Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/zyj4-akJlacHZUKEuoDdu1gO4lY.roa
File: zyj4-akJlacHZUKEuoDdu1gO4lY.roa (raw, json)
Hash identifier: ZG7sovHMo89wDdnYrUfE+hRmgRL5WN305OQfj/A6N68=
Subject key identifier: CF:28:F8:F9:A9:09:95:A7:07:65:42:84:BA:80:DD:BB:58:0E:E2:56
Certificate issuer: /CN=7ddd236d804d5aa9a2cab39cf51022ac05e0b183
Certificate serial: 018C93111152EE0351EF018E3D2B5001711B
Authority key identifier: 7D:DD:23:6D:80:4D:5A:A9:A2:CA:B3:9C:F5:10:22:AC:05:E0:B1:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fd0jbYBNWqmiyrOc9RAirAXgsYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/zyj4-akJlacHZUKEuoDdu1gO4lY.roa
Signing time: Fri 22 Dec 2023 19:46:58 +0000
ROA not before: Fri 22 Dec 2023 19:46:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 193.142.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:93:11:11:52:ee:03:51:ef:01:8e:3d:2b:50:01:71:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ddd236d804d5aa9a2cab39cf51022ac05e0b183
Validity
Not Before: Dec 22 19:46:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf28f8f9a90995a707654284ba80ddbb580ee256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ca:c7:1b:17:b8:c4:8d:3b:ac:59:aa:c4:64:
52:b9:40:19:19:f2:bc:cf:3c:bd:73:de:08:9f:2e:
9a:3e:cf:5e:6a:89:6f:f5:03:b4:30:67:17:6c:41:
de:03:5d:06:6d:a1:72:b6:62:08:d3:26:3e:4f:39:
7d:e1:ef:63:be:dd:76:c5:3c:a0:d7:be:71:27:d5:
fd:d7:9e:88:bf:72:ed:91:c6:ed:2c:76:41:7a:b2:
12:b1:12:91:56:d4:1a:cc:bf:3f:00:fb:9a:c1:10:
3f:f0:72:27:18:38:17:cb:8d:50:ed:79:1c:db:bf:
dc:e5:fc:6d:8b:28:47:e3:ba:90:7e:46:63:41:71:
80:3e:88:61:ed:f9:e8:ff:bc:59:bc:cb:89:60:b4:
bc:0b:31:36:4d:b7:34:6c:1b:48:82:0e:bf:03:fd:
8d:01:8f:6f:b9:86:04:08:52:bf:79:88:b7:f2:b1:
a8:32:0e:52:37:c9:23:56:a2:d1:b6:7f:d3:eb:ab:
2c:d6:d1:e9:4a:d1:ed:23:90:a6:d4:fb:0c:6e:8f:
27:b0:d1:59:df:d5:4b:f8:71:17:64:a8:04:ac:28:
b1:59:57:aa:f7:13:a2:e4:53:b8:5f:71:31:c3:49:
5c:ce:03:f9:33:ab:73:27:21:06:44:cc:89:95:c9:
9c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:28:F8:F9:A9:09:95:A7:07:65:42:84:BA:80:DD:BB:58:0E:E2:56
X509v3 Authority Key Identifier:
keyid:7D:DD:23:6D:80:4D:5A:A9:A2:CA:B3:9C:F5:10:22:AC:05:E0:B1:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd0jbYBNWqmiyrOc9RAirAXgsYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/zyj4-akJlacHZUKEuoDdu1gO4lY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/fd0jbYBNWqmiyrOc9RAirAXgsYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.111.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:00:cf:ca:35:65:ef:40:28:69:29:b2:85:31:89:98:69:de:
9c:d4:8c:04:90:4c:5b:66:7d:a1:51:36:06:7d:d7:c4:57:ed:
8a:df:4a:be:c5:93:97:d4:2a:c9:5d:57:9c:3a:40:ba:b0:9a:
50:cb:68:ad:e2:5c:0b:de:25:4d:32:57:36:d2:84:d6:d7:17:
e1:2a:a2:2d:b0:d7:ab:a6:27:3d:e8:b6:96:4a:89:b2:b6:34:
e0:e6:16:cc:3f:e6:8e:e9:75:fe:50:01:4e:8e:4f:cb:e2:53:
07:25:ad:7d:ed:7b:a1:90:ce:1b:d5:c9:a0:85:50:89:f1:b8:
77:fb:ec:75:91:b2:5f:45:e9:44:9d:4c:30:5f:1d:5b:ae:b6:
d1:fc:1c:2d:c8:48:84:00:f2:ce:d2:34:6a:c1:cc:91:fd:4e:
f6:db:db:8a:96:13:fd:ee:63:98:4d:3e:68:14:62:e1:b0:82:
7c:c0:08:d1:28:77:65:9b:20:2d:0d:34:3e:2b:01:92:8c:1f:
d3:d1:aa:82:7f:5e:4c:b3:5f:c3:84:1d:c4:1b:da:7d:40:70:
eb:d7:40:fe:d3:e6:2d:6e:ef:9d:0d:b3:59:63:ed:c4:92:14:
ac:e3:03:a0:4b:43:6e:16:2a:f5:b0:64:23:6c:0e:c1:f5:f0:
f1:46:a9:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:56 2024 by rpki-client on console-fra.rpki-client.org