Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/ZsGfDOXFLSAhZhv_cJZiq3JG940.roa
File: ZsGfDOXFLSAhZhv_cJZiq3JG940.roa (raw, json)
Hash identifier: /+cm7p3WMrWhEAeLBRSq44M0DKJuRU1PNLmDoa7v8wc=
Subject key identifier: 66:C1:9F:0C:E5:C5:2D:20:21:66:1B:FF:70:96:62:AB:72:46:F7:8D
Certificate issuer: /CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Certificate serial: 01856D660F352A526BD68F0B9C2A471FDC58
Authority key identifier: E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/ZsGfDOXFLSAhZhv_cJZiq3JG940.roa
Signing time: Sun 01 Jan 2023 12:54:42 +0000
ROA not before: Sun 01 Jan 2023 12:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34736
IP address blocks: 188.119.28.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:0f:35:2a:52:6b:d6:8f:0b:9c:2a:47:1f:dc:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Validity
Not Before: Jan 1 12:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66c19f0ce5c52d2021661bff709662ab7246f78d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fa:fd:bd:d9:01:12:d7:09:37:f0:18:d2:3a:
88:80:35:51:e8:de:aa:e9:1b:d8:bb:e2:63:58:db:
09:74:18:70:7a:b3:2b:41:c5:14:65:81:ae:bb:59:
9c:31:33:a6:34:e2:d5:ea:e7:34:ff:d6:33:47:9b:
b4:a8:1a:40:5b:46:33:34:56:56:c3:90:74:02:47:
91:35:ce:2f:9c:61:73:ff:51:eb:89:5c:0a:16:84:
0a:5d:e3:c0:fe:a3:0a:2b:d2:6b:eb:85:d6:96:0f:
37:2f:5d:bc:7b:ec:0a:21:a8:6a:9f:f8:34:38:b3:
e8:10:ba:16:4a:c9:68:55:a1:49:55:ee:1d:ab:d7:
50:43:4f:bd:5e:8e:16:25:0d:13:0b:99:7d:98:97:
42:b5:c3:a5:72:2d:46:0e:55:cf:fd:a5:cd:2d:80:
1a:ae:91:53:c3:7c:6c:ca:24:cb:11:bd:e3:dd:5a:
2d:eb:e8:3f:ca:f9:02:96:ee:f1:a9:b1:40:a6:1a:
d3:50:62:8e:26:bb:3c:01:1b:d4:eb:c8:80:90:09:
a6:6d:8d:2e:3e:7a:62:3f:07:81:78:dc:1e:77:1e:
32:48:37:61:a4:b8:51:d5:9e:52:ce:fd:f4:16:32:
85:a6:e9:92:97:90:cc:71:98:f9:c2:7c:ff:c1:68:
6a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C1:9F:0C:E5:C5:2D:20:21:66:1B:FF:70:96:62:AB:72:46:F7:8D
X509v3 Authority Key Identifier:
keyid:E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/ZsGfDOXFLSAhZhv_cJZiq3JG940.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.28.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:00:2b:c8:06:ee:07:bc:9c:6c:70:91:95:bb:e2:18:6f:62:
f1:e3:e7:13:16:71:2e:7f:13:1c:14:54:94:94:51:52:9b:eb:
18:6b:04:92:e1:6a:20:28:78:73:57:85:3d:87:cb:41:8f:2e:
b7:3f:03:12:22:e3:49:3a:3e:ef:52:18:49:3a:4d:a0:dd:ea:
ee:7f:70:4b:d8:dd:04:dc:9a:80:df:08:dd:d1:e5:a5:fe:65:
c4:bc:0d:3c:ad:a5:f8:f3:c6:3c:92:8e:81:5d:22:28:92:65:
f0:88:a3:47:0d:89:6f:e0:78:21:11:55:50:9a:63:85:c9:4d:
b0:58:f1:84:32:b0:75:5f:ef:65:dd:15:a1:a9:fa:a1:2c:4d:
30:93:a7:ff:a9:ff:a7:7f:70:58:e0:da:1d:bd:1e:30:5c:12:
78:c9:9f:4c:a0:ae:2f:9c:31:78:78:94:be:6a:10:06:12:32:
47:0d:1e:c2:26:ca:21:95:4f:ac:3b:fd:15:85:de:0b:2f:e0:
79:d2:2d:65:c8:da:39:fd:7b:07:6c:e6:60:fd:84:90:31:a3:
47:93:50:d9:63:5d:0a:97:cd:cf:f3:22:cf:03:62:c6:70:ac:
a3:25:20:25:5e:33:b6:1c:3a:f6:9e:bf:9a:a5:54:ce:e4:29:
1d:a9:f2:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:29 2024 by rpki-client on console-fra.rpki-client.org