Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/zSjBESLhungNDGyUhRkbF2jl7o0.roa
File: zSjBESLhungNDGyUhRkbF2jl7o0.roa (raw, json)
Hash identifier: kwP6juPKmdQ4eb4lije3xnymy0HwqOzIDOeqYX3WpwY=
Subject key identifier: CD:28:C1:11:22:E1:BA:78:0D:0C:6C:94:85:19:1B:17:68:E5:EE:8D
Certificate issuer: /CN=05b3017c1693b945b5eda091ec93f85c1be1df36
Certificate serial: 018571FA370BBD511A4D1EEC0C7FAA1B666A
Authority key identifier: 05:B3:01:7C:16:93:B9:45:B5:ED:A0:91:EC:93:F8:5C:1B:E1:DF:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbMBfBaTuUW17aCR7JP4XBvh3zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/zSjBESLhungNDGyUhRkbF2jl7o0.roa
Signing time: Mon 02 Jan 2023 10:15:01 +0000
ROA not before: Mon 02 Jan 2023 10:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46235
IP address blocks: 195.60.208.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:37:0b:bd:51:1a:4d:1e:ec:0c:7f:aa:1b:66:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b3017c1693b945b5eda091ec93f85c1be1df36
Validity
Not Before: Jan 2 10:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd28c11122e1ba780d0c6c9485191b1768e5ee8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8a:8a:ed:0e:cb:f8:e9:b1:10:b9:77:65:37:
64:f6:a1:b9:ba:61:a2:d9:f5:38:0c:64:f1:d8:9d:
2c:94:84:04:4e:ea:6e:75:de:a3:63:22:d8:fd:6a:
66:e1:07:84:0d:bd:82:ff:cc:49:30:dd:75:af:ac:
b0:39:60:91:f4:7e:fa:35:05:7a:e0:65:6e:0d:9d:
e9:56:df:39:0f:d4:d9:1a:86:b6:39:52:b8:e6:18:
74:0e:9a:2b:d4:78:c8:b4:0e:ef:d1:98:76:00:f9:
cb:7b:68:68:39:b1:16:cf:09:e6:27:71:64:b8:a3:
8d:4f:4e:d1:e2:e3:f3:2d:d8:43:17:97:02:76:3f:
d0:86:e1:12:8e:04:fe:26:c6:23:20:8c:f6:61:34:
7e:77:cf:c5:c2:68:ac:69:ac:c9:2d:7d:af:de:e1:
90:a0:cb:22:ac:b8:9e:ad:c6:19:ff:ed:a9:c5:ac:
1d:67:53:c6:4f:d9:35:73:6f:c1:05:d4:7d:5f:d4:
b3:3e:7d:53:10:75:b1:a7:39:7c:f8:f3:c8:34:9e:
62:17:bb:ac:ee:c4:c6:77:b5:f2:48:e3:e7:6f:39:
37:50:3f:ac:e7:ac:41:1b:50:7f:ce:bb:fb:56:c1:
ad:93:a2:34:59:7d:65:d3:4a:ef:34:49:0d:d5:19:
2d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:28:C1:11:22:E1:BA:78:0D:0C:6C:94:85:19:1B:17:68:E5:EE:8D
X509v3 Authority Key Identifier:
keyid:05:B3:01:7C:16:93:B9:45:B5:ED:A0:91:EC:93:F8:5C:1B:E1:DF:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbMBfBaTuUW17aCR7JP4XBvh3zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/zSjBESLhungNDGyUhRkbF2jl7o0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/BbMBfBaTuUW17aCR7JP4XBvh3zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.208.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:a8:d2:5d:58:e0:7e:65:bf:1c:55:f8:24:61:7b:4b:59:e1:
23:3d:89:0e:8a:87:87:63:10:de:10:fb:ef:19:2a:19:5e:58:
9e:da:2e:a4:9b:66:36:73:d9:fb:1e:03:e6:4d:4f:e0:9f:0a:
29:54:75:56:40:1f:b2:08:29:dc:a4:51:62:1b:c3:d7:a4:47:
bb:7a:e0:c7:9a:bf:01:18:13:ae:c4:ba:23:35:f3:53:62:48:
db:81:55:83:06:75:ab:fe:c8:20:95:00:08:ef:58:22:2f:7b:
88:f8:23:7c:71:a4:e6:25:d4:2d:a5:83:a4:b3:d4:24:a5:a6:
8e:fd:32:0f:b9:90:5c:c1:b9:2c:9f:7a:0c:a9:53:48:be:88:
da:bd:a0:35:e1:e3:96:64:bc:4f:a5:9b:27:8c:21:c7:4d:fc:
04:2a:8c:08:77:cb:e6:92:a3:32:b1:0b:78:63:a9:66:84:3c:
bf:97:bf:89:a7:6d:53:9e:b9:d2:40:7f:53:ef:08:70:33:76:
39:9e:5c:3b:cd:a5:4f:c4:b4:fe:51:b3:8c:ab:14:53:5c:da:
bf:d4:41:7f:a1:4c:2c:72:dc:12:87:c8:e7:14:e7:67:f5:a7:
a3:b7:2d:d6:74:64:5d:4f:57:b6:9f:df:d3:11:c2:dc:cf:a2:
02:08:32:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:02 2024 by rpki-client on console-ams.rpki-client.org