Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/Z3rkW2DhXR15o6co8QxNt5QsA5g.roa
File: Z3rkW2DhXR15o6co8QxNt5QsA5g.roa (raw, json)
Hash identifier: /02In50QeavLPjOm5qA8w4Q8Jox0TYnUiRCnVvFWbnE=
Subject key identifier: 67:7A:E4:5B:60:E1:5D:1D:79:A3:A7:28:F1:0C:4D:B7:94:2C:03:98
Certificate issuer: /CN=facf5e1e9288860780d12e34a4ad3b40d98483fc
Certificate serial: 018AF6747C46908FD4260DB99A80289C194D
Authority key identifier: FA:CF:5E:1E:92:88:86:07:80:D1:2E:34:A4:AD:3B:40:D9:84:83:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-s9eHpKIhgeA0S40pK07QNmEg_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/Z3rkW2DhXR15o6co8QxNt5QsA5g.roa
Signing time: Tue 03 Oct 2023 16:52:23 +0000
ROA not before: Tue 03 Oct 2023 16:52:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60894
IP address blocks: 203.34.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f6:74:7c:46:90:8f:d4:26:0d:b9:9a:80:28:9c:19:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=facf5e1e9288860780d12e34a4ad3b40d98483fc
Validity
Not Before: Oct 3 16:52:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=677ae45b60e15d1d79a3a728f10c4db7942c0398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b2:a2:95:8d:e1:f8:a6:a1:b5:69:05:dc:d1:
f7:8f:d6:fb:1b:da:9b:7a:34:b1:6f:3c:56:4f:95:
29:cd:a4:1d:d5:ca:32:39:e5:48:11:ff:4e:d8:84:
17:da:37:59:6a:10:d5:0c:6b:d2:18:ff:93:f7:0c:
05:e0:4a:fe:ea:6b:05:56:ce:cd:3f:69:9f:8b:91:
5d:e3:53:5e:cb:cc:ec:23:d8:1d:97:6d:41:4d:28:
c9:55:27:0d:c5:61:5f:da:cc:2a:68:1b:53:57:90:
7f:ae:7d:3e:5f:4c:d5:eb:f0:b3:28:e6:a3:22:d3:
ca:f0:2e:3c:3d:c3:fe:ae:44:26:38:76:95:31:6f:
f4:0d:b1:b3:6a:2f:19:57:9c:db:0c:09:84:4d:46:
84:4a:f4:bd:11:dd:e9:b0:d7:80:d2:58:49:a0:ff:
f6:ff:19:13:08:dc:18:41:a8:39:87:ec:e6:30:fa:
3d:7b:47:05:ce:55:b2:1d:54:46:98:31:da:b3:fd:
8d:37:0f:17:94:cc:42:8e:ba:82:98:43:d8:c6:76:
bb:00:5e:2b:14:60:ee:cc:63:de:54:59:ba:09:da:
80:a2:23:a0:57:0d:2f:a6:6a:d7:4a:87:07:8b:85:
92:c5:24:31:ef:d4:b9:17:d3:11:7c:c8:0f:30:8b:
fd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:7A:E4:5B:60:E1:5D:1D:79:A3:A7:28:F1:0C:4D:B7:94:2C:03:98
X509v3 Authority Key Identifier:
keyid:FA:CF:5E:1E:92:88:86:07:80:D1:2E:34:A4:AD:3B:40:D9:84:83:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-s9eHpKIhgeA0S40pK07QNmEg_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/Z3rkW2DhXR15o6co8QxNt5QsA5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/1-s9eHpKIhgeA0S40pK07QNmEg_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.34.219.0/24
Signature Algorithm: sha256WithRSAEncryption
71:57:15:58:e3:b3:02:f9:3e:dd:05:e5:70:36:73:14:1b:8e:
51:b8:8b:1b:77:e5:a5:4f:2d:88:54:7e:63:d9:03:a6:98:27:
5e:90:f2:34:46:6a:a9:34:fb:01:11:c6:46:e0:fc:d9:dd:8d:
a9:7e:4a:81:7f:fb:ab:af:4a:c6:c2:05:27:f7:ac:9f:be:fd:
52:a6:1b:eb:ef:09:42:b8:fb:a4:15:bf:03:21:3e:fe:09:94:
52:e1:82:d9:bb:c5:60:8a:0a:18:12:af:fe:eb:3d:d3:0b:6c:
2a:d9:61:d4:f5:08:48:7f:c5:95:8e:56:5b:e5:eb:20:97:6c:
23:fa:06:b4:a8:8c:c1:b1:cd:d0:08:fa:01:17:90:47:51:42:
ea:bf:28:ad:d2:47:fd:a3:06:5d:5c:f0:ae:35:e3:6a:c5:3b:
80:2b:16:03:64:5f:d2:b0:dd:9b:f0:6b:c9:24:e4:9a:f7:b5:
94:42:05:3e:87:e2:f0:9c:82:cc:6f:af:92:95:bf:21:3d:ff:
e1:33:22:ff:ab:40:99:42:97:cc:fc:9e:4d:1a:5b:e4:87:ed:
00:17:e7:b2:62:5d:52:ea:1b:72:ee:f7:b9:b0:05:f9:d7:20:
95:15:6d:b6:64:6c:1c:50:32:b6:4f:62:52:4e:8d:20:82:e1:
93:00:cb:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:25 2024 by rpki-client on console-ams.rpki-client.org