Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/ZYLJjJgioBVZRr_o7EbZQo58iLo.roa
File: ZYLJjJgioBVZRr_o7EbZQo58iLo.roa (raw, json)
Hash identifier: KQMcUGfgFM0FhFq5qoHA4DoQCJbqSfu34ZL9JHFBWEY=
Subject key identifier: 65:82:C9:8C:98:22:A0:15:59:46:BF:E8:EC:46:D9:42:8E:7C:88:BA
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 018A927B533DBA665F175AD7B8EF4C8A02D9
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/ZYLJjJgioBVZRr_o7EbZQo58iLo.roa
Signing time: Thu 14 Sep 2023 06:57:50 +0000
ROA not before: Thu 14 Sep 2023 06:57:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 185.104.13.0/24 maxlen: 24
85.208.44.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:92:7b:53:3d:ba:66:5f:17:5a:d7:b8:ef:4c:8a:02:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Sep 14 06:57:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6582c98c9822a0155946bfe8ec46d9428e7c88ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0d:3f:47:26:18:44:5e:68:f3:00:78:3f:bb:
aa:0d:14:8f:8d:04:c9:ef:01:d8:5b:91:d2:ba:8c:
0a:9a:b9:28:85:c0:66:cd:91:9b:90:3c:17:ab:9b:
5a:4d:b0:b4:8e:73:0f:10:8e:be:e0:ca:db:14:fe:
8f:5b:d3:30:1e:49:73:17:63:ff:62:8d:5c:d6:7e:
e7:71:7b:e0:ec:d8:b2:fb:88:52:5f:b2:96:f0:5c:
34:77:b5:27:6f:24:9b:c9:f6:bf:69:c0:ab:ef:81:
1a:07:81:13:a2:5d:34:92:8b:c8:e4:34:27:32:62:
8f:f1:d5:74:a5:08:77:4b:57:60:57:15:81:bd:57:
57:f5:67:61:c5:c2:e4:08:7b:8d:e1:38:78:29:1c:
43:aa:14:70:40:1b:96:6d:db:a6:cf:8b:4c:f6:6d:
7e:20:fd:43:87:b0:48:49:55:de:6d:d5:11:36:51:
c7:4d:2d:3f:98:38:a7:c8:c3:4d:e2:09:e2:2f:f6:
39:e1:37:5a:47:4f:54:42:13:1f:cb:e7:c3:de:51:
d8:31:42:f4:11:86:8c:da:e4:c1:5e:57:04:e4:9b:
81:b9:f4:56:64:8d:0b:cf:78:46:36:70:07:8d:51:
9d:0e:cf:7b:4b:77:a5:fd:32:db:ae:97:48:0f:5a:
ce:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:82:C9:8C:98:22:A0:15:59:46:BF:E8:EC:46:D9:42:8E:7C:88:BA
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/ZYLJjJgioBVZRr_o7EbZQo58iLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.44.0/23
185.104.13.0/24
Signature Algorithm: sha256WithRSAEncryption
38:0e:1d:cd:7a:15:0e:6c:62:47:0c:0a:d0:d8:bc:f0:25:f1:
d1:91:9a:29:5f:64:9b:19:74:b8:b8:d2:b9:8f:77:36:23:f1:
4d:73:71:7f:00:5f:bc:0d:ec:75:8d:1d:9d:db:93:eb:53:4b:
7a:b8:fd:0e:35:34:e6:3c:93:a2:93:09:ef:e8:09:b1:41:51:
e4:93:46:f0:d3:04:64:47:fc:fe:d9:89:a8:a6:fd:d9:70:be:
9b:f2:0e:08:a4:7c:a5:f3:cb:d9:ef:df:95:a6:8f:99:57:d9:
59:b7:5b:6c:8a:d9:2f:88:2d:cb:ac:a1:b8:86:34:57:2e:48:
16:2e:9e:f7:6b:39:bb:67:92:05:0c:67:a9:30:a9:07:d5:dd:
cb:36:aa:21:60:f7:03:30:cb:14:3b:66:c7:c6:76:96:14:7e:
52:50:2a:54:fa:a0:f0:43:98:bd:97:a0:33:ea:9f:80:db:56:
08:3d:02:28:25:af:f6:21:74:e5:b9:68:58:37:8a:f0:03:e4:
0d:ed:c1:9d:a1:5e:95:9e:3a:8c:89:15:ad:03:a9:26:bb:5e:
39:bf:49:d0:92:21:0b:95:c2:0f:4a:80:a7:a7:36:47:4f:cb:
51:06:84:48:55:8e:ba:e0:71:17:f8:77:86:c4:9c:29:7f:ab:
cc:e0:e4:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:21 2024 by rpki-client on console-fra.rpki-client.org