Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZriG_tvsR9KUrTQy5FlyQydI8H0.roa
File: ZriG_tvsR9KUrTQy5FlyQydI8H0.roa (raw, json)
Hash identifier: rhw2LjimMkpj5tFdfneX+WTQs5kc4HkD+DXrhGsP/e4=
Subject key identifier: 66:B8:86:FE:DB:EC:47:D2:94:AD:34:32:E4:59:72:43:27:48:F0:7D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01904DF97FECB76065E5ACFE786B82C21A6F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZriG_tvsR9KUrTQy5FlyQydI8H0.roa
Signing time: Tue 25 Jun 2024 05:58:35 +0000
ROA not before: Tue 25 Jun 2024 05:58:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215268
IP address blocks: 185.238.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Nov 2024 15:28:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4d:f9:7f:ec:b7:60:65:e5:ac:fe:78:6b:82:c2:1a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 25 05:58:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66b886fedbec47d294ad3432e45972432748f07d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f2:b3:f4:3b:19:3a:8a:29:43:88:36:43:b2:
45:60:26:bd:5a:23:c7:29:49:07:2c:53:9f:ba:2f:
6f:6a:16:d1:44:05:aa:92:70:16:55:61:ba:07:9f:
35:46:db:33:0f:84:fc:7a:cd:3b:bb:92:04:cf:88:
a7:3f:57:42:29:a5:56:4a:e8:49:b0:67:6b:56:00:
f8:5f:71:90:bb:f7:5a:c5:83:fa:1b:d0:39:c2:18:
61:24:47:5e:88:60:46:dd:7b:44:fa:3a:80:5c:15:
9a:00:3a:2f:fe:fd:aa:02:c3:f5:98:a7:98:04:e8:
98:f1:f9:52:eb:04:55:a5:1a:84:98:5f:ed:e8:ed:
24:b4:a1:f2:24:4d:6e:44:0a:58:1a:67:6d:bc:4d:
04:f1:c6:d3:b7:d9:70:dc:a9:e9:01:10:87:73:76:
f6:19:72:40:d1:41:d8:c6:88:32:0e:49:60:61:8e:
ad:d4:40:fe:41:ca:73:0f:50:1a:65:cf:ed:80:55:
5d:40:9e:82:ba:a4:e3:71:89:17:4b:f2:0c:c8:a2:
94:e2:56:f7:d6:32:96:e8:42:37:84:a7:6d:4d:62:
52:d9:cf:f1:64:f5:52:dd:aa:3a:1e:09:de:6d:23:
80:33:ea:36:a2:2a:d8:b1:81:f0:b9:0a:0a:ba:30:
6e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B8:86:FE:DB:EC:47:D2:94:AD:34:32:E4:59:72:43:27:48:F0:7D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZriG_tvsR9KUrTQy5FlyQydI8H0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.188.0/22
Signature Algorithm: sha256WithRSAEncryption
30:ac:34:79:32:d1:93:e5:14:55:59:42:3d:87:25:a7:3e:b3:
bd:d5:65:db:cf:c0:4b:75:f1:f2:d1:be:fa:e0:9c:9f:6b:23:
ac:38:77:c9:30:80:90:fd:4d:fd:41:fd:2f:3f:fa:f6:40:18:
8a:ab:90:e5:da:51:e8:3a:b9:22:08:80:75:42:1f:b8:b2:97:
17:7c:7a:9f:d1:2d:b7:de:59:ff:35:cc:99:13:20:33:87:a4:
18:54:23:03:54:63:b9:1f:40:75:2b:74:a5:dd:f1:db:a5:ec:
0c:23:ee:b4:d2:e4:a0:63:7f:e4:88:3b:1d:aa:ee:d1:85:2d:
6f:8c:e8:17:ad:30:09:59:e7:fb:b7:8b:45:06:a3:ba:c3:57:
3f:a2:23:61:24:e0:6e:ac:04:01:bd:b5:2a:ce:fc:1b:c9:c8:
17:d4:81:52:7f:3f:cd:84:05:58:15:c2:e0:cc:92:c5:47:f5:
d2:70:81:b8:56:bb:0c:3f:22:19:f5:d6:95:ec:ca:c5:37:0a:
bf:75:4f:74:5e:14:af:58:7e:cc:13:a3:b4:78:11:eb:a9:58:
76:cb:1a:19:ce:dd:55:ce:c9:a9:db:c9:fd:ac:42:83:ce:4e:
b6:9f:80:90:12:fc:80:f1:70:9e:14:72:4e:22:44:93:5f:a0:
ef:e0:af:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 21:29:22 2024 by rpki-client on console-fra.rpki-client.org