Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/zIgwP6qwB448RS3FezG7YeoXm-0.roa
File: zIgwP6qwB448RS3FezG7YeoXm-0.roa (raw, json)
Hash identifier: k0wvDMc8cvstKJ6o/IZXfUAQd+2bXJlZFpkZAB4Slwc=
Subject key identifier: CC:88:30:3F:AA:B0:07:8E:3C:45:2D:C5:7B:31:BB:61:EA:17:9B:ED
Certificate issuer: /CN=64dfe26d403141be9059ab2144325b402d4cab7d
Certificate serial: 018CC94E3C56AB8CDFEE84ABA84475928202
Authority key identifier: 64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/zIgwP6qwB448RS3FezG7YeoXm-0.roa
Signing time: Tue 02 Jan 2024 08:33:16 +0000
ROA not before: Tue 02 Jan 2024 08:33:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57000
IP address blocks: 176.241.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jan 2024 20:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:3c:56:ab:8c:df:ee:84:ab:a8:44:75:92:82:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64dfe26d403141be9059ab2144325b402d4cab7d
Validity
Not Before: Jan 2 08:33:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc88303faab0078e3c452dc57b31bb61ea179bed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:89:72:1f:e4:b4:64:d3:45:53:01:d5:f3:91:
4b:85:bc:e7:a1:8a:ed:9e:2b:29:8f:6e:67:31:c4:
d3:3c:85:8a:dc:1a:bd:1f:f5:ba:78:59:02:f0:14:
c2:1d:d8:fd:b9:33:d4:77:9b:eb:2d:4f:87:ea:68:
9d:b8:c0:3c:f6:76:19:55:7a:e8:28:80:0b:2c:ed:
95:15:18:35:c8:b8:95:3b:84:2e:2a:6c:b3:d6:da:
3e:3e:6b:9f:6f:c3:f5:06:ff:5d:87:c0:ab:70:17:
11:52:cd:ac:57:07:db:ee:61:17:c6:a7:a3:7c:da:
5f:35:91:41:1c:2b:19:02:23:3b:e0:76:78:7e:2d:
47:71:f8:1e:67:3a:6b:46:a6:92:33:b9:21:ce:b8:
cd:78:58:bd:31:06:20:ce:ae:83:1a:8e:fd:5b:66:
0c:ba:08:b5:a5:eb:2c:c8:b8:3b:96:e8:ce:fe:bd:
e5:b1:e9:eb:b4:1d:7e:ec:8d:74:29:0d:99:ce:1d:
68:3d:01:9d:fa:53:f0:ab:08:6d:0d:9f:96:64:10:
56:16:0a:a1:ba:88:d1:12:b5:da:60:55:b7:fd:f1:
0c:f8:fc:39:9b:61:28:ee:1b:04:ac:4f:70:e9:a3:
5b:77:19:ce:33:e5:ab:16:05:bf:cf:a1:e3:67:b0:
5b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:88:30:3F:AA:B0:07:8E:3C:45:2D:C5:7B:31:BB:61:EA:17:9B:ED
X509v3 Authority Key Identifier:
keyid:64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/zIgwP6qwB448RS3FezG7YeoXm-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/ZN_ibUAxQb6QWashRDJbQC1Mq30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.241.85.0/24
Signature Algorithm: sha256WithRSAEncryption
64:67:c6:58:33:d0:85:bf:12:5e:b5:5f:f0:ff:4a:2b:15:0e:
5e:00:1c:ae:49:c1:7b:04:09:ae:50:73:de:99:d2:a6:02:11:
33:e5:b9:5d:44:3c:2e:b0:75:d2:6b:8e:6d:c3:ba:ea:3e:d0:
19:bb:a7:93:0b:1b:cc:58:32:83:2c:85:b2:54:c7:35:19:d6:
20:ca:e7:85:a1:0a:28:e7:70:c1:ce:1b:e9:0a:29:ce:aa:96:
21:5e:8e:aa:d3:dc:d4:c7:ac:f9:31:51:da:c1:8c:d7:9d:8d:
95:cb:12:45:c3:aa:d1:2f:ed:2b:c2:86:73:0a:36:c9:c0:cb:
48:c4:8f:83:84:d7:58:10:17:f3:88:ea:bd:e9:a9:96:f8:76:
7e:3a:68:81:60:b7:47:cb:88:eb:d2:89:d5:ca:73:6b:c9:b4:
be:a6:c6:19:5d:2c:20:47:95:84:b4:ad:ee:07:c5:0f:47:e5:
5f:d1:2e:1e:c8:fd:6a:80:7e:81:dc:9d:c7:64:1f:02:16:5a:
c3:d7:b3:8e:2c:73:e3:bd:83:e2:1f:0a:2d:e9:f5:2f:30:3e:
22:a8:a6:81:5a:d0:02:92:f5:4f:1b:62:8e:14:35:87:7d:9c:
b2:1f:b7:44:72:20:ab:ed:35:fe:d0:e0:4b:69:21:f8:c0:c1:
f9:ba:af:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 23 23:03:37 2024 by rpki-client on console-fra.rpki-client.org