Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/zc6TBccBArO_hjQs0Qs1OWf0Iwg.roa
File: zc6TBccBArO_hjQs0Qs1OWf0Iwg.roa (raw, json)
Hash identifier: 0sNzGemzrGlioeQAdDsoqnKbVFGD/Sg5L6EGKPqKebU=
Subject key identifier: CD:CE:93:05:C7:01:02:B3:BF:86:34:2C:D1:0B:35:39:67:F4:23:08
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E0EF5EB4B18CD4FB0FFFFDD3CEBE561BF
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/zc6TBccBArO_hjQs0Qs1OWf0Iwg.roa
Signing time: Tue 05 Mar 2024 14:13:01 +0000
ROA not before: Tue 05 Mar 2024 14:13:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9123
IP address blocks: 45.132.50.0/24 maxlen: 24
213.109.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 15:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0e:f5:eb:4b:18:cd:4f:b0:ff:ff:dd:3c:eb:e5:61:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 5 14:13:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cdce9305c70102b3bf86342cd10b353967f42308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5f:1d:78:b2:d9:fd:47:99:39:5a:24:e7:b6:
f4:02:19:e3:a8:25:1d:ff:94:99:0a:0a:7b:ab:19:
4d:ce:86:c9:90:fb:d5:30:1e:4c:99:b7:bb:49:74:
16:01:3d:f3:dd:73:88:1f:55:56:b2:84:a6:a6:60:
e6:68:b9:bf:d8:6f:6c:ab:13:dc:ec:8b:5a:af:f6:
8f:ba:56:00:b9:a2:da:bd:0a:2e:ad:1e:35:6e:ed:
2b:f6:c0:fa:87:c5:28:09:ba:23:ea:2b:0d:07:b6:
38:85:de:9f:89:36:01:76:27:84:0e:c9:ec:90:a2:
56:5b:c3:ce:4a:7e:9f:8c:c5:9c:83:26:2f:af:8a:
d5:ab:84:0f:08:6a:f3:22:da:0d:5c:bf:40:64:96:
59:7f:e1:1a:49:5a:c0:c2:b5:9c:9f:0b:7a:63:e7:
e8:87:42:e7:1d:cd:f7:fa:78:4b:34:40:e6:25:60:
97:29:81:a7:b6:6b:97:5d:ba:52:58:46:50:f6:93:
cc:ff:9a:cf:fc:e7:86:3d:5f:d8:e9:7b:e0:3f:d9:
51:dd:86:cd:80:15:1b:bb:e2:d2:77:0a:cc:0e:51:
24:b6:3d:07:3c:b8:25:da:73:73:39:8b:9a:7c:ca:
3b:d5:38:77:09:17:74:6c:ab:34:34:b3:f5:44:d9:
25:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:CE:93:05:C7:01:02:B3:BF:86:34:2C:D1:0B:35:39:67:F4:23:08
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/zc6TBccBArO_hjQs0Qs1OWf0Iwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.50.0/24
213.109.204.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:d2:af:e4:5a:8b:54:f2:aa:2d:b4:74:72:e6:d9:3f:e6:61:
1c:1c:34:43:fc:26:1d:dd:66:bf:4d:04:c7:35:60:73:c1:2d:
6d:05:94:9f:96:3b:e0:02:49:b2:65:ff:fd:4a:8d:77:13:d4:
39:b4:56:c3:db:a6:61:13:37:45:66:18:fa:72:bc:2a:3f:36:
32:e1:cd:2a:8f:13:9c:aa:68:f1:08:3d:0b:9e:a5:65:99:d3:
f8:2f:8a:df:bb:26:a3:05:21:57:c2:a3:c4:7c:5a:74:0a:d8:
9e:77:cf:df:37:9b:c5:f4:4b:90:52:db:19:4c:07:86:eb:24:
ab:ad:03:81:ba:09:77:da:6c:ad:20:d0:db:68:25:09:de:e5:
a3:7c:0b:6f:7f:4f:9b:4c:fb:3d:86:e9:b1:de:a6:d7:88:6e:
dd:6b:93:b3:b3:36:2e:61:3b:61:58:26:dd:15:37:b3:c9:22:
b6:12:0a:a6:1c:e9:b9:28:81:c6:5c:e4:31:3f:6a:f1:24:9e:
9d:74:21:3b:35:e6:96:82:6e:34:8e:40:c6:2b:77:39:d3:13:
e1:02:bf:6e:90:0c:b5:68:37:77:5c:c7:85:e3:4e:bc:51:a0:
d4:a7:0f:de:56:3d:ad:28:04:33:42:a1:ee:58:3c:70:52:68:
b6:08:2b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org