Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/ZP7IhE_aWhRTCN7AGc5LI9x3Be8.roa
File: ZP7IhE_aWhRTCN7AGc5LI9x3Be8.roa (raw, json)
Hash identifier: b2HPtvCr87kR2TRnGW8Zv7qFdjmKOpSuPZfTHkRcYnQ=
Subject key identifier: 64:FE:C8:84:4F:DA:5A:14:53:08:DE:C0:19:CE:4B:23:DC:77:05:EF
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01856C5CA2C37CC8C372939255D9EF555DC7
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/ZP7IhE_aWhRTCN7AGc5LI9x3Be8.roa
Signing time: Sun 01 Jan 2023 08:04:48 +0000
ROA not before: Sun 01 Jan 2023 08:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211271
IP address blocks: 193.228.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Feb 2023 15:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:5c:a2:c3:7c:c8:c3:72:93:92:55:d9:ef:55:5d:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Jan 1 08:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64fec8844fda5a145308dec019ce4b23dc7705ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d4:ef:0d:66:84:d4:1d:c9:12:77:8c:b0:88:
2a:3c:a8:19:6e:24:8e:8a:3a:c3:27:89:e3:c2:27:
e2:35:e1:19:6d:5e:39:bb:a1:52:fc:a4:b2:4c:20:
da:cf:0c:57:14:88:46:c4:38:35:da:47:cc:e3:91:
89:48:5d:7b:eb:2f:31:a2:e8:6a:18:0b:89:ad:5c:
b1:d2:1a:aa:aa:ab:08:1b:71:d8:a5:88:36:12:b0:
ca:95:d7:73:b6:e2:ac:4f:ec:f3:70:7a:29:c9:e9:
9d:c5:51:e4:06:77:30:6f:33:31:6c:0b:27:11:8b:
df:57:33:dc:4f:fc:6d:fc:34:13:b9:3e:be:e9:eb:
07:04:63:3c:6a:07:1b:33:d5:3d:fd:2e:5a:69:08:
67:86:77:0a:bf:a6:7d:63:de:50:83:44:39:27:05:
b8:48:5a:07:2c:a5:3e:23:42:2e:35:c4:ad:5e:ac:
d3:15:aa:ed:bc:24:0e:45:23:54:90:c6:bc:1d:9c:
ac:3f:da:4e:13:8c:b8:14:e9:48:63:87:25:a1:68:
a2:7c:b9:ae:ed:7e:af:4e:5a:d0:d9:5a:6d:e6:2b:
01:e8:60:84:8a:46:41:2b:ae:75:d8:49:c8:ca:e4:
b9:b3:45:45:e8:3a:cc:cc:a5:80:0c:f1:8a:54:58:
18:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:FE:C8:84:4F:DA:5A:14:53:08:DE:C0:19:CE:4B:23:DC:77:05:EF
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/ZP7IhE_aWhRTCN7AGc5LI9x3Be8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.139.0/24
Signature Algorithm: sha256WithRSAEncryption
66:bd:11:29:d1:35:d9:ef:97:29:fd:3d:3a:94:d3:48:b5:b1:
10:c8:e0:70:c5:97:2f:e0:f6:8c:71:e8:eb:97:00:1e:1c:53:
f8:58:de:f9:5d:fe:25:e0:51:09:c2:d5:4f:b1:4e:07:1c:f1:
4c:23:8a:b9:e3:0e:0b:cc:43:b3:55:3c:6e:5e:a4:0e:00:d9:
9b:3c:bb:25:4f:e3:cf:64:08:43:00:c9:d9:51:ee:b4:93:74:
08:2b:30:fa:df:55:36:af:19:93:23:14:fc:ed:da:33:a3:24:
44:16:88:f8:05:e4:19:ad:0a:01:30:7b:44:53:cb:71:40:7e:
58:9a:68:6b:3c:67:f7:ce:62:1c:fe:72:cf:b6:07:2a:b7:0f:
dc:4c:47:a3:24:3f:f3:35:0d:28:0f:f7:da:ee:b3:00:0f:ef:
66:72:ec:6b:43:e9:08:37:89:22:48:5b:af:05:0d:5d:20:a4:
ab:ce:e5:1f:ca:75:57:ac:23:65:09:48:21:75:b8:a1:62:f0:
28:64:88:d2:ba:c8:04:86:2d:12:6f:5f:e0:d4:22:5b:4c:b8:
e9:de:83:37:32:10:56:41:57:5e:e0:2b:b0:2b:65:ee:f1:39:
9d:bc:57:d8:54:72:b4:69:6c:4c:ad:72:f3:3e:d6:3b:17:68:
46:05:7b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:12 2024 by rpki-client on console-fra.rpki-client.org