Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/zbJwp0BRa9eZAZN3EhpGV1Cwfu8.roa
File: zbJwp0BRa9eZAZN3EhpGV1Cwfu8.roa (raw, json)
Hash identifier: TSxWLBof2CDPbhvFVMWuaIUt2fANBNE4ls3Pglfiyqc=
Subject key identifier: CD:B2:70:A7:40:51:6B:D7:99:01:93:77:12:1A:46:57:50:B0:7E:EF
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018572471485F8A0F139BB61337130869FDA
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/zbJwp0BRa9eZAZN3EhpGV1Cwfu8.roa
Signing time: Mon 02 Jan 2023 11:38:58 +0000
ROA not before: Mon 02 Jan 2023 11:38:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202984
IP address blocks: 31.184.240.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:47:14:85:f8:a0:f1:39:bb:61:33:71:30:86:9f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 11:38:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdb270a740516bd799019377121a465750b07eef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9c:51:53:23:4b:c3:32:62:6b:86:9f:22:a3:
e9:e4:8a:fd:40:74:01:e2:c8:ec:a8:d8:67:ed:fb:
22:84:78:d9:3f:d7:cc:9b:07:99:ce:7e:a5:64:89:
98:2e:63:cf:ac:c2:78:80:2c:fa:de:e5:9b:1c:a2:
42:52:94:45:d8:d8:8f:ca:99:99:3f:90:3a:e2:de:
b8:f4:ac:71:af:d3:72:74:18:36:93:9d:38:7b:33:
24:c9:f8:29:04:c1:1f:81:b6:28:b0:8b:dd:6d:91:
c4:aa:1c:9a:cd:71:e8:a6:ef:94:d7:d6:51:16:00:
87:2a:69:31:f5:ff:83:32:20:8d:24:6b:39:01:5d:
2c:17:56:97:21:6e:c1:c4:56:37:43:c1:8a:39:51:
89:e3:08:10:c1:78:43:af:96:b4:b1:91:9b:9a:93:
7d:1f:af:cf:8f:4c:9f:8e:10:03:fa:4d:8e:d0:dd:
3c:64:ac:33:02:20:60:b6:06:c8:be:44:9a:24:44:
a5:e8:e9:96:bc:42:91:6f:0f:dc:71:6c:88:bb:d5:
8a:8b:f0:f2:ef:b6:3a:d2:ff:1c:79:3b:4a:62:31:
ad:81:fb:3a:d9:92:d4:4d:51:91:9e:1d:1a:f0:7a:
3d:a6:0f:59:0a:c4:76:c2:87:9b:87:99:c8:2e:cd:
cf:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B2:70:A7:40:51:6B:D7:99:01:93:77:12:1A:46:57:50:B0:7E:EF
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/zbJwp0BRa9eZAZN3EhpGV1Cwfu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.184.240.0/23
Signature Algorithm: sha256WithRSAEncryption
73:aa:a6:b8:7a:c6:6e:ba:24:9f:17:d3:b6:97:48:28:7e:bb:
b4:f0:e8:31:13:d4:98:13:cf:d1:c6:38:69:db:92:fa:be:a0:
b8:69:db:50:fa:1d:05:60:ed:ae:1d:40:d5:f7:54:c0:75:bd:
b3:46:ff:a9:7a:f5:7b:a6:f4:5b:5a:be:0e:66:f3:42:4c:50:
08:ec:6e:e0:bd:1a:c3:96:d6:af:7a:78:93:67:4e:7e:a2:10:
8e:80:53:23:84:40:47:35:cc:9a:54:97:49:76:d4:d8:6e:31:
cf:f5:4e:e4:24:11:24:1f:12:73:47:b3:f1:61:3c:b5:75:24:
49:fd:64:d7:22:bc:93:2a:6a:18:26:d3:a2:6d:be:45:7a:94:
bb:6d:6d:03:7d:2f:2d:08:bc:f6:87:80:b5:c8:f3:15:d0:78:
6b:9e:fb:09:4c:41:1c:c7:e1:59:7e:65:3f:95:d7:88:a1:cd:
5a:1c:ca:23:1a:7f:39:ba:0d:ea:dd:36:56:28:92:cc:40:e7:
38:f6:7f:97:f2:2e:cc:e8:d1:52:b4:e8:a4:f9:8f:62:d9:47:
c6:8e:d2:b6:f8:c0:d0:68:c5:38:24:ff:fc:bd:75:77:29:48:
ed:ec:cf:07:35:28:56:71:16:b7:f7:77:f2:3a:42:21:78:a1:
a5:79:35:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:25 2024 by rpki-client on console-fra.rpki-client.org