Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZkEuDQJvXqQFqxTos6Fq92WGvJc.roa
File: ZkEuDQJvXqQFqxTos6Fq92WGvJc.roa (raw, json)
Hash identifier: qf/w73foQTQccmV+Qcsk6AtmihixYbxRPxGHmZN6Skk=
Subject key identifier: 66:41:2E:0D:02:6F:5E:A4:05:AB:14:E8:B3:A1:6A:F7:65:86:BC:97
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 01896E6519F572AB65E928DF4D6914CCF633
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZkEuDQJvXqQFqxTos6Fq92WGvJc.roa
Signing time: Wed 19 Jul 2023 13:44:26 +0000
ROA not before: Wed 19 Jul 2023 13:44:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 89.43.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:65:19:f5:72:ab:65:e9:28:df:4d:69:14:cc:f6:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Jul 19 13:44:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66412e0d026f5ea405ab14e8b3a16af76586bc97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:40:02:c6:19:54:58:3b:26:72:28:16:d0:b5:
1e:2a:ff:52:39:3c:d5:52:06:00:47:3e:20:0d:b3:
9b:f6:d2:27:68:57:e6:ae:96:44:0a:9f:ff:2d:d2:
4e:2c:4b:1a:1f:a7:02:b7:de:fe:a9:a5:14:61:0d:
4b:df:3c:d4:30:07:6c:47:cb:d2:96:db:59:0c:7d:
15:fd:5e:0e:b6:16:30:38:f2:60:d0:f4:2d:1f:b1:
ec:3f:ba:ae:da:a0:70:b1:fb:e9:26:67:79:f8:e7:
99:f2:08:97:e6:db:e1:0c:83:09:59:8c:df:f8:39:
70:89:9c:b6:64:19:70:59:5b:46:71:02:04:a2:cc:
ee:e3:ee:93:4b:ef:4b:d1:27:fc:38:33:f0:b6:13:
c3:c6:c4:3a:49:46:65:c4:c3:cd:63:9b:6d:ef:fa:
b2:4d:f0:bb:30:84:5a:40:39:0d:77:1e:21:11:de:
d3:43:80:23:3e:bc:df:7e:a6:cc:c5:a9:51:75:ee:
3c:a0:31:20:f6:78:08:97:95:8b:dd:15:55:f9:02:
b7:16:0f:50:d9:12:2c:cc:0c:4c:e5:5e:1b:da:81:
d6:40:51:cc:05:6a:7d:ed:cb:68:93:11:6f:59:47:
10:8b:c0:c1:9a:40:0f:72:cb:c2:aa:43:55:f6:89:
8f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:41:2E:0D:02:6F:5E:A4:05:AB:14:E8:B3:A1:6A:F7:65:86:BC:97
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZkEuDQJvXqQFqxTos6Fq92WGvJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.34.0/24
Signature Algorithm: sha256WithRSAEncryption
80:34:3c:b5:b0:0a:bc:71:aa:3d:f4:3f:a6:04:85:cb:a1:72:
b5:74:90:87:1f:2d:44:5f:13:b2:90:d5:23:ed:49:17:31:7d:
8e:bc:a0:e0:91:72:98:f2:fc:a9:33:63:b6:95:bd:a4:40:b9:
37:bf:43:0c:ca:c8:e5:84:15:03:45:17:e1:60:0c:38:af:06:
24:20:a5:04:b5:05:af:96:a3:f9:91:bb:e9:21:b2:1f:c5:3e:
d5:7e:77:b7:49:f3:40:7e:10:1e:2a:4d:e9:ca:02:69:37:49:
4a:eb:ee:5c:7c:8e:9e:fb:56:ae:59:c1:f0:6c:c0:7e:c9:86:
0f:2f:27:4e:b3:16:c8:61:36:46:b6:23:c7:6d:25:e4:b6:5f:
cb:79:f2:9b:fb:e9:e2:97:b2:4a:d8:80:40:4e:8b:ce:55:e1:
f5:ff:c4:3b:3f:aa:e3:d1:03:53:a8:0b:8e:48:c8:2b:cc:85:
7b:29:0c:c1:18:ca:9d:cc:6a:a7:54:9b:ac:25:b2:28:4a:9e:
bb:9e:cc:5b:29:ae:73:8b:dd:0b:e7:06:d0:b4:ca:b3:0d:46:
8f:35:7b:48:1d:0d:3c:14:80:47:ee:0b:25:5e:49:90:ee:87:
68:47:8e:46:d8:21:de:cf:06:f8:da:2f:3f:93:03:ec:96:d7:
22:73:6b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:12 2024 by rpki-client on console-fra.rpki-client.org