Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/ZNnQ6ANzg68IXyCx3_8et4cQyoY.roa
File: ZNnQ6ANzg68IXyCx3_8et4cQyoY.roa (raw, json)
Hash identifier: K86PJCTXDXbGzQ76o6i1VwqyVqZ7Uc41pmPP6Nr6uxA=
Subject key identifier: 64:D9:D0:E8:03:73:83:AF:08:5F:20:B1:DF:FF:1E:B7:87:10:CA:86
Certificate issuer: /CN=8a3ec0537242f44ce7d5933e9b32204b3f85e99f
Certificate serial: 018571FA2295D70120AE856FCE71E6CD62CA
Authority key identifier: 8A:3E:C0:53:72:42:F4:4C:E7:D5:93:3E:9B:32:20:4B:3F:85:E9:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij7AU3JC9Ezn1ZM-mzIgSz-F6Z8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/ZNnQ6ANzg68IXyCx3_8et4cQyoY.roa
Signing time: Mon 02 Jan 2023 10:14:56 +0000
ROA not before: Mon 02 Jan 2023 10:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35280
IP address blocks: 185.110.99.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:22:95:d7:01:20:ae:85:6f:ce:71:e6:cd:62:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3ec0537242f44ce7d5933e9b32204b3f85e99f
Validity
Not Before: Jan 2 10:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64d9d0e8037383af085f20b1dfff1eb78710ca86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4f:af:8a:7b:77:5c:e1:d1:8b:63:48:6a:99:
63:14:a0:bd:29:51:16:88:d0:f2:2b:a7:43:a0:e5:
eb:9e:5d:0b:02:20:d9:a7:d9:4a:9c:31:c2:0e:0a:
f1:a3:54:23:d0:d2:16:1f:79:04:d3:a2:e8:67:7d:
4d:6e:62:83:4f:af:3f:19:de:94:d1:60:08:a0:fc:
4a:c5:9f:f7:ba:94:a1:39:89:77:af:d7:21:49:4e:
d4:45:16:00:04:14:32:60:46:de:92:6f:d7:28:2c:
81:90:f8:94:8e:da:fa:db:58:3f:15:61:99:24:ee:
38:67:e7:3f:a8:d2:44:17:c1:07:7f:20:2b:74:db:
60:dd:4a:85:3b:84:17:62:b9:78:49:28:4b:2e:1d:
78:e2:a0:35:be:41:2b:fe:59:da:62:76:5f:d4:a9:
4a:b9:1e:89:10:70:82:d8:5b:1d:ed:bd:94:87:dc:
59:1f:3a:40:f8:12:48:b9:21:8e:dc:c6:f1:2c:df:
c0:68:4b:fe:1d:3e:5f:c0:80:10:f7:52:0f:c6:8e:
e9:0c:35:d4:e4:3e:8f:ad:92:ba:d7:f6:e6:c8:17:
f6:01:e9:0f:1d:f1:c2:1a:65:c8:ae:e6:3f:d4:11:
a3:a6:60:2f:d1:5e:f9:c3:16:d1:14:23:59:81:0f:
db:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D9:D0:E8:03:73:83:AF:08:5F:20:B1:DF:FF:1E:B7:87:10:CA:86
X509v3 Authority Key Identifier:
keyid:8A:3E:C0:53:72:42:F4:4C:E7:D5:93:3E:9B:32:20:4B:3F:85:E9:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij7AU3JC9Ezn1ZM-mzIgSz-F6Z8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/ZNnQ6ANzg68IXyCx3_8et4cQyoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/ij7AU3JC9Ezn1ZM-mzIgSz-F6Z8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.99.0/24
Signature Algorithm: sha256WithRSAEncryption
92:81:a4:67:ee:ff:81:4a:02:ef:19:f4:00:90:78:2a:4c:77:
32:15:59:11:41:a3:62:e2:90:7e:ad:a0:48:ab:b1:65:5f:41:
e9:f1:37:82:b2:53:04:22:5c:a1:3d:07:d8:84:19:41:10:88:
85:49:62:c9:a0:9c:1b:e4:9f:55:7b:a5:b3:81:58:83:5c:05:
9f:69:25:77:b8:fd:d6:c7:3f:4e:b7:3f:b3:36:34:45:e1:9e:
41:8f:ab:af:ee:6c:fe:7b:5c:67:f8:aa:b6:d7:d9:13:7d:d1:
4f:a4:3d:e4:76:35:17:f0:70:09:74:37:37:8c:e1:57:e6:07:
4c:50:2b:37:86:f8:d0:43:cb:da:ab:ec:7c:cb:9a:c8:c2:4b:
02:03:3d:66:69:3b:01:dd:c2:ec:3f:81:dd:08:b6:b3:5a:7c:
44:51:0a:3f:05:94:ab:48:24:ad:9b:20:9b:cf:bc:e2:53:f3:
f8:38:00:06:a8:a6:da:ff:0b:2b:4e:81:45:13:e4:e8:50:58:
71:84:06:48:95:df:f6:56:33:c9:88:66:cd:30:b1:a7:7e:b4:
c9:43:86:75:e6:40:99:af:53:97:a6:5c:35:cc:57:ed:22:a5:
e1:62:60:0e:85:f6:0b:85:9e:60:6c:6f:d6:e3:80:f5:a8:a2:
aa:89:7d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:25 2024 by rpki-client on console-ams.rpki-client.org