Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/ZKrk-3zZU8aY2kYMyeytb9bjo44.roa
File: ZKrk-3zZU8aY2kYMyeytb9bjo44.roa (raw, json)
Hash identifier: eF/BqffChhflq3ObpGnc5eH+C9XSJgHbrT0ZypbVekU=
Subject key identifier: 64:AA:E4:FB:7C:D9:53:C6:98:DA:46:0C:C9:EC:AD:6F:D6:E3:A3:8E
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 0185E0B0BE5D90AB965176382A34B913BB15
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/ZKrk-3zZU8aY2kYMyeytb9bjo44.roa
Signing time: Mon 23 Jan 2023 22:12:37 +0000
ROA not before: Mon 23 Jan 2023 22:12:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200188
IP address blocks: 194.181.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e0:b0:be:5d:90:ab:96:51:76:38:2a:34:b9:13:bb:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 23 22:12:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64aae4fb7cd953c698da460cc9ecad6fd6e3a38e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:29:18:66:85:65:1b:82:af:34:38:ae:13:43:
6b:d4:1c:61:03:4c:d2:9b:a6:ba:a3:50:3f:ee:dc:
55:24:b4:ac:4a:2f:6d:ba:11:a7:ce:1d:6e:69:25:
53:62:67:0c:eb:53:de:44:c4:3a:65:d9:b6:be:f5:
89:21:06:4b:44:dd:80:cb:7b:cb:95:d5:24:0e:e3:
f5:11:28:5d:bc:c7:3d:86:7a:56:48:e2:fc:ca:56:
ae:66:6c:1e:d3:1e:85:ed:01:ee:b7:17:47:a9:d1:
8e:f7:f0:14:cf:c4:4a:22:ec:5e:75:6a:c3:fa:43:
dd:ae:87:e4:17:cf:03:40:81:8a:c1:f1:e1:cf:68:
4e:f8:4c:34:aa:5d:0f:a1:e8:07:75:9e:f4:7f:f0:
c2:fc:34:5c:91:55:38:3a:7e:8f:25:65:e5:1e:a7:
ab:10:35:4f:3c:b2:74:48:e0:e0:39:f5:34:e0:26:
a1:44:11:3f:0e:fa:d8:1d:e1:82:d9:bb:3e:1b:a1:
15:36:17:f9:74:fd:97:ae:df:86:0e:11:f9:36:ff:
b2:5c:f0:20:c6:d9:9c:3f:d2:75:04:e9:d5:59:4c:
47:38:1e:e5:af:e7:47:ab:9c:ea:e9:2c:d2:72:22:
9f:a6:63:55:31:d6:3d:0a:3e:22:e5:20:16:f7:fc:
31:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AA:E4:FB:7C:D9:53:C6:98:DA:46:0C:C9:EC:AD:6F:D6:E3:A3:8E
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/ZKrk-3zZU8aY2kYMyeytb9bjo44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.60.0/24
Signature Algorithm: sha256WithRSAEncryption
84:07:7f:12:d2:8f:fd:77:05:ea:e2:51:b8:95:71:60:f5:0e:
38:7b:a7:42:1a:df:22:28:a6:dc:6d:95:4d:f1:c9:22:cf:1b:
cf:3f:48:5e:a5:42:fe:3c:27:34:fd:31:2d:67:47:ee:0c:57:
68:14:f1:bd:0e:62:22:d5:9d:6f:9a:90:23:f3:37:ac:5b:7a:
49:90:96:31:ab:d7:af:5a:bb:07:6d:8d:55:5e:ff:2b:a1:29:
60:1c:0f:29:ab:ad:0c:6b:24:68:8f:c8:07:fc:99:8a:23:96:
b3:6d:aa:93:9b:0b:6a:06:49:1c:86:c9:1b:22:0a:b8:69:62:
8d:35:bf:e3:66:03:2b:b4:81:87:42:a6:50:2b:34:35:5c:84:
a5:5a:5c:89:d6:0a:12:79:ba:b8:1b:ad:bb:7a:6a:fd:40:ec:
be:8a:a3:36:37:74:42:71:f0:ba:c2:9a:61:5e:8a:50:1c:48:
9c:d7:90:f1:e5:86:f0:cd:f8:26:7d:54:a6:80:b6:97:ef:d6:
c8:83:e0:ac:c6:cb:19:1e:db:c1:39:56:ec:63:a3:86:aa:21:
51:78:33:09:c1:ff:d2:33:84:2c:25:54:0a:6c:28:e8:4a:50:
2e:cf:8c:68:af:c3:a4:77:a8:f4:0b:4a:c1:a7:4e:68:cb:23:
be:a9:d9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org