Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/ZXqr02KOAuzBeJgYMjX0C-CJCpo.roa
File: ZXqr02KOAuzBeJgYMjX0C-CJCpo.roa (raw, json)
Hash identifier: krHYu9omqeD24qGSIH574kad+RCYqe9S73PS1z0mjOo=
Subject key identifier: 65:7A:AB:D3:62:8E:02:EC:C1:78:98:18:32:35:F4:0B:E0:89:0A:9A
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 018570E74E0847D6330DF7E960E36120FC3D
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/ZXqr02KOAuzBeJgYMjX0C-CJCpo.roa
Signing time: Mon 02 Jan 2023 05:14:45 +0000
ROA not before: Mon 02 Jan 2023 05:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15995
IP address blocks: 194.176.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:4e:08:47:d6:33:0d:f7:e9:60:e3:61:20:fc:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 2 05:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=657aabd3628e02ecc17898183235f40be0890a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9b:e7:8e:d1:d3:b6:78:73:bc:3f:99:be:06:
09:7e:fe:f0:62:fd:1c:73:c9:8d:01:24:10:d1:e9:
86:d0:ff:08:7b:af:f5:1f:f6:19:d8:1c:a9:87:ea:
42:cc:79:f4:00:4a:d3:bc:82:a8:2d:fd:9e:60:1e:
77:eb:64:15:80:91:08:13:86:73:69:0b:42:fe:c0:
68:ed:46:11:0b:7f:70:98:1e:76:6f:bf:1f:c9:55:
86:42:f7:94:cb:c4:97:e0:1c:b8:7e:a6:56:d7:ac:
59:60:7e:c1:b3:a3:3a:b0:90:f6:a4:24:8a:ee:f5:
6f:dc:52:94:6d:73:02:fa:4d:08:2d:3d:99:f8:74:
2c:73:51:e2:4d:80:41:47:a1:57:40:d7:a5:53:80:
3f:6c:8d:ed:d4:cf:eb:51:54:09:7c:39:86:80:85:
b4:5a:2e:6f:67:8c:f9:5d:d1:45:9a:04:51:07:08:
2f:3e:be:3e:06:2e:9e:94:07:a7:dd:35:36:88:00:
f9:a9:df:3a:60:d2:11:02:b0:bb:8e:9a:fb:3f:71:
33:0b:e4:34:f4:ef:68:f4:02:f2:a8:03:0b:cc:e9:
87:e9:cc:f3:36:fe:bf:f7:db:52:a8:af:8e:bf:9f:
38:03:8c:1f:45:95:62:9d:68:0b:dc:d3:81:b3:dd:
3d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:7A:AB:D3:62:8E:02:EC:C1:78:98:18:32:35:F4:0B:E0:89:0A:9A
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/ZXqr02KOAuzBeJgYMjX0C-CJCpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.176.58.0/24
Signature Algorithm: sha256WithRSAEncryption
97:8d:b0:4a:b5:35:08:f6:c0:22:2e:74:74:4a:37:c6:c9:6f:
b9:c5:7f:8f:b7:cf:07:57:d8:bb:7d:58:63:d9:ca:b9:02:da:
88:34:49:4a:9a:d0:49:28:f2:5a:54:06:15:fc:f8:06:bb:f0:
1a:ac:72:21:64:53:11:55:49:f1:cb:c7:a1:e0:61:79:fc:a4:
93:06:58:66:10:3a:a0:98:23:91:0c:96:f2:ae:47:78:1a:0a:
99:1f:55:69:6f:8d:96:2a:62:65:b9:d4:0c:4b:1d:ab:1b:91:
06:90:50:0f:59:98:72:1d:ba:2a:a0:bd:c8:43:ca:f2:77:e8:
a9:f9:5a:85:4a:4e:b2:e3:47:76:07:a1:1d:a9:81:77:a7:69:
43:fe:42:be:7a:07:c2:2b:37:f9:10:da:b0:3f:35:24:74:40:
13:ce:c8:79:41:1c:ef:cf:16:4c:53:70:6a:0f:87:ca:ce:ff:
c4:d0:4d:15:3c:4a:57:6e:d9:20:38:50:a2:b7:ba:ff:80:73:
49:e0:e3:41:93:67:16:3e:f2:e1:9f:9d:eb:5f:0b:b6:d4:5b:
32:16:c8:bd:d2:39:d3:9c:79:a2:23:70:f8:22:18:7e:f6:3f:
79:15:e3:7a:05:bc:f6:4c:bd:8c:73:7f:be:e0:e7:8e:87:01:
05:93:86:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:42 2024 by rpki-client on console-ams.rpki-client.org