Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/zQLyYBYvsUBE_VZqmVUMrDqNjBc.roa
File: zQLyYBYvsUBE_VZqmVUMrDqNjBc.roa (raw, json)
Hash identifier: tdAwiXaPZIFKoaftywBxGrUf1pvn/wR2B8hw9UPYCig=
Subject key identifier: CD:02:F2:60:16:2F:B1:40:44:FD:56:6A:99:55:0C:AC:3A:8D:8C:17
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 0189261FE310A35714591D6578AC30F3857E
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/zQLyYBYvsUBE_VZqmVUMrDqNjBc.roa
Signing time: Wed 05 Jul 2023 12:56:11 +0000
ROA not before: Wed 05 Jul 2023 12:56:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140155
IP address blocks: 188.66.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:26:1f:e3:10:a3:57:14:59:1d:65:78:ac:30:f3:85:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Jul 5 12:56:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd02f260162fb14044fd566a99550cac3a8d8c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:43:95:f4:14:47:96:68:d7:fb:89:78:0e:e1:
46:7b:12:9b:cf:4d:6e:42:2d:dc:0f:77:08:9c:77:
40:f6:7b:3d:e4:ab:05:f9:dc:7d:7f:65:2e:68:aa:
71:98:40:d4:46:e8:5b:e6:84:f8:f6:97:25:35:1a:
32:55:7f:7f:07:b0:e9:78:d3:c7:84:5c:e5:51:ed:
36:b9:00:9c:2c:e2:32:d6:71:63:4d:c3:10:1c:2e:
de:9a:82:20:8f:da:30:b0:36:1b:da:40:58:6b:35:
0f:ac:ae:80:a4:fd:86:39:e9:82:54:41:ba:f3:24:
bd:5b:3e:1e:17:25:86:5a:b3:5f:de:50:3c:ab:de:
33:4f:d3:2c:48:53:fa:52:bf:5c:f9:61:24:a3:dc:
89:07:54:5a:a1:d6:df:0f:72:46:ab:54:e9:8a:80:
1f:6f:8d:1f:a0:8b:9e:1a:49:84:ef:63:99:28:bf:
05:16:c5:6a:d8:fd:1f:3b:25:88:bd:dd:80:5c:95:
e8:5c:22:4f:15:7d:8d:5e:99:41:c4:ad:e9:e0:83:
19:3d:f2:89:24:a4:5a:64:eb:1c:f9:90:3a:01:4c:
fd:94:1e:65:a1:b0:21:d8:18:02:e6:2b:16:42:e6:
d5:c8:22:e7:f3:f0:cf:41:61:16:33:b2:fe:2a:32:
d5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:02:F2:60:16:2F:B1:40:44:FD:56:6A:99:55:0C:AC:3A:8D:8C:17
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/zQLyYBYvsUBE_VZqmVUMrDqNjBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.25.0/24
Signature Algorithm: sha256WithRSAEncryption
02:95:1a:21:df:7b:52:f1:d5:0e:b2:fb:e1:0c:aa:08:d0:2b:
d2:28:a2:82:6e:34:69:d7:bf:ad:db:ed:28:bf:27:99:18:e0:
0a:03:30:f4:f7:19:0d:50:49:5f:0a:bd:49:ad:04:b3:48:2c:
ae:45:73:10:f5:6c:62:79:9d:67:6d:8e:26:32:2b:04:fa:92:
42:3c:07:82:50:ad:89:29:39:ce:30:a4:47:df:d0:7f:8f:7d:
2b:98:f6:d8:82:04:9e:8c:8e:ea:45:79:de:00:ef:0c:f2:ad:
b9:09:28:03:aa:93:9e:fd:cc:b4:83:08:16:0a:16:27:82:2e:
74:09:7e:b1:11:54:cf:80:ab:42:2e:af:04:af:81:4e:ac:9a:
f4:ab:1a:69:4f:52:aa:d6:e9:42:48:40:2e:6f:43:cd:3f:3d:
b2:5f:b3:35:27:f4:c2:5f:82:5c:6d:f1:a1:47:79:0c:4e:bc:
d2:58:f0:32:19:2a:b8:9c:e4:59:4e:36:d8:e1:e7:32:7a:5c:
4c:b2:0c:1f:6a:ef:b3:38:1e:d4:dd:91:ad:f0:d1:f5:c1:68:
e5:5d:8d:4f:61:ad:5b:d5:81:e4:5e:99:f8:b0:5e:77:e4:a0:
8b:b8:72:dd:35:c5:f1:8f:fe:73:97:78:b3:02:d2:f4:fb:44:
d6:ab:25:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 10:16:47 2023 by rpki-client on console-fra.rpki-client.org