Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zjsQX9vlGiQN46R4UrE4zM_T54U.roa
File: zjsQX9vlGiQN46R4UrE4zM_T54U.roa (raw, json)
Hash identifier: nZIOfgIkAXK9B75YvzqW0VXSlFmkzscBqO5LvG8grJk=
Subject key identifier: CE:3B:10:5F:DB:E5:1A:24:0D:E3:A4:78:52:B1:38:CC:CF:D3:E7:85
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018AD7652FAC13A0CE2A59211D865DCA57D5
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zjsQX9vlGiQN46R4UrE4zM_T54U.roa
Signing time: Wed 27 Sep 2023 16:07:27 +0000
ROA not before: Wed 27 Sep 2023 16:07:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 195.88.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Oct 2023 14:28:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d7:65:2f:ac:13:a0:ce:2a:59:21:1d:86:5d:ca:57:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 27 16:07:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce3b105fdbe51a240de3a47852b138cccfd3e785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:24:03:5d:cd:34:1e:99:ad:28:c3:94:27:4a:
8f:95:19:97:63:56:e1:f2:30:cc:85:ec:ff:25:5b:
fa:f7:56:5f:fe:9f:d0:4f:4d:6f:5e:12:e8:a6:04:
23:48:12:90:bb:4c:4e:83:f7:c5:d8:3c:b5:3b:d0:
09:7e:32:38:79:11:69:de:6e:af:ba:dc:e7:ac:76:
95:11:68:7b:e8:bc:29:60:c8:f8:a9:b7:ca:d2:1c:
e7:4f:77:34:23:12:6e:15:71:4d:63:af:b9:55:2f:
16:ef:f5:d7:f6:94:62:b0:c4:4d:ba:82:ab:1e:9a:
ec:da:21:54:cc:08:50:bd:fc:64:06:ec:03:e0:da:
c9:28:e5:15:0f:4c:c2:b0:69:42:80:57:96:79:05:
09:e9:5e:f1:10:19:59:a2:d1:dc:01:05:c1:4f:64:
94:7a:32:33:23:0e:39:ae:3d:b1:30:5b:1d:f0:58:
57:57:6b:e4:02:8e:0e:d0:08:d6:6c:af:e9:45:ce:
ad:15:a3:12:8a:fd:bc:99:e6:3c:fd:a7:87:7a:27:
6a:56:29:5c:2e:53:28:32:87:b7:3d:ec:bd:89:ea:
c2:78:5b:57:12:5d:c0:a1:c0:e2:d0:2e:d4:de:d3:
73:fb:31:36:40:f6:7d:ce:94:cc:e2:87:cf:f7:ff:
e4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3B:10:5F:DB:E5:1A:24:0D:E3:A4:78:52:B1:38:CC:CF:D3:E7:85
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zjsQX9vlGiQN46R4UrE4zM_T54U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.89.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:10:bd:96:82:68:ea:bb:d3:92:36:bb:cf:44:71:61:23:91:
fb:29:a0:24:86:0b:3b:c4:39:55:a4:69:2a:d8:95:b6:e4:bb:
26:a4:38:ed:56:e4:a0:1b:63:d0:7e:cb:32:0e:e3:bb:b3:e4:
95:e2:40:5a:cb:4c:ae:4e:43:d8:cc:0a:33:a0:e4:8a:29:53:
d6:61:24:c9:e4:25:3e:1f:de:ce:f4:07:96:43:43:d3:86:c4:
0c:d2:29:28:d7:a5:34:5f:c9:bb:1d:ec:79:a8:fa:c5:96:2f:
e5:d3:7f:7e:6d:f6:9a:64:7a:0e:80:3c:79:89:80:14:2c:d7:
47:a3:d6:ea:27:a2:0b:8f:d4:b5:70:d5:78:8b:ce:76:2c:f8:
2a:68:5b:68:33:2e:8a:37:03:f0:1e:f8:0d:80:1c:ce:71:30:
ec:25:68:a7:dd:54:c4:72:20:b6:d0:cd:40:1c:c5:82:73:1a:
8d:01:c7:56:05:97:3b:6f:15:a3:ab:34:f8:84:c5:e3:be:c3:
83:95:76:f0:12:75:ea:41:8f:76:bc:68:fb:f0:61:dd:1b:67:
5e:58:27:e6:b0:69:b3:c0:2d:61:d1:a9:6b:e7:58:66:12:ad:
8a:38:fc:4f:36:84:ea:62:e5:1e:1f:c5:13:78:d8:b8:cd:fd:
1f:e8:7d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:15 2024 by rpki-client on console-ams.rpki-client.org