Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/ZyXCin1UwcvSgpG034pdVXG6RP4.roa
File: ZyXCin1UwcvSgpG034pdVXG6RP4.roa (raw, json)
Hash identifier: J5P/OsZ0q/CBkUvBJ7TgCrzK5hS99WJho7weeMibJec=
Subject key identifier: 67:25:C2:8A:7D:54:C1:CB:D2:82:91:B4:DF:8A:5D:55:71:BA:44:FE
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0185722819F01AEBA35928AE13D282D38A02
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/ZyXCin1UwcvSgpG034pdVXG6RP4.roa
Signing time: Mon 02 Jan 2023 11:05:08 +0000
ROA not before: Mon 02 Jan 2023 11:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 81.19.139.0/24 maxlen: 32
81.19.141.0/24 maxlen: 32
81.19.140.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:19:f0:1a:eb:a3:59:28:ae:13:d2:82:d3:8a:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jan 2 11:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6725c28a7d54c1cbd28291b4df8a5d5571ba44fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0b:14:64:b8:b3:48:fd:71:cf:1f:c8:17:55:
5d:02:c5:45:99:aa:3c:40:57:32:1c:ec:3c:c8:f6:
7a:57:17:46:05:d0:5f:00:5d:c9:e8:bf:4e:ed:6e:
17:8d:06:a2:2d:be:c0:4f:b7:9e:61:e8:ba:a4:fe:
b3:13:f3:e1:be:91:de:be:aa:87:28:65:d4:6e:df:
3f:b8:52:14:46:77:45:f9:22:50:45:78:1f:d9:91:
5a:45:1f:73:fe:32:ff:2e:98:c0:51:59:b2:a5:33:
3a:87:0c:0e:19:7e:17:32:e2:df:0b:e2:ad:2c:a7:
96:8e:2a:ab:7e:61:88:fc:3d:f4:7f:0a:25:d3:fc:
56:6f:bd:68:68:f1:b1:d4:15:bf:5e:43:d2:7a:2d:
35:c6:41:65:3b:b7:58:3f:2e:47:32:69:78:fa:2b:
06:3f:85:fc:a5:a2:5f:49:93:6f:9f:c5:84:ec:be:
a8:dc:4a:b6:7d:56:9e:a6:c0:c4:ac:4a:80:a6:cb:
8a:b2:67:58:9e:74:bb:6b:dc:9c:3d:e2:8e:da:8f:
85:5d:c3:32:7d:93:91:19:42:5a:29:3c:c7:b5:1f:
b0:93:d8:8a:bc:e0:cf:4f:b5:11:b7:92:ba:f9:97:
1b:40:41:36:bf:c1:8c:e3:73:c3:e2:5a:d7:5c:71:
93:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:25:C2:8A:7D:54:C1:CB:D2:82:91:B4:DF:8A:5D:55:71:BA:44:FE
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/ZyXCin1UwcvSgpG034pdVXG6RP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.139.0-81.19.141.255
Signature Algorithm: sha256WithRSAEncryption
70:46:b7:53:36:fb:97:63:ad:07:6e:21:62:c1:bd:4b:e5:ad:
b8:9d:40:74:58:51:78:33:97:06:57:c9:eb:5a:6a:77:1e:29:
3e:23:9e:37:f1:b4:36:13:ac:93:2c:9c:77:a6:35:a7:b4:b9:
95:29:e4:92:67:dc:e3:c1:e9:4a:da:aa:1e:cd:b9:5c:b8:6a:
84:e7:9b:12:af:3b:b0:47:ea:c3:17:f6:97:06:3d:c4:b2:83:
60:9d:65:46:64:03:53:29:4d:7d:10:90:26:bd:bc:ba:61:d2:
37:a8:8a:fb:13:f3:92:73:00:3e:4d:7c:2a:e1:c9:46:19:83:
ab:b5:5d:29:e9:f4:80:95:10:9e:1b:ea:42:5a:34:30:dc:3c:
55:bf:c8:b5:4a:2f:14:32:7c:f8:92:7b:f2:c8:9d:8a:9c:4f:
74:14:29:05:66:ac:bc:70:98:e7:ea:2f:2a:7e:f0:ea:02:c8:
72:0c:0e:08:5c:fd:48:23:9e:47:12:cd:08:4a:46:a9:63:1a:
8a:8c:ba:b1:50:9a:75:49:a8:8b:94:12:e1:6a:da:9b:d1:31:
15:c1:da:15:41:9c:18:76:97:eb:5b:29:7a:21:53:fd:2c:e2:
c8:a4:fb:0c:b3:aa:1f:a3:43:fd:88:b9:61:50:27:06:90:81:
f9:30:27:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org