Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/zzZXWFI1iilnH5N76uwEwb7Xgfk.roa
File: zzZXWFI1iilnH5N76uwEwb7Xgfk.roa (raw, json)
Hash identifier: laBxNlpL3hr9iABaZvi++h/7p6lov8yeKwQGSKlP4l0=
Subject key identifier: CF:36:57:58:52:35:8A:29:67:1F:93:7B:EA:EC:04:C1:BE:D7:81:F9
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 0185729ED2B76A85478ADE7CCEF97EEAE307
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/zzZXWFI1iilnH5N76uwEwb7Xgfk.roa
Signing time: Mon 02 Jan 2023 13:14:49 +0000
ROA not before: Mon 02 Jan 2023 13:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31486
IP address blocks: 185.96.170.0/24 maxlen: 24
185.96.169.0/24 maxlen: 24
2a06:9140::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 08 Nov 2023 01:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:d2:b7:6a:85:47:8a:de:7c:ce:f9:7e:ea:e3:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Jan 2 13:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf36575852358a29671f937beaec04c1bed781f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5a:63:d8:95:c5:fa:81:d2:5e:d5:c5:f3:57:
49:a0:af:16:09:a8:2c:b0:e5:65:db:59:36:0b:75:
60:9c:f9:1c:6c:b9:81:07:30:e9:6e:f7:2e:54:9c:
bc:e1:c8:56:a8:70:f7:c7:70:1c:da:85:97:8a:82:
d0:90:25:f4:76:cf:e6:4e:43:2a:bd:80:89:84:e3:
54:a8:29:a0:cd:a1:b1:c6:e6:9f:87:ff:50:90:40:
ce:2a:df:44:47:c1:e0:a3:1d:3a:b2:3d:77:95:34:
7a:ce:15:b2:54:2a:6d:d7:2a:e7:26:c6:24:a9:2a:
2b:4f:d3:a8:69:4b:b2:11:71:d0:83:ea:19:e1:56:
8e:fc:56:b3:32:36:33:99:66:fa:c9:78:17:01:cf:
cc:fa:a2:2b:e2:5f:52:69:3c:74:0b:a5:0b:96:23:
7d:de:95:1a:1d:96:16:0d:e6:33:f0:e1:ad:77:f0:
8f:56:48:1f:ad:2f:74:f7:bc:1d:ca:4f:ab:f3:94:
08:f4:dc:51:ac:88:f7:26:2c:77:19:23:72:06:4a:
a0:28:76:3c:ae:f7:35:25:8b:2e:41:27:76:f1:f6:
79:87:83:fb:f1:31:8d:e0:53:ed:2b:2e:3a:1b:77:
99:b1:b5:74:ab:2f:80:8b:91:fc:c9:9a:b5:67:c4:
8d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:36:57:58:52:35:8A:29:67:1F:93:7B:EA:EC:04:C1:BE:D7:81:F9
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/zzZXWFI1iilnH5N76uwEwb7Xgfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.169.0-185.96.170.255
IPv6:
2a06:9140::/29
Signature Algorithm: sha256WithRSAEncryption
a5:16:fa:0d:a9:46:26:2b:ac:db:7e:1d:76:07:a9:59:7d:b3:
e9:58:66:02:72:41:2f:3a:f7:d6:da:7a:62:49:63:7f:43:89:
35:c6:86:8f:f9:02:90:4b:d6:e7:31:21:be:2d:2a:27:0d:66:
ff:18:c9:76:c6:a2:02:79:2e:a8:5f:30:ee:17:f9:dd:c6:9b:
91:1d:85:25:20:42:8a:43:1a:49:1a:8b:9f:99:ac:af:2e:dd:
1d:9f:27:0e:81:9c:5b:55:a7:d5:86:5a:a9:9a:b5:87:1d:2c:
21:f9:c3:3c:9d:c4:08:0a:2b:77:ee:82:a1:c0:9b:c7:3d:94:
2e:fc:9f:3a:81:42:5d:97:b3:c7:be:de:57:86:1a:f0:ca:cc:
b6:bd:c0:fa:f0:35:63:4a:0c:7b:2b:3d:96:f3:ba:b6:21:3c:
66:db:f7:4a:04:b3:01:67:12:16:15:95:05:e9:ef:97:76:09:
d6:26:c1:7f:73:29:03:16:1a:29:18:82:de:a8:e3:13:b0:68:
fa:de:eb:3c:47:f4:b6:61:20:b9:48:00:06:da:51:c2:06:69:
50:12:eb:bd:3f:11:0c:7a:95:df:6e:ba:b7:1a:89:47:dd:20:
8a:5b:a0:55:75:8c:a7:92:55:86:16:0c:31:e9:b3:a0:72:62:
e3:0c:86:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:59 2024 by rpki-client on console-ams.rpki-client.org