Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/ZFci5pFPGZ6fdLmp-HowtkXezEw.roa
File: ZFci5pFPGZ6fdLmp-HowtkXezEw.roa (raw, json)
Hash identifier: 3TgyE7iyw0Ka9kHmr/QEqAUYGDBktDxZ/Fw3EujAFxM=
Subject key identifier: 64:57:22:E6:91:4F:19:9E:9F:74:B9:A9:F8:7A:30:B6:45:DE:CC:4C
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0189F8D7051AC621DC359614E0180C546E1F
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/ZFci5pFPGZ6fdLmp-HowtkXezEw.roa
Signing time: Tue 15 Aug 2023 10:56:28 +0000
ROA not before: Tue 15 Aug 2023 10:56:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212036
IP address blocks: 2.187.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:d7:05:1a:c6:21:dc:35:96:14:e0:18:0c:54:6e:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Aug 15 10:56:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645722e6914f199e9f74b9a9f87a30b645decc4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:08:5d:8e:0a:16:05:77:1f:be:64:a0:27:3f:
7e:d5:19:e9:f9:7f:25:7b:fc:e0:67:86:5c:8d:7c:
4d:3c:7f:df:a2:09:6e:4a:2d:a4:d7:ed:5f:f6:8c:
cc:33:c9:09:4b:76:a0:5e:04:ba:9d:1f:84:76:33:
a5:ba:16:23:66:85:9e:87:84:59:ac:37:a9:6c:0f:
2d:83:1b:9a:a4:ae:7d:c4:6f:f6:b5:89:60:cd:41:
ea:20:d4:e1:2c:66:14:a3:25:1d:c3:e5:d7:c8:00:
a6:56:e9:52:24:10:bc:03:d0:95:02:b4:ca:d1:20:
69:98:d7:c8:35:52:7d:b3:c6:21:45:48:d0:86:55:
89:e0:c9:cb:d4:9d:b6:a3:b2:57:aa:ab:79:1f:a7:
97:db:dc:9c:45:16:ba:6d:d3:c6:3c:d9:1e:bf:bf:
96:16:aa:c3:93:51:50:8f:6b:4b:96:dc:cc:eb:ab:
1d:0d:31:39:2e:bf:9a:5d:16:1f:c9:6b:f1:8e:09:
a4:a9:ed:f1:51:db:d8:e6:bf:a7:60:81:a4:a8:8a:
e7:dd:0a:08:b8:06:2a:7d:22:80:81:86:7e:5f:3c:
dc:ce:1f:1c:e1:21:27:af:14:b1:53:64:ac:10:07:
b5:61:ef:b5:c9:79:58:99:ef:2e:6f:01:d1:bc:d2:
f4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:57:22:E6:91:4F:19:9E:9F:74:B9:A9:F8:7A:30:B6:45:DE:CC:4C
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/ZFci5pFPGZ6fdLmp-HowtkXezEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.187.14.0/24
Signature Algorithm: sha256WithRSAEncryption
41:9c:e0:6c:2f:ce:dd:4f:c4:a0:8c:26:04:aa:b2:8b:95:70:
a8:e0:7c:db:5e:03:e0:62:f6:3e:5b:c8:b0:9b:3d:84:04:85:
44:8e:75:9e:8f:15:d1:25:7c:9f:74:a6:93:a9:ce:b0:60:2c:
61:c2:5d:a5:99:4a:79:2d:da:b7:fe:0f:af:09:26:28:38:84:
20:25:4b:54:ec:79:49:a4:c2:9f:15:f8:9a:e9:d1:5d:de:1e:
80:72:96:6d:3e:8e:b9:22:30:90:ae:c4:5d:b8:05:2c:15:b3:
ab:56:a6:ca:f9:7f:91:a8:cd:6a:df:b3:54:1d:67:91:a3:4b:
24:56:5f:47:80:77:c7:06:e0:f2:ef:1d:06:dc:67:85:dd:0c:
97:9f:61:6b:01:b8:e0:ad:4a:64:f9:da:db:4a:5e:cb:51:21:
22:59:c8:9a:d0:2a:0e:37:84:5f:d5:80:8c:f2:27:1f:e2:2c:
7a:37:a9:fc:06:fd:df:db:c5:94:b7:87:cf:a8:38:1f:c1:85:
13:fa:83:bd:32:0b:03:4b:44:20:af:29:5b:ec:8a:13:09:29:
73:7c:3c:1f:9b:d0:6a:b3:82:79:97:2f:bb:bd:d6:81:0d:5d:
74:f8:54:cc:c6:25:38:cf:db:11:67:e9:23:62:79:b2:1b:4e:
9b:42:34:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:53 2024 by rpki-client on console-ams.rpki-client.org