Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ZXVCSeAkJw7oeVeX3aN84X89SQU.roa
File: ZXVCSeAkJw7oeVeX3aN84X89SQU.roa (raw, json)
Hash identifier: 3kpkZFlRV/3sq3xwQFGvQMHhffvnV6KwE986UDEduyw=
Subject key identifier: 65:75:42:49:E0:24:27:0E:E8:79:57:97:DD:A3:7C:E1:7F:3D:49:05
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018DEE25C3B08561358A09F11318908BFCCB
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ZXVCSeAkJw7oeVeX3aN84X89SQU.roa
Signing time: Wed 28 Feb 2024 05:17:48 +0000
ROA not before: Wed 28 Feb 2024 05:17:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 77.81.182.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
91.132.50.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
185.212.119.0/24 maxlen: 24
188.215.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 09:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:25:c3:b0:85:61:35:8a:09:f1:13:18:90:8b:fc:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 28 05:17:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=65754249e024270ee8795797dda37ce17f3d4905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b8:1e:20:7f:c6:38:29:aa:4f:63:57:2c:c7:
6f:8f:ab:fe:0a:75:e7:8a:5f:84:64:c9:e3:9c:6d:
9a:2c:ec:02:c8:99:48:ee:47:37:62:22:3b:9d:c7:
f1:e7:2c:69:1c:ab:c6:0c:04:24:11:b9:f3:c4:f4:
da:a8:c5:73:33:2c:35:37:56:45:88:c1:5b:f8:2b:
45:b7:6f:ed:97:9b:68:0a:9c:05:e7:a9:e7:17:fc:
bc:fb:19:d4:ae:a0:d8:59:2e:2a:da:ff:38:a6:6c:
63:ee:ca:ec:0c:9b:d1:63:43:e1:1c:82:ed:34:74:
45:7a:2f:58:5f:46:70:30:b1:b0:98:ef:a8:3a:82:
b6:8b:23:c8:cb:42:0a:9a:4a:2b:2d:49:b8:58:88:
13:10:32:ca:65:5c:10:7c:32:a1:56:98:18:d3:72:
a6:38:3e:2e:e0:dc:25:1a:86:55:59:f7:7e:01:a6:
6b:a9:30:5b:8e:8a:31:25:d0:d7:d4:72:13:20:e8:
ce:61:bd:53:bc:10:dc:d2:29:4e:e3:01:d8:c0:89:
fa:41:4e:90:96:6d:28:2f:a7:4e:a9:7b:4d:cb:93:
30:a7:81:61:58:28:62:c6:ec:41:57:bc:8f:33:ea:
84:df:bb:ec:40:e4:3a:de:77:dd:f9:09:3e:96:d4:
5b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:75:42:49:E0:24:27:0E:E8:79:57:97:DD:A3:7C:E1:7F:3D:49:05
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ZXVCSeAkJw7oeVeX3aN84X89SQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.182.0/24
89.34.106.0/24
89.35.129.0/24
91.132.50.0/24
93.114.183.0/24
128.0.41.0/24
185.212.119.0/24
188.215.31.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:e5:38:6b:7b:a6:be:c8:d9:aa:68:50:56:d9:bf:bc:61:97:
db:34:b9:3a:06:7e:7f:3b:69:5c:28:3b:98:d6:77:8b:62:26:
d2:4e:bb:9c:eb:5a:a4:f7:b4:f3:41:d6:5b:e1:c1:23:92:8d:
c9:69:b4:75:27:9b:24:35:ec:2b:d0:7f:d4:bf:47:6d:37:40:
9f:0e:dc:42:66:9a:84:db:38:de:fa:ef:12:38:fa:9b:70:6d:
1e:08:b7:fd:72:5c:98:7a:d1:0e:d8:4c:d8:34:de:79:8f:5c:
b7:01:3a:c9:fb:a9:3d:32:f4:70:b3:03:59:22:ef:f4:86:78:
39:c1:16:5d:ec:58:d6:5c:fc:f2:99:0a:db:b4:ff:15:e3:65:
a8:89:8e:36:44:73:b7:d8:28:dd:8f:22:43:f0:ba:f8:c9:5e:
43:88:1b:ed:02:75:d9:62:c0:fd:fd:f1:f2:10:e3:a2:e9:9b:
a8:1f:86:ef:69:c8:eb:ad:8d:6d:ca:d5:78:65:02:e1:c7:1e:
92:42:01:43:5e:63:a9:4f:9f:94:ce:87:a4:14:c6:cc:6a:4d:
89:54:95:fa:4c:c0:46:8b:42:cf:f4:22:2e:71:8b:39:b7:8a:
3d:10:ad:1e:ce:d2:cd:2d:f8:01:43:26:27:56:ba:1e:62:e5:
b3:66:e0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org