Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/_pzm_UMOxCLclbZgxwa34TrGvK0.roa
File: _pzm_UMOxCLclbZgxwa34TrGvK0.roa (raw, json)
Hash identifier: OCVTYdGrdi6H11hRvluajifLceW+gOjCj49bSVsKq48=
Subject key identifier: FE:9C:E6:FD:43:0E:C4:22:DC:95:B6:60:C7:06:B7:E1:3A:C6:BC:AD
Certificate issuer: /CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Certificate serial: 01898C281D77BE4D90AD654AAF3BD7E2E030
Authority key identifier: 0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/_pzm_UMOxCLclbZgxwa34TrGvK0.roa
Signing time: Tue 25 Jul 2023 08:26:26 +0000
ROA not before: Tue 25 Jul 2023 08:26:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25311
IP address blocks: 195.182.220.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8c:28:1d:77:be:4d:90:ad:65:4a:af:3b:d7:e2:e0:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Validity
Not Before: Jul 25 08:26:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe9ce6fd430ec422dc95b660c706b7e13ac6bcad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:62:26:4b:94:50:31:11:4a:28:a8:96:73:00:
e5:79:0e:c2:f3:63:b0:4e:50:93:ce:f9:00:20:c3:
88:ae:52:6b:e9:78:1a:a3:fc:80:65:20:44:a1:5b:
1d:31:35:10:8f:f6:1a:16:2d:55:58:29:ff:68:7b:
c1:49:d3:a9:f9:b1:16:4c:88:31:f1:1a:b6:20:97:
d7:e9:1d:ce:77:00:2a:85:23:4c:eb:79:27:5d:62:
ba:24:d7:fd:7c:4a:58:95:a5:d8:8c:0a:70:66:1b:
d1:b9:4e:60:a2:8f:49:b0:d9:ff:ba:1b:72:79:63:
60:4d:44:07:a4:74:7c:cf:78:e7:f7:93:6a:b1:2e:
97:e7:77:10:ba:ba:da:33:97:a8:76:99:01:71:d8:
49:e4:58:26:f3:fc:43:77:44:81:98:7d:0f:88:38:
7e:eb:b6:d3:00:20:0f:28:ad:bc:0f:3b:cd:50:75:
d4:c6:4a:64:45:1d:d2:c7:a8:7f:5e:9c:44:eb:f0:
2e:0d:f5:d6:0a:aa:9f:d7:b2:14:ab:e8:19:2c:5b:
b2:b0:dc:75:9f:a0:75:d1:62:bb:b0:aa:90:34:12:
b6:bd:fe:d2:02:de:2c:14:ca:4c:68:60:2f:2e:fa:
8d:f9:0d:49:1b:f4:ed:96:bb:ed:12:61:01:1c:05:
79:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9C:E6:FD:43:0E:C4:22:DC:95:B6:60:C7:06:B7:E1:3A:C6:BC:AD
X509v3 Authority Key Identifier:
keyid:0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/_pzm_UMOxCLclbZgxwa34TrGvK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.220.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:6b:00:61:35:a1:13:19:23:03:cd:1a:36:76:c7:da:58:d6:
99:15:a8:73:3e:0a:bd:8f:8e:e8:46:29:2a:25:e9:ba:ea:2c:
c5:ab:08:7c:d6:65:4b:a6:27:43:da:c9:c9:03:51:f6:5b:5e:
e6:eb:a3:43:7d:38:24:eb:ba:02:42:09:82:fe:ad:50:91:ca:
33:9b:bf:7b:ec:37:4d:1d:75:03:80:86:6e:f6:49:39:04:9f:
59:57:35:d0:14:b9:5c:0e:04:98:5a:84:5e:74:4d:85:f1:8c:
c2:01:c7:d1:62:6b:dc:e9:e7:fe:e9:72:d4:35:ec:44:30:1f:
f8:80:b9:60:6b:57:21:54:bf:e8:6c:69:66:e2:8a:c0:ae:d5:
6e:b7:8a:29:fb:99:d3:36:59:01:1c:16:bc:97:e4:eb:16:a8:
59:35:ad:87:77:b8:bd:62:e0:55:27:e8:a2:87:65:44:5e:06:
8a:29:dd:04:68:e7:43:a8:f0:9a:f8:14:f4:41:02:bc:7e:c2:
07:e5:c7:98:79:b6:14:38:df:15:35:13:c0:fd:af:e9:d3:25:
7a:44:1d:4c:21:b3:b2:af:b5:5b:2f:96:b7:08:02:20:95:fd:
43:0e:46:c2:23:e9:45:05:41:aa:e4:a6:be:11:d7:49:20:a8:
47:d5:67:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 27 17:54:10 2023 by rpki-client on console-fra.rpki-client.org