Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/ZRzR7ZXofQeFl5dm1D08SFjCVjA.roa
File: ZRzR7ZXofQeFl5dm1D08SFjCVjA.roa (raw, json)
Hash identifier: ckJO3d8BJk5+6mxqoD8W/izYjNO3Epuye0t4Ku61i6U=
Subject key identifier: 65:1C:D1:ED:95:E8:7D:07:85:97:97:66:D4:3D:3C:48:58:C2:56:30
Certificate issuer: /CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Certificate serial: 01857315C1F36EEDBD1D73FE64892A4FE22A
Authority key identifier: 96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/ZRzR7ZXofQeFl5dm1D08SFjCVjA.roa
Signing time: Mon 02 Jan 2023 15:24:43 +0000
ROA not before: Mon 02 Jan 2023 15:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58256
IP address blocks: 185.83.184.0/24 maxlen: 24
185.83.186.0/24 maxlen: 24
185.83.185.0/24 maxlen: 24
185.83.187.0/24 maxlen: 24
37.143.145.0/24 maxlen: 24
37.143.144.0/24 maxlen: 24
185.42.213.0/24 maxlen: 24
185.42.212.0/24 maxlen: 24
185.42.215.0/24 maxlen: 24
185.42.214.0/24 maxlen: 24
37.143.151.0/24 maxlen: 24
37.143.150.0/24 maxlen: 24
37.143.149.0/24 maxlen: 24
37.143.148.0/24 maxlen: 24
37.143.147.0/24 maxlen: 24
37.143.146.0/24 maxlen: 24
185.83.31.0/24 maxlen: 24
185.83.30.0/24 maxlen: 24
185.83.29.0/24 maxlen: 24
91.108.132.0/24 maxlen: 24
91.108.131.0/24 maxlen: 24
91.108.130.0/24 maxlen: 24
91.108.129.0/24 maxlen: 24
91.108.128.0/24 maxlen: 24
91.108.139.0/24 maxlen: 24
91.108.133.0/24 maxlen: 24
91.108.138.0/24 maxlen: 24
91.108.137.0/24 maxlen: 24
91.108.136.0/24 maxlen: 24
91.108.135.0/24 maxlen: 24
91.108.134.0/24 maxlen: 24
91.108.140.0/24 maxlen: 24
91.108.145.0/24 maxlen: 24
91.108.144.0/24 maxlen: 24
91.108.143.0/24 maxlen: 24
91.108.142.0/24 maxlen: 24
91.108.141.0/24 maxlen: 24
91.108.152.0/24 maxlen: 24
91.108.151.0/24 maxlen: 24
91.108.150.0/24 maxlen: 24
91.108.149.0/24 maxlen: 24
91.108.148.0/24 maxlen: 24
91.108.147.0/24 maxlen: 24
91.108.146.0/24 maxlen: 24
91.108.154.0/24 maxlen: 24
91.108.153.0/24 maxlen: 24
91.108.159.0/24 maxlen: 24
91.108.158.0/24 maxlen: 24
91.108.157.0/24 maxlen: 24
91.108.156.0/24 maxlen: 24
91.108.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Apr 2023 04:51:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:c1:f3:6e:ed:bd:1d:73:fe:64:89:2a:4f:e2:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Validity
Not Before: Jan 2 15:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=651cd1ed95e87d0785979766d43d3c4858c25630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:17:24:97:ab:aa:5e:24:f7:f0:f7:02:4d:1a:
da:04:3c:7d:b2:79:a6:b5:5d:4c:ca:1b:35:54:2f:
f1:11:77:b1:2b:75:9a:02:d0:8f:42:7c:b1:98:96:
83:99:57:2d:18:68:a2:19:54:fd:18:e1:b0:36:d9:
ad:ac:6d:6f:c5:77:df:ea:47:57:3b:f9:48:bd:b5:
a8:30:73:a5:f3:2c:16:f9:3c:13:7f:c0:12:a5:29:
2f:23:c9:dc:e9:9d:22:95:b7:e6:15:8c:c6:01:7d:
ee:d0:6a:31:ea:3b:1c:d7:cc:3d:85:3c:da:6b:21:
ba:b1:fd:b0:2f:49:98:32:bd:3c:c2:3b:c6:94:df:
e7:f4:8f:bb:98:57:9d:4c:f2:8a:66:f2:ac:96:32:
ee:f8:4e:59:2e:5a:e9:83:cf:3b:be:5e:bc:49:11:
ab:33:2b:89:33:98:d1:b4:6d:6c:92:8b:c7:76:7f:
ca:c3:e3:d2:45:d4:d8:e9:9c:4b:1a:1f:fe:8c:2b:
80:e6:23:94:7e:50:96:66:9e:9f:82:08:c7:31:b7:
f0:85:93:2c:8e:cc:a7:97:44:51:9b:b8:e3:fc:e4:
0c:f2:8e:16:bf:1a:ef:03:fa:44:9d:fc:8e:d4:fc:
70:b3:ef:40:13:6d:2c:d2:2e:7b:ae:51:0a:1e:08:
ae:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1C:D1:ED:95:E8:7D:07:85:97:97:66:D4:3D:3C:48:58:C2:56:30
X509v3 Authority Key Identifier:
keyid:96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/ZRzR7ZXofQeFl5dm1D08SFjCVjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/lsvPLpV8qNlCRyp7AEQoWybbayI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.144.0/21
91.108.128.0/19
185.42.212.0/22
185.83.29.0-185.83.31.255
185.83.184.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:14:b4:8c:70:2a:ad:a5:88:c5:e1:ed:3a:a6:5c:aa:d2:0c:
5e:a3:e0:cf:8e:48:8e:a5:f0:16:f8:f6:fc:55:b3:9f:ad:c0:
48:69:f0:09:ad:52:0b:a1:e0:ed:59:95:93:42:22:6a:1f:90:
d4:67:6f:ee:75:9a:1a:b2:09:e5:5f:1e:90:b1:f6:69:39:9a:
16:71:21:15:d2:b3:46:b0:98:4c:b9:e3:a2:01:43:85:1d:d9:
da:95:b7:2c:ea:c4:27:57:4d:18:a4:61:4e:b7:35:f4:d1:63:
1a:3d:44:1f:5c:e1:72:12:96:d8:77:fe:15:0a:8b:0b:51:b1:
f3:79:f7:da:62:85:2f:27:ef:05:80:f6:37:70:e1:63:cc:f4:
40:a6:6a:8a:ba:92:33:24:a4:53:8d:c1:66:89:4c:0c:ff:18:
e3:7b:f1:d2:0a:23:f2:41:5d:79:bd:58:ab:12:ad:09:68:bc:
58:06:0e:f6:4c:5e:3c:cc:33:71:96:1c:49:3b:99:09:c9:51:
b5:b9:ca:0c:24:09:40:30:e6:ce:f6:64:5c:d7:12:8d:1b:ae:
7d:58:1a:e5:ca:f7:e0:69:0d:3d:ab:d0:41:c9:3e:f4:1a:be:
78:c7:86:21:36:3d:e2:32:20:1b:c3:17:d0:92:71:4a:6f:84:
a5:9e:97:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:19 2024 by rpki-client on console-ams.rpki-client.org