Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/zvWRKLqhw3ay-kAKOeGlwJAuLfE.roa
File: zvWRKLqhw3ay-kAKOeGlwJAuLfE.roa (raw, json)
Hash identifier: Ijz4hO/sYGH0dTIpKTZJpEz0n233cgyG/H2vG9Aygvw=
Subject key identifier: CE:F5:91:28:BA:A1:C3:76:B2:FA:40:0A:39:E1:A5:C0:90:2E:2D:F1
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018CC8012FC3BA1540926A462E398DC60764
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/zvWRKLqhw3ay-kAKOeGlwJAuLfE.roa
Signing time: Tue 02 Jan 2024 02:29:30 +0000
ROA not before: Tue 02 Jan 2024 02:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62387
IP address blocks: 85.254.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 13:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:2f:c3:ba:15:40:92:6a:46:2e:39:8d:c6:07:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 02:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cef59128baa1c376b2fa400a39e1a5c0902e2df1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:dc:74:d0:16:29:07:45:65:6c:da:15:4a:55:
63:5f:70:60:23:47:8a:5a:99:61:96:df:0d:9a:a4:
15:42:25:de:bb:7e:6f:ec:0c:53:8e:04:04:91:a6:
ed:ea:e9:d5:56:2b:51:a9:a2:f4:b9:cb:8f:3a:9f:
9d:d6:f1:4a:a3:5c:4e:75:14:6a:dc:d9:ad:f8:90:
45:9c:ed:4b:19:61:84:55:01:bd:60:4f:e0:25:19:
48:f7:8c:d6:91:5c:93:53:7c:56:24:8b:2c:78:55:
db:0f:a7:da:8d:70:17:50:5f:a6:91:9b:37:c9:ea:
17:a6:e6:50:f1:5f:ec:49:3a:8a:d5:c1:3d:e2:df:
0c:86:bf:f3:01:62:cf:df:c1:17:b9:40:b9:50:e9:
0c:4a:19:85:c7:a6:ce:ca:28:ac:86:47:e9:61:51:
d0:4e:17:1b:54:86:a9:79:09:f4:81:d8:22:88:db:
fc:f8:ab:01:aa:34:ab:eb:47:81:a7:47:28:5a:de:
8a:57:7b:82:f6:b7:27:be:5d:6b:9c:4d:e1:c2:bc:
c3:11:a3:02:e8:d1:45:34:33:4b:a5:53:bf:e7:1f:
92:a1:13:5a:b1:28:dd:33:93:86:d3:48:62:df:7f:
0b:33:a5:09:5c:e0:ca:33:39:2b:a2:3c:db:d7:1e:
3d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F5:91:28:BA:A1:C3:76:B2:FA:40:0A:39:E1:A5:C0:90:2E:2D:F1
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/zvWRKLqhw3ay-kAKOeGlwJAuLfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.47.0/24
Signature Algorithm: sha256WithRSAEncryption
73:56:31:23:89:1a:01:c6:82:95:2d:4c:33:67:b1:75:36:e5:
1d:df:53:7d:49:90:31:a4:dd:19:f1:a2:fc:1d:f1:6d:60:1f:
55:df:80:79:11:d8:14:6f:10:f4:47:97:13:d1:d9:37:ee:8b:
3e:76:56:41:2c:d4:c8:f3:3c:65:bb:16:c0:f1:ef:78:61:34:
c9:9a:50:91:06:9e:08:ce:8f:97:ff:04:d7:b0:96:df:73:1e:
f8:7f:49:5e:50:f7:31:d8:ff:26:52:7d:33:4d:32:1f:09:6c:
19:fa:32:90:d1:2a:8e:ed:1f:e9:b2:b2:36:43:b3:63:fd:a2:
29:57:70:ea:4a:20:50:8d:c0:7d:ef:b2:64:e1:f0:e7:0b:08:
44:10:62:a9:e1:29:c6:ac:6b:71:f3:59:22:16:9a:c8:53:52:
78:82:aa:ca:db:3f:fe:45:0d:c3:ab:78:d4:5a:91:aa:c2:de:
7b:7c:4b:ec:a2:3b:53:90:7f:16:9b:36:6f:84:3d:f3:e4:a0:
9c:bd:32:aa:7a:11:28:29:8e:23:aa:77:6b:c8:4d:03:24:12:
30:57:c1:1d:25:f1:bc:6e:d7:64:d9:a9:b4:77:77:d9:9e:0b:
07:39:0e:8b:75:ad:20:13:c3:00:f7:6d:5b:c5:12:fa:41:a3:
f9:70:c5:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 15:37:20 2024 by rpki-client on console-ams.rpki-client.org