Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/ZnWNquwqchd-_1c1U71V-HSxsK4.roa
File: ZnWNquwqchd-_1c1U71V-HSxsK4.roa (raw, json)
Hash identifier: aNb1CHtu2GcYA1fV89NYlu/fUcwV1pk1af9ml/CKZqM=
Subject key identifier: 66:75:8D:AA:EC:2A:72:17:7E:FF:57:35:53:BD:55:F8:74:B1:B0:AE
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018CC2DB54F117C4CB890F0EE31A297F9F05
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/ZnWNquwqchd-_1c1U71V-HSxsK4.roa
Signing time: Mon 01 Jan 2024 02:30:03 +0000
ROA not before: Mon 01 Jan 2024 02:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 95.101.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 13:43:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:54:f1:17:c4:cb:89:0f:0e:e3:1a:29:7f:9f:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Jan 1 02:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66758daaec2a72177eff573553bd55f874b1b0ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:eb:50:1b:54:54:94:9c:b1:62:44:92:b0:e6:
e3:06:c7:ef:d6:60:54:95:fa:7d:86:73:ff:45:ab:
a1:a1:a2:f9:06:41:73:65:18:42:7d:bb:11:39:23:
bf:fa:35:cd:d4:04:e1:a5:03:52:8a:03:b0:55:19:
1c:af:29:20:33:97:f3:b8:79:cd:87:60:d2:ea:99:
3d:08:4e:65:60:6c:c1:ee:35:7e:28:91:79:82:97:
5e:06:aa:91:eb:c9:e9:83:26:37:00:23:d4:79:67:
dc:67:3e:6d:ab:04:6e:54:0d:e2:f6:07:64:13:97:
10:17:42:e2:c9:0b:84:d3:e4:f6:91:e4:8a:8b:32:
15:5c:43:68:e7:c6:38:7a:d5:3e:91:89:4f:25:59:
71:a9:39:8b:4c:d8:5d:eb:f7:dd:86:26:f0:a1:16:
17:dc:32:f2:da:9e:81:bd:20:16:04:2c:be:e4:ca:
1a:52:64:b6:4b:0a:43:ab:47:c4:c5:74:a9:23:ad:
e4:2f:85:87:7f:3f:c6:7a:4d:58:74:d8:2d:c4:18:
5a:7b:25:ab:b7:ae:a1:1d:66:6d:f4:02:a6:72:dc:
fd:5e:95:92:45:a7:03:c1:ec:fd:f0:c0:f2:44:f6:
6f:ee:40:98:33:c9:86:85:2b:7a:1f:cf:a6:d5:30:
70:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:75:8D:AA:EC:2A:72:17:7E:FF:57:35:53:BD:55:F8:74:B1:B0:AE
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/ZnWNquwqchd-_1c1U71V-HSxsK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.101.235.0/24
Signature Algorithm: sha256WithRSAEncryption
78:62:c2:84:fc:38:7f:52:de:09:58:46:48:ee:38:4a:85:8a:
c1:e1:0a:e7:78:2f:44:b8:f3:db:89:7e:20:75:83:fb:29:a2:
c8:f1:5f:c0:fb:e2:b4:7d:68:bb:11:7f:92:61:3c:03:74:36:
49:11:49:61:d3:1f:49:ff:23:56:21:76:eb:12:99:dc:d4:85:
a2:76:3a:36:d9:b6:a7:96:12:21:11:e5:4c:3f:55:0d:1b:41:
d6:7b:de:9c:4c:2a:00:da:20:cb:fa:cc:17:67:84:71:dd:c5:
06:bb:b8:7e:ee:f3:5a:ad:f6:ad:f1:87:f2:c5:9b:f2:db:53:
a8:3e:ed:16:d2:ff:27:d1:0f:79:0c:81:3d:9f:b0:2d:7d:79:
66:79:5c:70:54:f2:60:f9:4a:fe:1c:87:37:d4:a2:46:48:f1:
ef:af:08:20:c4:ed:fe:4d:6a:05:2b:19:90:a3:e7:98:c6:37:
74:9b:bd:12:19:1b:f4:04:61:cd:d5:b3:91:42:53:5b:4b:6a:
07:98:93:d3:88:91:12:78:a3:d0:6c:e3:aa:c1:a7:8c:ae:01:
bb:a8:eb:b4:e3:79:95:c7:b1:4e:7f:1b:82:b8:52:30:e5:65:
9c:3d:72:97:29:cf:d0:7c:03:43:74:2d:04:96:56:b7:40:81:
5d:57:b8:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 22 16:04:36 2024 by rpki-client on console-fra.rpki-client.org