Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/ZWTbWhfakgrzYiqmJ3PipnMSLmo.roa
File: ZWTbWhfakgrzYiqmJ3PipnMSLmo.roa (raw, json)
Hash identifier: xl+QwESKB6EP0HJOFctVGovQ3qbbPEJGDNkdBqVIjp4=
Subject key identifier: 65:64:DB:5A:17:DA:92:0A:F3:62:2A:A6:27:73:E2:A6:73:12:2E:6A
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018CCFC8BC7EC68BB7557E5C111635362D83
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/ZWTbWhfakgrzYiqmJ3PipnMSLmo.roa
Signing time: Wed 03 Jan 2024 14:44:48 +0000
ROA not before: Wed 03 Jan 2024 14:44:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205733
IP address blocks: 94.154.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 16:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cf:c8:bc:7e:c6:8b:b7:55:7e:5c:11:16:35:36:2d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 3 14:44:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6564db5a17da920af3622aa62773e2a673122e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d8:12:5f:39:d3:bc:b2:1f:7a:af:30:ca:ac:
31:53:1b:c5:2e:92:07:f6:89:8d:d4:aa:d4:9d:00:
09:1e:61:12:04:f3:b7:28:c5:65:eb:2a:f9:e0:5f:
c7:af:81:d8:67:33:6a:07:1d:b0:0a:70:97:c9:80:
20:67:1f:77:87:8a:6c:76:e8:7a:3b:04:80:ac:3c:
f4:6a:9f:a0:fb:29:75:5e:dc:52:51:a7:09:f0:78:
d2:08:b4:3d:ed:cd:c0:f0:b8:39:bc:4f:29:1d:6c:
90:ae:a3:55:bf:57:ff:b0:f6:91:d0:eb:52:07:a7:
42:35:67:b3:1f:ab:5e:de:a6:3b:e4:1d:35:6c:a0:
77:0f:4f:8b:75:9b:9f:d7:70:76:ad:03:6c:ab:42:
4e:99:09:ba:99:81:96:a7:0c:12:d5:0f:e1:e7:54:
26:0a:bd:47:83:f7:d4:2e:8e:45:23:76:81:2b:d2:
69:93:c6:45:49:8f:24:4d:94:c3:67:28:6f:4d:d0:
08:a3:af:53:d5:2c:b3:f9:aa:b0:14:e0:1f:ba:0c:
07:e7:f0:80:d5:b8:45:7c:34:e5:70:47:12:b4:be:
7b:73:43:eb:6e:67:84:6f:3a:84:65:b6:12:38:36:
ce:21:ff:cf:25:f5:71:0a:12:1b:41:56:73:26:5d:
df:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:64:DB:5A:17:DA:92:0A:F3:62:2A:A6:27:73:E2:A6:73:12:2E:6A
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/ZWTbWhfakgrzYiqmJ3PipnMSLmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.34.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:b0:7b:da:92:bc:0c:c4:79:2c:b1:9a:eb:69:60:a1:d7:ae:
b8:27:cd:35:92:dd:6f:6e:89:93:99:b2:e1:a8:20:24:8e:82:
56:70:28:14:2f:8d:2d:84:aa:40:ae:45:2d:13:5f:78:bd:bc:
b8:6c:4c:50:bd:5f:29:01:81:1b:c5:3b:54:e2:8d:86:9e:94:
90:81:6f:ff:c0:f8:e0:ce:d1:ee:35:36:33:84:59:ba:1f:b5:
65:60:86:4e:c3:0a:2f:0c:8b:22:11:68:68:22:a8:47:3f:c7:
58:12:9d:66:23:a0:e2:0d:26:6b:9a:4b:84:41:f4:6e:24:cd:
46:b1:ab:2d:a0:e4:5d:b4:66:cf:a4:31:5f:d7:56:5c:30:cf:
df:d7:86:88:c5:6e:f4:c8:56:ee:7c:a7:ad:e4:49:e3:a1:af:
ab:e3:eb:91:20:97:7c:99:d3:94:69:b3:5e:9e:25:65:37:e6:
a4:32:75:1f:99:42:dd:b8:10:95:40:d2:1c:06:60:0d:51:31:
5d:96:03:05:37:a5:b8:28:ae:46:d8:38:d5:dd:75:1e:d5:3b:
5d:c0:4f:10:a4:54:dd:06:b4:6b:ca:3c:6d:13:b3:5b:af:74:
e4:02:c9:1a:ed:ae:e3:50:a1:00:1f:c7:e3:85:d1:31:cc:68:
e9:0f:69:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 11 20:58:29 2024 by rpki-client on console-fra.rpki-client.org