Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zGylOMGzTIhU7XmPtUbhvvvawsc.roa
File: zGylOMGzTIhU7XmPtUbhvvvawsc.roa (raw, json)
Hash identifier: loDx2ZlCNwskefkjSyIKHp+pMsE3GFlYH355793qKSk=
Subject key identifier: CC:6C:A5:38:C1:B3:4C:88:54:ED:79:8F:B5:46:E1:BE:FB:DA:C2:C7
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A6B98DBB616F212593D7C436F7340324C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zGylOMGzTIhU7XmPtUbhvvvawsc.roa
Signing time: Wed 06 Sep 2023 17:44:54 +0000
ROA not before: Wed 06 Sep 2023 17:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198652
IP address blocks: 89.47.55.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 11:25:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6b:98:db:b6:16:f2:12:59:3d:7c:43:6f:73:40:32:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 6 17:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc6ca538c1b34c8854ed798fb546e1befbdac2c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ee:f5:31:3e:ed:e6:86:0e:65:60:57:0d:02:
6c:27:10:4e:49:d8:23:cb:b4:98:fa:cf:e8:11:9d:
50:46:06:0a:8f:aa:e4:50:9b:66:c1:0d:95:82:4e:
82:22:01:2a:46:62:80:67:bd:2f:41:c0:26:71:38:
06:47:ac:30:ee:5a:8a:92:07:2e:ec:07:65:96:c9:
29:19:5f:8f:d5:9e:02:b8:6c:b9:84:ce:2a:34:bf:
cb:d0:35:cc:3c:9f:8f:22:9f:25:46:3f:0f:f5:f7:
1c:57:79:c7:71:6e:45:10:c4:e7:93:fa:03:26:3c:
bb:22:1e:0c:97:77:83:c8:4e:86:c7:6d:2b:e2:c4:
f2:af:e1:35:3d:1a:cb:b2:2e:3d:b5:43:ff:e8:8d:
c9:bf:cf:63:da:3a:2b:d1:fe:80:42:31:56:3e:c4:
06:e1:48:2b:11:66:53:dd:be:f4:28:c6:d7:08:0e:
13:30:a8:98:9b:38:c2:7b:d1:17:eb:2d:62:9a:db:
5f:7a:5a:6f:76:22:76:99:a6:31:ab:b1:19:4f:b9:
46:c7:96:d7:2e:bb:52:10:27:13:93:d7:66:40:ea:
3d:47:31:bd:10:18:2e:72:d6:be:fd:05:8a:49:8f:
8a:75:f6:50:32:46:b5:08:57:0a:d9:3c:d2:96:c4:
23:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:6C:A5:38:C1:B3:4C:88:54:ED:79:8F:B5:46:E1:BE:FB:DA:C2:C7
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zGylOMGzTIhU7XmPtUbhvvvawsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
89.47.55.0/24
Signature Algorithm: sha256WithRSAEncryption
97:81:3a:91:44:c8:4a:de:22:44:04:d6:e2:1e:e0:2f:e2:35:
a1:9f:6c:09:ed:cb:cb:30:0b:9b:d0:60:fa:f3:1f:c3:3e:6f:
3b:a0:eb:d3:58:02:78:e8:4a:07:fe:81:84:48:b2:f3:76:3a:
09:5e:05:4a:3f:34:e8:7b:08:3b:89:5e:fa:bf:ea:81:ef:6a:
ea:82:ab:e8:5a:de:f8:95:87:ca:83:7a:c9:c4:cd:2e:26:ba:
c9:16:6b:61:af:bf:5f:c4:c6:cc:b5:fb:5c:96:e4:78:7b:2b:
38:ce:8e:04:56:d4:b8:9b:87:e6:b3:5b:70:05:35:69:73:7c:
04:b3:3d:6e:0d:07:93:c7:22:57:85:63:6f:6c:17:94:47:70:
13:06:9e:87:ea:df:2d:74:07:3f:9c:48:85:17:78:42:53:af:
2c:ca:ac:cc:2f:21:26:48:8a:a4:b3:b5:19:af:a7:ae:49:0d:
68:fb:cf:86:d6:14:5d:cf:2a:e3:40:8d:f0:85:9d:72:ce:27:
fb:00:ca:7e:c8:e7:41:7e:df:f6:93:73:a6:87:8e:40:f0:6e:
47:ac:91:de:df:d1:3c:37:ef:a2:d7:5b:5d:a3:ee:f9:47:07:
0b:76:03:74:e8:96:65:db:e5:39:71:fd:95:5c:4f:a0:9d:2d:
ef:da:49:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:11 2024 by rpki-client on console-fra.rpki-client.org