Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/zmmfh8bZgDLlT5tR2L9GLRrRnHY.roa
File: zmmfh8bZgDLlT5tR2L9GLRrRnHY.roa (raw, json)
Hash identifier: 7BmyoRMj/VrU1lcz5A/ePFYyL1tlL2C/6Ynw8SSSkUY=
Subject key identifier: CE:69:9F:87:C6:D9:80:32:E5:4F:9B:51:D8:BF:46:2D:1A:D1:9C:76
Certificate issuer: /CN=3cd37ec23719b2f142f46e6f3317664034adf598
Certificate serial: 018B8AF3CF29902B35D7A8754BC2A211E1C3
Authority key identifier: 3C:D3:7E:C2:37:19:B2:F1:42:F4:6E:6F:33:17:66:40:34:AD:F5:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNN-wjcZsvFC9G5vMxdmQDSt9Zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/zmmfh8bZgDLlT5tR2L9GLRrRnHY.roa
Signing time: Wed 01 Nov 2023 12:55:15 +0000
ROA not before: Wed 01 Nov 2023 12:55:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47554
IP address blocks: 185.170.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:f3:cf:29:90:2b:35:d7:a8:75:4b:c2:a2:11:e1:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd37ec23719b2f142f46e6f3317664034adf598
Validity
Not Before: Nov 1 12:55:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce699f87c6d98032e54f9b51d8bf462d1ad19c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4c:b4:20:ed:31:2b:2e:c3:05:a0:d8:60:7f:
56:51:c7:6d:d6:03:75:f6:65:0c:cc:10:78:e2:18:
75:11:bb:d5:22:52:66:b3:f2:13:0f:57:66:ab:78:
1a:13:01:6a:15:0b:54:82:33:f4:ea:3f:71:e0:0a:
b2:20:fc:c6:87:6a:0d:48:48:ad:e3:ac:a4:87:fc:
e1:fb:0a:63:ac:82:2d:88:4a:16:2c:06:cf:0a:5d:
b2:2b:78:df:d4:46:fb:e0:6b:6a:35:e3:36:3e:64:
02:10:13:3a:1c:df:8c:49:71:c8:90:e8:89:84:b7:
6b:60:4c:da:cc:55:d1:ca:8e:c9:72:96:65:e7:98:
91:ab:65:72:96:8a:68:4a:b4:84:29:13:9f:72:3a:
a5:dc:2c:d9:dd:8c:0d:20:e0:6c:f2:96:cb:39:ca:
46:d8:25:b7:3f:54:47:1f:af:59:11:c4:2e:94:d4:
8d:cf:26:3d:89:cd:61:e7:1b:6e:f1:87:07:ae:15:
86:e1:ff:9f:01:0e:b8:9d:7d:e3:9f:b9:03:79:6a:
b5:1e:15:3b:d5:be:cb:73:bc:6f:7b:14:5f:f3:4f:
d1:5b:ee:c9:e4:00:46:fb:8b:81:d1:58:76:34:4c:
f4:78:14:b3:ac:68:ed:a4:ea:16:57:5c:7f:07:7c:
3b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:69:9F:87:C6:D9:80:32:E5:4F:9B:51:D8:BF:46:2D:1A:D1:9C:76
X509v3 Authority Key Identifier:
keyid:3C:D3:7E:C2:37:19:B2:F1:42:F4:6E:6F:33:17:66:40:34:AD:F5:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNN-wjcZsvFC9G5vMxdmQDSt9Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/zmmfh8bZgDLlT5tR2L9GLRrRnHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/PNN-wjcZsvFC9G5vMxdmQDSt9Zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.236.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:dc:6e:a8:91:f2:42:d8:e9:a8:40:13:4d:34:f6:13:ae:35:
de:b5:03:de:0d:56:ab:58:6e:3f:07:ed:73:9b:93:f2:aa:aa:
95:20:3a:f0:65:d1:94:3a:1f:98:51:84:70:1f:36:f0:df:90:
07:e9:21:c0:18:a3:76:a8:16:c9:09:23:e8:69:4d:a1:ce:c9:
c3:53:70:88:63:a5:5e:46:a0:ff:89:86:ce:d4:ac:9b:7c:08:
df:f4:9c:f7:22:55:6c:05:e9:1d:66:26:b1:c2:b2:da:26:06:
d1:a6:d6:1c:af:2f:66:8d:24:de:52:19:e5:3b:53:19:9a:b8:
f3:10:48:f8:27:9f:b4:18:93:28:f3:7f:9a:08:6c:20:e1:bd:
8d:1e:e5:66:94:a5:bf:50:2e:71:74:66:84:e1:5d:02:de:e7:
da:26:d6:cc:3e:57:97:cb:de:f0:2a:2c:86:b4:52:3a:77:41:
5d:9d:82:2a:13:84:e0:38:91:0d:1d:ab:f6:fe:26:45:56:3e:
43:ee:2d:8b:ca:49:8f:c5:31:23:2f:52:dc:3b:d7:ea:b5:b9:
3c:5c:d2:50:25:fd:51:bf:73:ec:6b:68:64:05:30:57:62:d8:
35:0e:10:06:65:a3:04:e6:2b:98:97:0f:98:81:9d:6b:f2:29:
9c:b7:f1:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:36 2024 by rpki-client on console-ams.rpki-client.org