Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/c54214-52d5-46dc-9939-c1402d261432/1/ZWA50sBq8QhQJE3xditm414u3aU.roa
File: ZWA50sBq8QhQJE3xditm414u3aU.roa (raw, json)
Hash identifier: 2j/uAhmg7WhzgWlUAz0wyoFcxh7hzwzfXD4OBuLitaU=
Subject key identifier: 65:60:39:D2:C0:6A:F1:08:50:24:4D:F1:76:2B:66:E3:5E:2E:DD:A5
Certificate issuer: /CN=1a885c37e747bce23ee9097e5ff7e983bcba0db4
Certificate serial: 01856E2FA3B853BD528EA31A5B4EDE1FBE14
Authority key identifier: 1A:88:5C:37:E7:47:BC:E2:3E:E9:09:7E:5F:F7:E9:83:BC:BA:0D:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GohcN-dHvOI-6Ql-X_fpg7y6DbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/c54214-52d5-46dc-9939-c1402d261432/1/ZWA50sBq8QhQJE3xditm414u3aU.roa
Signing time: Sun 01 Jan 2023 16:34:53 +0000
ROA not before: Sun 01 Jan 2023 16:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210162
IP address blocks: 194.180.44.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:a3:b8:53:bd:52:8e:a3:1a:5b:4e:de:1f:be:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a885c37e747bce23ee9097e5ff7e983bcba0db4
Validity
Not Before: Jan 1 16:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=656039d2c06af10850244df1762b66e35e2edda5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a3:30:05:78:7f:0d:af:87:50:31:e5:f6:4c:
f0:83:73:6c:df:85:cd:fb:7b:3a:54:d8:48:da:7b:
3a:fc:2b:ac:23:a5:c1:1d:3a:eb:be:74:f6:76:71:
fa:c5:3d:22:96:8e:3c:a5:ba:72:c8:f4:66:30:86:
81:38:53:c8:25:e4:0b:56:2c:3d:0f:5b:77:ba:80:
4c:9b:8f:2e:92:c8:56:41:11:75:b3:a5:4a:4f:41:
42:d3:08:2b:61:e6:3d:5f:78:b2:29:92:83:fd:3b:
32:7f:85:c4:21:30:34:9e:c7:ca:27:7c:4f:a7:a8:
5c:92:29:8e:d6:bb:16:bc:34:f5:67:00:ac:5f:36:
e1:96:e3:2d:ab:df:1d:88:32:da:f1:cb:ec:39:18:
d8:a8:cd:23:01:c4:12:58:30:b8:83:21:67:b3:18:
6d:06:12:2b:8a:14:73:f6:29:6c:24:0d:1a:f1:c8:
0e:82:39:ca:27:2e:80:73:67:33:1f:ae:7a:45:0e:
a7:8e:18:e8:2f:af:d4:45:ba:fa:88:8f:3c:82:6f:
90:64:4f:c9:c4:8c:45:66:29:42:be:5d:33:38:a6:
c7:02:97:5b:d0:26:86:02:db:a5:c6:a1:3a:cc:26:
f3:5b:9f:46:1e:c7:9e:50:43:58:f2:a4:cd:b0:66:
ae:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:60:39:D2:C0:6A:F1:08:50:24:4D:F1:76:2B:66:E3:5E:2E:DD:A5
X509v3 Authority Key Identifier:
keyid:1A:88:5C:37:E7:47:BC:E2:3E:E9:09:7E:5F:F7:E9:83:BC:BA:0D:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GohcN-dHvOI-6Ql-X_fpg7y6DbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c54214-52d5-46dc-9939-c1402d261432/1/ZWA50sBq8QhQJE3xditm414u3aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c54214-52d5-46dc-9939-c1402d261432/1/GohcN-dHvOI-6Ql-X_fpg7y6DbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.44.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:38:fd:6f:a5:53:bf:92:6a:87:f6:7e:8c:24:fa:54:7e:ca:
3c:99:6a:3f:9d:64:ee:1b:67:1e:31:c8:d6:74:bd:48:7e:3b:
ab:54:96:2a:db:82:7a:55:0a:98:24:57:2b:79:e5:70:33:2d:
93:6a:7f:16:69:2c:05:92:4f:8a:e3:81:e5:22:6a:64:60:74:
c5:95:79:70:ca:97:cb:f1:c2:66:8c:e9:a6:05:82:b0:18:f0:
15:62:c2:44:89:ac:3e:5c:d1:fe:a3:89:b1:f5:20:fb:e5:c0:
07:02:19:49:f1:e8:9d:fd:18:90:10:4d:8d:ad:b5:d3:51:23:
fa:7c:6e:97:72:74:73:d5:07:8b:0a:43:c6:68:d1:60:f1:3d:
30:87:bf:22:30:cd:a1:8f:95:37:a3:b4:12:a2:f2:6d:d5:53:
c5:42:c0:e0:5b:9a:71:bf:f7:96:54:d7:95:42:80:e4:88:90:
13:ff:2b:ae:57:42:e3:f4:3e:d5:7f:d6:f3:48:da:3b:da:cd:
7e:99:81:18:32:9f:9f:0c:2a:da:f3:70:b9:54:68:1f:de:dd:
bb:b8:e5:b1:88:f6:21:f6:68:ec:86:9e:7f:18:29:66:e3:16:
cb:1e:5a:03:74:bd:17:4c:de:34:a8:54:e9:1e:9a:f6:53:ac:
8a:a3:8b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:24 2024 by rpki-client on console-fra.rpki-client.org