Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/zvDdMF5tUIJE8tR_v62uMA-hzeY.roa
File: zvDdMF5tUIJE8tR_v62uMA-hzeY.roa (raw, json)
Hash identifier: DecvaXwjeQNbjOM8g3hxyTyVscbzTCZUehqfq7abSGw=
Subject key identifier: CE:F0:DD:30:5E:6D:50:82:44:F2:D4:7F:BF:AD:AE:30:0F:A1:CD:E6
Certificate issuer: /CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Certificate serial: 0190D9036FAAF9D4D52EBE743E777C32E711
Authority key identifier: 2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/zvDdMF5tUIJE8tR_v62uMA-hzeY.roa
Signing time: Mon 22 Jul 2024 05:56:39 +0000
ROA not before: Mon 22 Jul 2024 05:56:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 195.234.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 09:35:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d9:03:6f:aa:f9:d4:d5:2e:be:74:3e:77:7c:32:e7:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Validity
Not Before: Jul 22 05:56:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cef0dd305e6d508244f2d47fbfadae300fa1cde6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:08:38:ab:f2:f4:10:d8:43:ab:db:d9:07:75:
7b:5f:92:a0:9f:4c:cb:d9:e1:f9:50:7d:38:51:5e:
6f:42:06:55:1a:01:97:a9:2f:57:4b:ae:1a:0e:a0:
6e:90:8f:e6:ec:69:b4:88:e1:e5:5a:b8:9b:63:d1:
ec:9d:2b:e1:91:24:17:4f:87:f4:b1:6f:0b:ff:e5:
5d:2a:4c:51:9f:ec:b5:aa:b5:5f:06:2a:86:cf:68:
2c:25:2f:3a:e6:9f:2b:70:47:ea:5b:a0:cc:47:40:
90:54:72:36:a3:0e:4f:2c:37:84:ad:e2:94:34:8e:
97:f0:75:43:36:e0:d7:47:9b:cf:36:54:83:b6:6a:
82:c8:60:a5:33:12:91:98:7a:98:51:50:6e:49:ef:
3d:a3:32:cf:5e:b8:18:9a:58:fd:98:ce:3a:37:29:
98:ae:3d:26:32:08:34:41:41:2c:77:69:61:3f:75:
1c:eb:ab:68:21:cd:1e:b8:53:5c:30:fe:42:83:7f:
51:0b:4e:87:e3:4c:ee:b3:c0:6e:de:f8:45:22:6e:
20:53:42:5b:d0:13:81:9f:79:14:b4:56:59:1c:b8:
6b:6d:b9:44:45:55:33:89:86:ca:82:e5:82:ee:97:
31:8b:c0:48:c0:49:7e:c9:e2:80:0b:96:00:f3:a7:
b6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F0:DD:30:5E:6D:50:82:44:F2:D4:7F:BF:AD:AE:30:0F:A1:CD:E6
X509v3 Authority Key Identifier:
keyid:2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/zvDdMF5tUIJE8tR_v62uMA-hzeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.153.0/24
Signature Algorithm: sha256WithRSAEncryption
27:16:c6:9f:9a:b1:a3:8b:b7:ba:33:f3:32:6b:7d:09:8c:b7:
ea:d7:fb:20:b3:08:57:f1:8c:ae:ce:dc:c2:c5:41:fe:45:17:
54:4e:19:f7:6d:79:db:06:bd:97:af:f3:27:b4:20:6e:9c:69:
d0:d7:ca:44:57:1e:8e:5e:cd:27:22:d9:11:6e:de:35:bf:e7:
fb:59:0f:8f:ef:9b:d2:60:19:c9:f9:1f:42:f8:d6:56:2d:9e:
e3:11:3e:cc:a7:10:a7:55:27:9f:a9:1d:21:18:99:4b:96:a2:
e8:da:07:05:dc:5c:b3:56:c2:66:3f:f1:33:d3:1c:a1:e5:9d:
61:f7:42:e0:36:45:c8:89:5f:19:e5:02:4c:72:6d:86:77:b3:
1b:20:73:c6:fb:81:63:3c:2c:ca:50:8d:4d:bf:7c:2b:93:1c:
43:1a:49:f9:1c:a2:dd:56:5b:2d:8b:82:e9:58:7e:98:f3:ae:
72:a6:2c:a6:52:15:6e:98:35:57:9b:f2:bc:86:b5:1e:47:41:
2c:2e:9a:8c:80:3c:f3:ab:35:c7:3a:db:57:eb:a0:7d:0d:eb:
9b:9b:19:af:10:51:1d:ed:f6:c9:32:65:10:aa:54:c4:ca:67:
ad:20:6a:f1:05:94:80:52:19:2c:8a:bc:67:df:bb:61:2d:2c:
20:09:9e:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 23 12:21:38 2024 by rpki-client on console-fra.rpki-client.org