Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/ZxpL206b1Bn0dr81Q8bu6ki2HIk.roa
File: ZxpL206b1Bn0dr81Q8bu6ki2HIk.roa (raw, json)
Hash identifier: R3QmBvKoyJ3XT0TPFD07p42SD57XqjohLBUW48s/eoY=
Subject key identifier: 67:1A:4B:DB:4E:9B:D4:19:F4:76:BF:35:43:C6:EE:EA:48:B6:1C:89
Certificate issuer: /CN=533166e3f709fb3baca9ae79acbec6ca1d0fc503
Certificate serial: 018F2D9399E081834503A1DD29C7CB62789B
Authority key identifier: 53:31:66:E3:F7:09:FB:3B:AC:A9:AE:79:AC:BE:C6:CA:1D:0F:C5:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzFm4_cJ-zusqa55rL7Gyh0PxQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/ZxpL206b1Bn0dr81Q8bu6ki2HIk.roa
Signing time: Tue 30 Apr 2024 05:56:38 +0000
ROA not before: Tue 30 Apr 2024 05:56:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197047
IP address blocks: 178.212.16.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:50:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2d:93:99:e0:81:83:45:03:a1:dd:29:c7:cb:62:78:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533166e3f709fb3baca9ae79acbec6ca1d0fc503
Validity
Not Before: Apr 30 05:56:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=671a4bdb4e9bd419f476bf3543c6eeea48b61c89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:61:a0:2f:bf:e7:2e:c0:3f:6d:45:38:79:0e:
bb:4e:59:80:e5:86:76:f5:16:0a:15:ea:77:4a:93:
e0:33:97:24:11:61:b1:d4:8e:68:40:a2:7b:28:c4:
47:04:82:0d:f2:8d:29:43:02:1d:b3:b9:ed:9a:ad:
da:fa:29:73:59:6d:16:aa:f3:12:06:73:47:6f:86:
ee:b1:3d:fe:94:f4:6d:a7:b0:15:4a:bd:b3:94:fa:
14:15:14:34:d2:61:7c:9f:30:3d:de:78:ff:05:dd:
c3:13:16:16:08:2d:db:02:02:3d:a2:b9:46:48:0f:
a1:86:0e:20:4f:8c:f6:3e:87:81:73:1d:13:79:d9:
f2:6d:c6:b5:d6:e5:d3:76:ef:34:97:48:e7:ed:3e:
e2:53:26:10:28:e4:58:89:cc:8e:ee:3c:72:ab:29:
7e:fb:a6:f8:67:66:cc:4c:be:39:99:e2:b0:62:f1:
e2:88:07:ac:77:37:07:59:6b:54:46:f9:f1:9a:c4:
4d:19:47:1f:a7:43:3f:ae:89:c9:cf:44:f9:d8:3f:
47:65:92:c0:bb:23:d1:b9:0f:72:3c:04:79:43:8b:
31:6b:60:35:36:9d:00:51:62:87:34:42:2f:c7:d9:
f4:3a:ce:05:61:85:e0:3e:cf:a3:2b:a8:86:dc:19:
9d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1A:4B:DB:4E:9B:D4:19:F4:76:BF:35:43:C6:EE:EA:48:B6:1C:89
X509v3 Authority Key Identifier:
keyid:53:31:66:E3:F7:09:FB:3B:AC:A9:AE:79:AC:BE:C6:CA:1D:0F:C5:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzFm4_cJ-zusqa55rL7Gyh0PxQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/ZxpL206b1Bn0dr81Q8bu6ki2HIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/UzFm4_cJ-zusqa55rL7Gyh0PxQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.16.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:7e:02:80:ef:1e:fc:d9:28:b9:a5:11:f1:6e:61:1e:b7:c9:
ea:b1:cc:11:a3:07:61:d8:ab:c6:2e:49:95:6e:4a:10:ff:4c:
ae:2a:69:26:a8:b0:44:28:43:32:7f:56:9d:5e:0d:12:03:0e:
b5:8b:95:da:4f:84:e4:b4:80:c6:3a:44:31:a0:40:b3:42:bb:
ae:2d:1f:cc:78:fe:6c:12:53:62:6d:b3:21:29:fd:fa:69:33:
1f:81:08:ee:53:b2:a3:cb:56:ee:72:21:42:3c:e5:2e:c6:58:
07:7e:6d:83:c3:e4:d0:dc:b9:2e:97:e6:43:15:15:27:d5:c8:
15:d4:65:49:1c:c5:dd:16:f5:07:c3:b5:df:c4:17:cd:c9:bf:
42:16:05:55:ec:4e:2b:bb:f6:2d:97:a3:78:c6:84:e1:87:a9:
5f:1c:44:37:82:de:f3:a1:be:45:ae:36:07:2f:6a:de:63:3d:
c7:6e:13:5b:d2:28:f1:a1:94:70:88:d5:9e:7b:8a:db:9b:c6:
eb:ea:76:d2:81:8c:57:61:22:fe:5b:9b:8a:a5:65:d5:ba:4f:
fd:48:21:23:23:15:2f:26:61:88:71:ee:81:aa:51:4f:0d:27:
54:d7:3f:da:b4:48:82:11:bb:1b:d3:3d:c6:2b:45:a6:44:e3:
66:37:f4:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:24 2025 by rpki-client