Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e3b9d9-be9f-4a76-b3a3-3e05b37e138b/1/ZxUISlq7yRDVLX7rU2AWRmXu44A.roa
File: ZxUISlq7yRDVLX7rU2AWRmXu44A.roa (raw, json)
Hash identifier: 3O/nqENO5Uk4vciXQ8AfKASEVM5I0/BceIMR41rBSDQ=
Subject key identifier: 67:15:08:4A:5A:BB:C9:10:D5:2D:7E:EB:53:60:16:46:65:EE:E3:80
Certificate issuer: /CN=ecbc33fd01178ae2f974eeed5dcdcd3c175e16a7
Certificate serial: 018572CCA848F07EF330D3C8A613E70777B9
Authority key identifier: EC:BC:33:FD:01:17:8A:E2:F9:74:EE:ED:5D:CD:CD:3C:17:5E:16:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Lwz_QEXiuL5dO7tXc3NPBdeFqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e3b9d9-be9f-4a76-b3a3-3e05b37e138b/1/ZxUISlq7yRDVLX7rU2AWRmXu44A.roa
Signing time: Mon 02 Jan 2023 14:04:53 +0000
ROA not before: Mon 02 Jan 2023 14:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.228.0.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:a8:48:f0:7e:f3:30:d3:c8:a6:13:e7:07:77:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecbc33fd01178ae2f974eeed5dcdcd3c175e16a7
Validity
Not Before: Jan 2 14:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6715084a5abbc910d52d7eeb5360164665eee380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:79:bb:45:fb:e8:2c:73:57:4d:3e:5d:52:b7:
14:93:00:ba:1e:00:37:c8:52:32:33:27:97:1f:06:
c8:c1:b4:75:93:19:b0:25:56:76:ff:1f:3e:c0:4d:
98:3b:d8:1f:7b:d6:d0:b1:17:5b:a3:2f:c5:b2:a8:
05:59:fc:d0:d4:93:e7:18:49:03:88:8c:d5:d4:5c:
17:95:bc:11:5c:e3:3c:52:e4:66:b7:09:b8:c0:14:
0e:25:7c:43:31:29:cd:06:ee:04:2f:45:a7:5a:28:
89:ba:43:ba:19:60:18:79:ec:62:8a:eb:4a:c9:29:
f3:67:5d:39:1c:71:22:a8:5c:ce:7b:33:14:77:80:
61:1f:13:33:53:5e:50:f0:98:82:ed:ae:83:55:21:
22:14:1f:fe:57:6f:97:6b:6d:a0:d2:bc:8d:ce:2d:
36:bb:94:42:ca:b7:8c:3e:39:db:d6:19:16:92:73:
8e:26:0f:d2:de:dc:7f:eb:0d:da:80:ed:b6:88:40:
da:29:91:08:db:0f:26:39:1f:0f:7e:84:9d:0c:a6:
e9:10:b1:85:c4:67:e2:af:9c:00:6a:86:60:0f:f8:
a4:40:ae:8f:cc:96:01:39:a2:b8:18:fb:cf:22:34:
94:e3:e8:af:ea:2c:f2:d0:c3:86:4c:4f:9d:c0:36:
03:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:15:08:4A:5A:BB:C9:10:D5:2D:7E:EB:53:60:16:46:65:EE:E3:80
X509v3 Authority Key Identifier:
keyid:EC:BC:33:FD:01:17:8A:E2:F9:74:EE:ED:5D:CD:CD:3C:17:5E:16:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Lwz_QEXiuL5dO7tXc3NPBdeFqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e3b9d9-be9f-4a76-b3a3-3e05b37e138b/1/ZxUISlq7yRDVLX7rU2AWRmXu44A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e3b9d9-be9f-4a76-b3a3-3e05b37e138b/1/7Lwz_QEXiuL5dO7tXc3NPBdeFqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.0.0/24
Signature Algorithm: sha256WithRSAEncryption
34:d2:00:57:9a:6e:d2:d2:f3:cb:b8:b8:30:a6:63:c2:57:78:
39:e2:3f:8e:ea:f7:1d:86:d6:a5:86:e6:75:e3:0b:21:4d:5f:
20:f0:a2:b4:19:63:63:cc:bc:fc:2d:d6:a0:6b:8f:02:98:f6:
63:83:b6:6e:b5:c8:16:05:b2:97:37:b5:c7:6b:9c:44:4c:53:
ad:bb:28:ef:98:1a:07:1c:44:4e:7a:cc:cf:14:c1:d3:e3:1f:
03:52:ce:c8:b1:87:89:19:f5:7b:6c:85:f2:c2:d0:23:fd:9e:
20:e3:2f:83:32:e3:e4:41:e5:da:76:b6:89:31:18:2a:c3:04:
6a:6d:a2:cf:0c:95:46:e4:58:77:84:78:00:3e:2f:a9:66:94:
85:24:0f:c8:39:69:6a:37:13:22:0c:30:f4:30:d9:10:32:ec:
8e:91:fd:9b:40:06:17:d1:21:47:cd:a1:a9:bb:33:c3:a6:1d:
f3:97:d3:f6:81:a9:38:e4:c8:2d:45:2d:77:82:7c:24:47:e5:
f4:13:84:5c:fa:36:2f:51:01:f2:b5:6b:6f:9d:46:c2:9f:42:
b3:39:fa:56:f6:ee:35:92:65:33:c0:c8:20:51:fe:2b:13:be:
0f:86:06:d0:38:7f:c4:b3:cd:f7:68:22:5e:21:e7:a6:af:a6:
89:c8:54:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:16 2024 by rpki-client on console-ams.rpki-client.org