Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/exZaMK-zsEF88_zE4s-16ItL1-o.roa
File: exZaMK-zsEF88_zE4s-16ItL1-o.roa (raw, json)
Hash identifier: Ff4pLHKlN1PoOCbZiqSB09B+auUV/52wq0AqJBE7p8g=
Subject key identifier: 7B:16:5A:30:AF:B3:B0:41:7C:F3:FC:C4:E2:CF:B5:E8:8B:4B:D7:EA
Certificate issuer: /CN=2ec121e1545df3e5bb86e9188f2825fad7477f75
Certificate serial: 018B3DA5A030AC0492810C98FC7ADF328C96
Authority key identifier: 2E:C1:21:E1:54:5D:F3:E5:BB:86:E9:18:8F:28:25:FA:D7:47:7F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LsEh4VRd8-W7hukYjygl-tdHf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/exZaMK-zsEF88_zE4s-16ItL1-o.roa
Signing time: Tue 17 Oct 2023 12:39:06 +0000
ROA not before: Tue 17 Oct 2023 12:39:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34761
IP address blocks: 217.194.80.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:a5:a0:30:ac:04:92:81:0c:98:fc:7a:df:32:8c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ec121e1545df3e5bb86e9188f2825fad7477f75
Validity
Not Before: Oct 17 12:39:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b165a30afb3b0417cf3fcc4e2cfb5e88b4bd7ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9f:b7:b0:6c:3a:2a:f5:a8:e5:e1:13:6f:9f:
58:04:f9:d1:d4:d7:86:1f:6d:e4:51:af:d9:7c:7d:
2c:02:dd:fd:68:54:bd:32:93:64:ab:9e:f1:be:b9:
17:50:68:a3:7e:96:f4:d0:02:0d:c0:e9:45:8c:db:
47:a9:25:3e:d6:19:1f:c9:bc:41:c7:03:04:c5:d4:
d1:be:02:b0:3f:d7:a4:88:79:21:ce:ce:7e:8e:33:
34:d9:d1:cd:37:fa:8c:b5:8e:b4:d1:32:2c:ed:fc:
17:2a:9a:51:96:41:3b:e2:35:a8:07:ef:6b:60:1a:
b0:8e:22:90:79:22:dd:bf:55:bc:6f:fc:08:72:57:
3e:e5:45:b1:05:78:59:f0:98:4e:06:2e:a3:68:6e:
52:21:cc:76:06:40:28:32:aa:36:8b:97:7a:1d:f9:
49:02:00:53:8a:c4:e9:de:eb:68:5d:28:39:41:9e:
1c:97:65:e2:28:c2:0b:37:72:29:ac:6e:1c:f4:63:
89:5d:53:79:30:2f:c4:aa:3a:32:26:7f:c8:bc:fa:
ed:ae:ff:b5:10:be:2b:35:62:af:07:39:bb:ff:6d:
3b:b0:cb:57:d7:8c:6f:1c:75:c3:07:22:32:2d:d8:
2d:19:ca:e5:5f:10:16:48:e2:77:4e:f6:34:66:91:
a3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:16:5A:30:AF:B3:B0:41:7C:F3:FC:C4:E2:CF:B5:E8:8B:4B:D7:EA
X509v3 Authority Key Identifier:
keyid:2E:C1:21:E1:54:5D:F3:E5:BB:86:E9:18:8F:28:25:FA:D7:47:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LsEh4VRd8-W7hukYjygl-tdHf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/exZaMK-zsEF88_zE4s-16ItL1-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/LsEh4VRd8-W7hukYjygl-tdHf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.194.80.0/20
Signature Algorithm: sha256WithRSAEncryption
38:82:46:22:e4:d8:ce:ac:70:5e:1a:d9:7e:12:ff:69:2e:b8:
88:ca:26:19:78:9a:8f:b2:d3:57:f8:99:18:26:d3:af:a1:12:
7a:cc:a5:fb:6b:a1:30:59:fd:dd:13:d2:9c:ce:e5:18:99:a1:
06:a2:87:64:9b:c5:47:69:c7:47:ef:63:f6:58:e6:3f:68:28:
09:c8:5a:34:2c:f1:27:35:c5:5d:cb:50:3f:f1:69:98:70:28:
b0:42:ff:ba:41:c2:63:31:43:a1:7f:d7:0f:21:8c:65:96:3e:
c0:74:04:1e:a9:f0:de:85:f5:0b:fb:9b:59:1d:4a:d1:90:60:
e9:16:f0:0a:09:f5:21:17:d2:74:85:01:94:04:19:46:f5:e0:
cc:da:48:31:4f:16:c5:16:f9:67:fe:41:a9:f4:67:47:4f:6f:
11:41:71:13:2a:5e:71:1f:8e:e3:c1:57:c4:be:5d:25:84:4d:
1f:a5:d8:62:bb:18:96:f4:eb:6b:b0:9b:46:94:c6:4b:4b:b2:
89:7a:64:d6:b3:4b:55:e1:ee:8a:85:1e:75:95:68:4d:d7:a2:
17:d1:70:61:13:e0:73:e8:cf:3b:26:f6:14:13:df:9f:b4:89:
9e:eb:1e:67:70:e0:b0:60:65:ab:60:1c:a7:29:e9:4f:01:db:
0e:13:00:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org