Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/ZOMJr7-4JZzujBF2cN3Jl8qBd_o.roa
File: ZOMJr7-4JZzujBF2cN3Jl8qBd_o.roa (raw, json)
Hash identifier: YYivlEK0c1CjG2mEbKan/85zWxaMV00RZ50VhrEx+zA=
Subject key identifier: 64:E3:09:AF:BF:B8:25:9C:EE:8C:11:76:70:DD:C9:97:CA:81:77:FA
Certificate issuer: /CN=0ef47d753d25289fd98794974aa0536010567bd9
Certificate serial: 0185710C0AE6BCC817ECEFCBA80DF81281FC
Authority key identifier: 0E:F4:7D:75:3D:25:28:9F:D9:87:94:97:4A:A0:53:60:10:56:7B:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/ZOMJr7-4JZzujBF2cN3Jl8qBd_o.roa
Signing time: Mon 02 Jan 2023 05:54:52 +0000
ROA not before: Mon 02 Jan 2023 05:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 185.242.219.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:0a:e6:bc:c8:17:ec:ef:cb:a8:0d:f8:12:81:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef47d753d25289fd98794974aa0536010567bd9
Validity
Not Before: Jan 2 05:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64e309afbfb8259cee8c117670ddc997ca8177fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:21:71:d8:16:a8:20:37:9e:0e:b6:2b:49:d3:
71:96:5c:f4:9b:79:2b:c6:c8:0b:53:59:c0:1b:bf:
98:16:a1:2c:fc:2d:96:7d:a8:e0:fd:e5:0f:25:a9:
42:31:50:8c:bc:4a:d8:63:00:8d:72:dc:eb:90:38:
0b:8d:b7:36:64:b8:d4:23:1c:5a:d6:31:a7:1c:7c:
28:4a:be:4e:2b:45:a3:82:66:c5:80:de:0f:3e:39:
f2:fd:09:49:8c:6f:5f:03:92:e5:5d:3f:79:3e:c7:
88:a5:02:85:69:4d:2e:24:67:5e:2b:3d:18:52:42:
a4:dd:e6:6c:6d:49:b6:68:3e:ba:59:50:5c:b3:83:
0b:60:3d:37:62:2a:ba:6e:0f:39:ff:40:37:76:e3:
2a:15:de:bf:d6:cf:d4:a5:1c:d4:de:34:23:c9:2b:
6d:4b:17:f8:60:e0:79:3a:73:ef:f9:92:5c:31:10:
d3:59:a1:ce:b6:b3:8a:6d:25:bf:e7:45:a1:ba:a3:
33:bf:95:28:14:4d:9a:21:e5:e8:56:b6:9c:fc:5d:
98:d2:d4:3b:6a:60:19:31:a9:fb:00:52:d3:1a:1c:
c3:92:f6:8b:d6:43:25:1b:2a:10:1d:73:64:74:71:
fe:b9:94:78:7f:27:28:1b:8b:31:e8:6f:b2:75:72:
1a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E3:09:AF:BF:B8:25:9C:EE:8C:11:76:70:DD:C9:97:CA:81:77:FA
X509v3 Authority Key Identifier:
keyid:0E:F4:7D:75:3D:25:28:9F:D9:87:94:97:4A:A0:53:60:10:56:7B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/ZOMJr7-4JZzujBF2cN3Jl8qBd_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.219.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:8c:ca:bd:b9:4b:2b:d3:71:1e:23:e5:bd:b2:e9:5c:28:2e:
c3:d4:31:d1:c0:f8:75:11:7a:cd:60:81:68:64:83:ed:27:f0:
dc:8c:79:7a:eb:e8:72:9c:15:36:e3:a1:71:88:03:87:cd:86:
9d:eb:8b:49:0c:0e:79:4b:8a:29:45:61:af:66:9d:e8:39:60:
e6:66:f8:49:6b:ca:ea:11:cc:fe:ed:04:a1:c6:d8:41:45:27:
b5:51:4b:10:2f:49:f3:c6:20:46:54:08:73:51:b0:3e:4a:d0:
e8:fe:5a:c0:a1:c7:b5:f4:a2:b2:f4:88:21:06:9b:fc:6b:ee:
b8:e2:ae:00:f9:63:f4:bf:51:c9:d8:98:03:fb:76:6b:40:82:
3d:9d:91:bf:32:98:40:72:e2:fe:cb:35:7b:42:68:cd:be:83:
c3:47:8f:46:2b:14:5c:2f:cf:37:b8:fd:8e:9a:d2:06:9c:15:
9e:62:a9:f7:b0:39:76:cf:ef:9f:fb:6a:cb:4c:5c:43:af:8e:
a3:6f:eb:fa:2d:50:2f:96:f1:cd:79:bc:bd:91:6e:18:60:bd:
d0:62:85:32:42:66:67:c0:ba:7e:2d:8b:bc:40:09:4d:4f:40:
df:42:1e:46:a9:5c:c3:d7:3b:a8:e7:62:4b:df:fc:01:8d:ee:
56:fe:f5:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:22 2024 by rpki-client on console-ams.rpki-client.org