500cd6bbbd78d0390560ec42
Certificate serial: 019323094EF9181B584C4892488DC8D13B5F
Authority key identifier: 19:B3:90:B6:2D:09:95:0D:50:0C:D6:BB:BD:78:D0:39:05:60:EC:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GbOQti0JlQ1QDNa7vXjQOQVg7EI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/b31586-3566-47b0-95cc-144d7473ea59/1/zEvYowMA4j4aaeBnud3bWYK5kBw.roa
Signing time: Wed 13 Nov 2024 01:00:32 +0000
ROA not before: Wed 13 Nov 2024 01:00:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200474
IP address blocks: 185.133.240.0/23 maxlen: 24
2a05:fbe0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:23:09:4e:f9:18:1b:58:4c:48:92:48:8d:c8:d1:3b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19b390b62d09950d500cd6bbbd78d0390560ec42
Validity
Not Before: Nov 13 01:00:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc4bd8a30300e23e1a69e067b9dddb5982b9901c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:de:02:0f:f1:42:89:71:81:1a:e8:d8:dd:bb:
11:f8:4e:3d:36:90:ea:33:a3:80:18:28:65:37:ec:
49:e3:c8:43:08:68:73:62:a8:5a:4d:84:7b:7b:d0:
56:a5:39:80:fc:d0:67:80:f1:33:54:42:4f:4c:de:
5e:86:c7:48:a2:8a:2f:a2:9c:23:50:96:00:37:ce:
06:87:1a:b3:b1:07:57:3f:a2:77:eb:50:aa:c1:ae:
05:97:7a:a2:6a:e6:96:2a:1a:e7:0a:bd:67:e8:f4:
67:92:4b:fa:4b:28:ec:55:79:ec:f2:63:9f:96:8b:
c5:44:7e:9d:da:6b:d2:e2:41:bb:8b:77:80:07:70:
21:ac:5a:e5:90:c3:97:8e:f1:d3:77:cf:4c:52:3b:
7b:65:4b:84:9c:a4:3f:6b:5b:37:c8:74:18:c5:b1:
f6:d8:97:6d:f5:95:42:e2:3d:3e:18:cb:f7:b0:3d:
ea:ef:ce:d0:a4:f2:53:69:ff:68:f2:d3:a9:e1:39:
aa:b1:01:d5:6e:ab:dc:60:62:e7:8a:9e:a5:c8:e6:
d2:7b:b9:dd:6b:60:9e:8a:bb:7e:52:ac:5a:df:02:
d7:45:e8:18:cd:09:e9:03:62:17:c2:4e:e2:88:6a:
81:0f:ea:e2:ce:8f:07:99:6a:a8:e7:dd:c9:29:88:
95:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:4B:D8:A3:03:00:E2:3E:1A:69:E0:67:B9:DD:DB:59:82:B9:90:1C
X509v3 Authority Key Identifier:
keyid:19:B3:90:B6:2D:09:95:0D:50:0C:D6:BB:BD:78:D0:39:05:60:EC:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GbOQti0JlQ1QDNa7vXjQOQVg7EI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b31586-3566-47b0-95cc-144d7473ea59/1/zEvYowMA4j4aaeBnud3bWYK5kBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b31586-3566-47b0-95cc-144d7473ea59/1/GbOQti0JlQ1QDNa7vXjQOQVg7EI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.240.0/23
IPv6:
2a05:fbe0::/32
Signature Algorithm: sha256WithRSAEncryption
0c:14:57:e7:9c:25:d7:c6:ed:55:e9:e7:9f:ad:c5:df:4d:e4:
c8:ee:59:ac:47:ca:cd:c4:8a:1a:14:84:b6:5b:6f:ac:16:a8:
4e:42:91:67:3e:6e:cc:bd:c0:c6:9d:26:c2:d5:c1:9c:a7:31:
4d:16:12:11:f5:1d:ae:28:be:3e:31:65:b8:d7:ee:eb:47:00:
38:8d:de:f5:37:a1:07:81:e9:44:7f:a0:ee:02:73:5a:96:b0:
13:e5:63:98:64:59:e9:11:4c:19:26:6d:81:2b:db:ce:d8:29:
0a:fb:99:12:26:e5:5d:0d:a1:24:08:7e:37:2d:6a:52:5e:e1:
09:9f:f2:7f:99:3f:97:ea:7b:8d:b5:58:7c:d3:4d:38:94:bc:
3b:bb:e7:53:0a:6f:77:8f:ab:93:c0:c1:8a:52:cf:58:e4:c0:
2a:70:67:48:43:6f:0e:96:4f:5f:f9:d6:21:8f:3c:81:82:e9:
c3:28:40:be:e3:43:db:3e:86:d2:86:f6:15:23:07:a6:25:a7:
a0:68:cb:a0:52:89:40:1b:90:8b:e7:b2:58:00:50:87:cd:45:
91:f3:a0:02:88:f4:19:5e:ed:05:63:3e:8f:2e:c0:62:1b:4b:
5f:84:39:eb:82:ae:2b:0f:e2:c4:8d:57:f6:b2:26:4c:36:99:
d5:58:c1:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:59 2025 by rpki-client