Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/ZFh_gxLwutcWqw2iWXOiyvnAtuM.roa
File: ZFh_gxLwutcWqw2iWXOiyvnAtuM.roa (raw, json)
Hash identifier: qa5EgT3w8ABFUXm9BD/ykOrszY+xRQX+H/EsU8P7B0Q=
Subject key identifier: 64:58:7F:83:12:F0:BA:D7:16:AB:0D:A2:59:73:A2:CA:F9:C0:B6:E3
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 01904B69F98A4A399147FA3281C4A96C0873
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/ZFh_gxLwutcWqw2iWXOiyvnAtuM.roa
Signing time: Mon 24 Jun 2024 18:02:34 +0000
ROA not before: Mon 24 Jun 2024 18:02:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3758
IP address blocks: 212.124.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 06:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4b:69:f9:8a:4a:39:91:47:fa:32:81:c4:a9:6c:08:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: Jun 24 18:02:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64587f8312f0bad716ab0da25973a2caf9c0b6e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b1:5c:23:59:05:b3:40:5a:d0:3d:d8:fd:35:
0d:7a:0f:0f:65:da:ac:58:e5:72:9f:4d:75:f6:d6:
1a:c1:cb:56:df:fa:a4:14:05:b7:cb:63:bc:4c:c7:
17:98:c6:c3:b0:d6:b7:b0:df:d4:b0:c2:f0:41:6a:
81:3b:04:4f:42:62:7d:e0:9b:ac:31:1e:b3:e7:0e:
d8:97:4f:32:ed:fb:b1:d0:2c:35:69:6d:1d:3e:ef:
cd:28:5c:5a:9b:e2:b5:1f:e6:2e:4c:32:cf:dc:33:
63:10:ad:c2:f5:a4:08:bd:55:a4:44:cf:fb:0c:4d:
c8:29:8e:d2:92:fc:62:9d:e7:8d:95:5d:26:bf:1e:
c1:89:ec:08:b8:17:fe:18:2b:1d:75:b3:96:87:91:
bc:e2:f8:c1:9e:b3:30:b7:43:24:ab:7d:53:50:fc:
20:28:07:21:56:ab:17:e6:7a:dd:dc:25:3b:30:55:
f2:a2:ec:d5:4d:fc:d4:43:bb:2c:87:c3:23:cc:d4:
cc:14:a7:9d:16:0b:7a:03:d9:af:28:bc:fd:b3:05:
f5:ab:3c:2f:28:93:88:a4:7e:c7:6d:13:35:d0:29:
ad:98:08:f7:92:02:a3:de:86:f9:98:02:f0:30:59:
66:43:e1:d7:44:d6:6d:88:bb:1c:cf:19:b6:f4:b0:
7f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:58:7F:83:12:F0:BA:D7:16:AB:0D:A2:59:73:A2:CA:F9:C0:B6:E3
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/ZFh_gxLwutcWqw2iWXOiyvnAtuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.124.93.0/24
Signature Algorithm: sha256WithRSAEncryption
21:9a:30:31:01:c1:b7:7f:90:17:47:9a:71:c2:08:1c:75:9a:
48:72:dc:19:d3:0c:f5:73:22:1b:5c:b7:12:82:86:a1:8f:f4:
20:6c:00:f3:a6:e1:fa:2b:17:af:4e:bd:c3:4b:de:68:f5:0c:
ae:29:2f:e1:af:45:3e:fe:e0:90:aa:0f:dc:46:e1:fc:73:44:
be:59:22:75:58:14:86:85:ce:ef:37:05:a7:77:4f:8b:ff:45:
82:c7:c1:e2:16:7e:4c:e2:35:36:2f:42:89:1f:39:7d:d9:71:
65:88:fd:97:7e:87:42:a6:80:b5:d0:3a:b1:b9:35:0a:97:22:
19:17:1c:a8:1f:b8:a9:38:41:a7:1d:bd:5d:6d:8c:39:5b:05:
23:16:f2:dd:47:bb:da:42:8a:7e:d1:5c:da:76:e2:2e:be:ee:
dc:5e:06:40:a3:35:2c:03:60:81:09:74:95:a7:e9:de:ab:b4:
5c:0b:49:ba:5d:aa:00:09:3d:f8:1f:c5:08:3f:e7:57:88:11:
b0:cc:d6:31:c6:ac:3d:f2:2a:ae:b7:9b:c7:6d:41:c6:d7:e5:
bb:b6:25:01:8e:46:35:9e:ea:5e:a4:e1:d2:2d:bc:5a:4d:be:
b4:cf:35:b4:37:7c:e1:25:28:ae:83:3c:a0:42:8d:d3:c6:a7:
5f:ee:c5:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 07:49:54 2024 by rpki-client on console-ams.rpki-client.org