Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/JZZfUKHq1x6NjLqWtSISTZoy--w.roa
File: JZZfUKHq1x6NjLqWtSISTZoy--w.roa (raw, json)
Hash identifier: znIoinifEyJJ+jug3pM6YaRIJ963R2/BY9s4pXXM004=
Subject key identifier: 25:96:5F:50:A1:EA:D7:1E:8D:8C:BA:96:B5:22:12:4D:9A:32:FB:EC
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0185700290F4C3CDA62E61FB39DE6D180E8E
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/JZZfUKHq1x6NjLqWtSISTZoy--w.roa
Signing time: Mon 02 Jan 2023 01:04:54 +0000
ROA not before: Mon 02 Jan 2023 01:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203657
IP address blocks: 188.132.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:90:f4:c3:cd:a6:2e:61:fb:39:de:6d:18:0e:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25965f50a1ead71e8d8cba96b522124d9a32fbec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ec:10:a1:1d:a1:16:3d:7b:61:c6:92:df:49:
81:d2:25:66:57:7b:d5:af:96:77:4e:1d:42:12:67:
8b:84:b3:16:c3:34:bc:c3:c2:86:ea:c8:e4:22:dd:
fd:f3:36:a0:3c:47:26:9f:b8:01:69:95:ff:69:76:
df:68:67:c2:97:84:5e:86:8d:62:72:24:8b:48:61:
69:a4:0e:6e:4c:a3:be:de:4e:ca:ab:66:67:8a:53:
10:b0:62:20:f0:d6:02:9d:14:8e:94:c0:5e:1c:79:
53:5a:16:ed:86:b7:2f:4a:75:b5:68:5e:e2:f6:e3:
c2:16:40:b4:49:f7:0e:60:74:ce:51:45:8d:8a:ef:
d5:e6:a7:20:0a:1b:f6:52:12:aa:00:62:06:31:06:
30:46:03:7f:2c:55:13:cd:c6:77:8b:55:42:81:2b:
4f:29:95:85:1b:6f:0b:30:dc:51:dc:8e:a8:8b:28:
f3:e9:e8:dd:60:5e:b8:48:ad:30:84:8f:46:59:13:
89:25:e5:78:38:a2:bd:08:01:6b:3a:24:73:ab:18:
88:5a:9f:85:d8:ce:11:5f:af:80:58:5f:7b:bb:4a:
3f:3e:cf:d9:9a:b5:b8:68:d5:e1:41:4a:fa:29:06:
b6:c1:af:56:7e:0a:0e:a7:ca:e6:ee:3c:3b:05:d6:
f5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:96:5F:50:A1:EA:D7:1E:8D:8C:BA:96:B5:22:12:4D:9A:32:FB:EC
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/JZZfUKHq1x6NjLqWtSISTZoy--w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.149.0/24
Signature Algorithm: sha256WithRSAEncryption
76:2d:8d:6e:7a:bf:fb:2f:ee:11:82:bf:a6:55:83:d8:5b:28:
ec:98:5f:55:be:ee:90:69:5f:94:ad:56:23:35:26:ce:f7:56:
f2:ff:3a:19:55:07:54:25:ea:af:f1:8f:60:fe:f1:59:35:36:
a0:dd:ce:06:04:af:22:0d:9d:34:c4:96:15:8a:2f:1a:38:99:
26:7b:9f:06:e1:fb:f2:55:3d:90:9e:9e:48:1e:a5:d6:6d:87:
f2:c2:1a:36:7f:bd:e1:a4:04:c6:e2:3f:40:8d:6b:36:dc:be:
e1:cb:ff:d7:96:0d:d5:3e:49:58:35:5b:49:55:86:0c:18:b0:
0b:e7:13:84:97:76:00:56:7f:25:1f:1f:09:71:fe:b7:28:aa:
87:dc:38:7e:5b:13:40:e4:d1:4c:78:c5:ea:eb:d8:f2:34:91:
5b:80:f1:39:28:dd:31:9d:06:63:10:85:30:b3:0f:ce:1b:87:
1e:ef:db:51:cc:d7:64:53:a3:81:c4:a4:ca:9e:f6:e0:e1:02:
a7:0f:78:bd:b4:9a:f0:44:75:b4:25:3b:bf:a0:91:e8:69:9c:
2b:88:dc:82:95:cc:51:22:d7:96:2b:0d:a2:d3:f6:67:ab:12:
62:14:61:ba:f1:af:90:eb:2b:e7:4f:cf:9d:4c:38:c3:e0:e2:
72:38:ec:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org