Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/ZCuyy7PHf5lK0n2mRJLD97lWqpg.roa
File: ZCuyy7PHf5lK0n2mRJLD97lWqpg.roa (raw, json)
Hash identifier: 2jqzApwGMgyVKJrbpOX+j1cTvgf4yDMa7lB0nMEIOQg=
Subject key identifier: 64:2B:B2:CB:B3:C7:7F:99:4A:D2:7D:A6:44:92:C3:F7:B9:56:AA:98
Certificate issuer: /CN=3ec2c20d6b3acf84802c2b7ca0722deb72c670bb
Certificate serial: 0187E0A7C18B1B05D784B888F4BF640ECF3B
Authority key identifier: 3E:C2:C2:0D:6B:3A:CF:84:80:2C:2B:7C:A0:72:2D:EB:72:C6:70:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsLCDWs6z4SALCt8oHIt63LGcLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/ZCuyy7PHf5lK0n2mRJLD97lWqpg.roa
Signing time: Wed 03 May 2023 08:08:23 +0000
ROA not before: Wed 03 May 2023 08:08:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 195.211.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 08:56:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e0:a7:c1:8b:1b:05:d7:84:b8:88:f4:bf:64:0e:cf:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec2c20d6b3acf84802c2b7ca0722deb72c670bb
Validity
Not Before: May 3 08:08:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=642bb2cbb3c77f994ad27da64492c3f7b956aa98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:32:31:ba:72:69:ff:68:cf:c6:a2:69:10:4b:
f6:d6:a1:1d:f7:b6:f7:e8:df:42:b6:6c:16:32:74:
2f:f4:c6:9b:c3:a7:1e:00:6f:b8:59:78:cd:98:8d:
f2:93:b8:c3:27:86:da:64:db:f0:72:7f:4c:a7:fa:
7e:f5:df:f4:ff:6f:03:4f:ec:f8:83:cb:df:e7:59:
19:9f:ac:88:c3:2a:3e:4e:58:31:66:42:a8:da:98:
e0:b1:65:80:31:d2:b2:59:18:36:06:65:d7:53:a2:
f7:54:13:e6:bf:00:72:e2:58:e1:1d:1d:c1:d7:88:
39:1f:43:83:38:1c:60:97:4e:4c:85:d2:40:93:63:
dc:7c:8e:e6:ce:83:a6:bb:f0:50:77:a2:d9:15:08:
91:60:ed:60:c3:3c:f7:1d:bf:06:ef:8b:41:8c:28:
cd:ae:b8:c3:70:af:9e:7f:6e:9f:83:c4:5f:2c:74:
36:f9:ab:e1:8b:7a:b8:58:17:6c:3e:19:08:e7:1f:
9d:1d:b1:55:87:36:25:87:e4:5a:02:9b:a9:dd:ff:
53:af:7a:53:07:5a:fc:d8:fd:b1:6f:99:9c:63:4f:
d1:c9:e7:be:98:8e:02:53:bf:1b:99:4f:39:7e:42:
44:55:69:5c:d8:c6:7c:51:29:ca:d9:87:25:4d:fa:
f3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:2B:B2:CB:B3:C7:7F:99:4A:D2:7D:A6:44:92:C3:F7:B9:56:AA:98
X509v3 Authority Key Identifier:
keyid:3E:C2:C2:0D:6B:3A:CF:84:80:2C:2B:7C:A0:72:2D:EB:72:C6:70:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsLCDWs6z4SALCt8oHIt63LGcLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/ZCuyy7PHf5lK0n2mRJLD97lWqpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/PsLCDWs6z4SALCt8oHIt63LGcLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.167.0/24
Signature Algorithm: sha256WithRSAEncryption
76:87:a2:9a:7a:06:a3:e9:dd:3a:97:ab:2f:99:7c:ac:1b:c1:
c2:44:cf:54:c4:77:49:91:89:c7:a4:99:c4:76:0d:03:cf:e2:
04:0e:41:7a:dd:f8:51:55:71:51:54:f7:89:10:2b:b7:b1:68:
84:9a:a4:18:ec:c6:b4:6c:5a:ac:13:b4:00:8b:cf:ac:18:81:
84:ed:12:88:58:ed:fc:2f:8b:29:73:80:e5:85:09:56:74:62:
07:ad:32:68:4c:89:4a:32:61:78:4c:ff:8b:f8:22:d6:5d:ca:
6b:cb:63:aa:7e:2d:67:c2:4b:ed:f4:83:80:b0:c7:4d:43:cc:
19:c7:5a:be:dc:59:27:94:24:a7:fb:35:8f:1d:e5:1b:1b:8d:
b1:b8:cc:db:af:b4:d9:19:a1:91:54:39:6e:b2:b0:ec:8a:cd:
77:46:98:58:14:0a:37:f5:f6:33:e7:2b:c8:97:60:35:a3:06:
e9:e1:74:ea:3e:6f:71:67:4e:dc:7c:ee:c4:96:60:21:61:ff:
2f:15:d6:64:f1:ff:d2:df:9a:62:04:cd:17:64:27:44:98:fa:
00:75:92:d8:1f:a4:4b:42:31:ae:ee:ac:00:ae:ae:52:83:88:
f5:40:46:e3:49:8e:a5:38:6e:69:f1:dc:a7:d6:f9:ed:a2:0e:
12:46:bf:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org