Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/ZeXE6JxIxMItpdnulbqMgqNXYkY.roa
File: ZeXE6JxIxMItpdnulbqMgqNXYkY.roa (raw, json)
Hash identifier: 3Nv2qQJzsMlldcIg5oha5dnYqFemWgFpV2806kSDypY=
Subject key identifier: 65:E5:C4:E8:9C:48:C4:C2:2D:A5:D9:EE:95:BA:8C:82:A3:57:62:46
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 01906F43E4738B835957C020C8E0B04BB755
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/ZeXE6JxIxMItpdnulbqMgqNXYkY.roa
Signing time: Mon 01 Jul 2024 17:07:18 +0000
ROA not before: Mon 01 Jul 2024 17:07:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 185.101.170.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 18:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6f:43:e4:73:8b:83:59:57:c0:20:c8:e0:b0:4b:b7:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Jul 1 17:07:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=65e5c4e89c48c4c22da5d9ee95ba8c82a3576246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:64:13:5f:26:2a:26:07:6a:6c:96:22:28:06:
e6:16:be:97:c6:8d:b6:b7:80:75:b6:6a:79:87:8e:
98:af:ad:f2:05:c1:30:77:f2:ba:fa:36:3a:ad:44:
37:21:d1:dc:2a:2b:c5:37:e9:cc:07:e9:44:df:00:
d5:21:3f:47:2b:ef:f8:21:26:e5:6d:d6:b2:c0:20:
bb:01:a0:36:40:cb:3c:4f:50:5b:08:43:12:b5:98:
29:f8:ff:85:a1:8b:a2:a4:76:4f:73:8d:84:c2:f4:
33:2d:b2:97:7f:75:69:38:ae:86:56:64:86:f6:9b:
85:65:06:e3:7e:df:4a:95:8f:8c:af:b0:53:34:0f:
09:51:61:51:f3:53:7c:43:6d:da:86:cb:ef:bb:98:
97:1c:df:dc:b7:ce:be:3f:5f:d2:5c:42:d2:a3:f9:
a8:7f:f5:16:7c:b8:aa:be:c7:d4:84:69:ba:fa:04:
f0:b0:02:2b:33:04:80:c9:1b:58:fc:19:65:25:a8:
d7:8e:38:9a:92:b3:69:d3:b4:ef:32:00:70:6a:ec:
f5:ff:64:ba:9d:1b:cf:9f:c0:ce:75:4d:d3:d9:54:
9a:e3:ec:34:ef:9e:e0:7f:bf:ff:dd:22:57:2c:16:
cc:2c:2a:b0:88:29:d2:8b:d6:57:49:12:c6:78:30:
91:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E5:C4:E8:9C:48:C4:C2:2D:A5:D9:EE:95:BA:8C:82:A3:57:62:46
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/ZeXE6JxIxMItpdnulbqMgqNXYkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.170.0/23
Signature Algorithm: sha256WithRSAEncryption
71:9c:be:ab:5a:fd:9e:7d:19:af:b0:0f:26:1e:be:e2:ea:18:
9e:4f:2b:da:a0:79:3d:62:9b:b3:c8:fd:35:82:28:dd:e0:8b:
0e:f7:7d:f0:e7:57:6c:80:a3:fb:b0:6b:8b:7e:aa:cb:dc:19:
9e:22:f7:00:66:d0:c0:43:f8:64:7d:ed:78:9d:36:30:5d:96:
80:a6:5c:6b:8e:38:d0:e9:d4:a4:69:dc:cb:f8:da:10:c5:64:
be:af:7a:94:1e:fe:8a:56:b2:d9:61:72:90:38:e5:46:44:09:
8f:0f:2e:c0:67:e5:20:01:28:84:1b:81:a7:cb:92:ae:b6:b1:
8b:cb:3c:52:7b:ec:f9:d8:94:df:95:ef:92:c9:39:54:da:b8:
ef:7e:b0:da:12:4c:58:28:3f:83:49:94:bf:4b:22:61:8c:5f:
a1:7c:08:b1:9e:20:f2:09:b6:2f:c4:ea:9f:2d:5b:8c:6a:0d:
76:fa:d8:84:f2:dd:d1:0b:98:41:d3:b2:a7:65:dc:f6:93:69:
71:03:f1:ec:48:23:81:bf:49:e3:5b:8e:46:ec:db:41:70:75:
8f:ed:ce:91:ce:d7:9d:90:41:a9:6d:14:54:91:1f:c8:01:38:
4d:48:9e:a4:b1:50:3f:82:83:c1:dc:63:a9:63:08:a6:91:e8:
cd:79:d3:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 19:57:19 2024 by rpki-client on console-fra.rpki-client.org