Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/Z4WS0l3cgoAArzOsHzUaspcJ8o8.roa
File: Z4WS0l3cgoAArzOsHzUaspcJ8o8.roa (raw, json)
Hash identifier: 0vBylB5Gq5kYzhlm8WZDB623Mz6dbXghi5wiHhlwdLw=
Subject key identifier: 67:85:92:D2:5D:DC:82:80:00:AF:33:AC:1F:35:1A:B2:97:09:F2:8F
Certificate issuer: /CN=458cc52a0707cc340ac9c7f6e9028b64b70267bc
Certificate serial: 018D84B9FB4E5E142C080E6840DB876E3A46
Authority key identifier: 45:8C:C5:2A:07:07:CC:34:0A:C9:C7:F6:E9:02:8B:64:B7:02:67:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RYzFKgcHzDQKycf26QKLZLcCZ7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/Z4WS0l3cgoAArzOsHzUaspcJ8o8.roa
Signing time: Wed 07 Feb 2024 17:59:57 +0000
ROA not before: Wed 07 Feb 2024 17:59:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47216
IP address blocks: 194.1.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Mar 2024 09:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:b9:fb:4e:5e:14:2c:08:0e:68:40:db:87:6e:3a:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=458cc52a0707cc340ac9c7f6e9028b64b70267bc
Validity
Not Before: Feb 7 17:59:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=678592d25ddc828000af33ac1f351ab29709f28f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:43:a0:5a:f0:75:b8:e8:6c:2a:2d:0a:3d:2c:
31:a4:2a:83:74:83:2c:7a:5b:dc:01:41:ba:12:e2:
d3:bf:5b:ac:16:5d:1f:32:85:0f:8a:32:8f:c6:f7:
c3:c1:89:d8:c4:5f:e9:44:ea:bb:6e:34:ef:a9:e4:
fa:9c:de:db:78:74:04:a6:85:70:2c:da:0f:92:47:
b7:d4:50:c7:be:00:53:15:b3:12:8f:59:7b:c6:b5:
bb:c1:d9:7e:89:7c:f8:c0:01:ca:33:17:82:11:24:
14:68:dc:e4:a2:a4:a5:ef:13:19:74:2e:72:19:3c:
1d:a0:20:ae:48:7f:c7:ec:df:fb:f1:82:7b:17:c7:
8c:69:a0:3b:ed:93:d0:64:9c:1c:31:c9:fa:49:67:
4a:73:9f:25:7a:28:d5:df:50:60:04:e3:ba:8e:35:
28:19:2d:a6:b5:4f:61:d2:f1:b8:17:e9:f2:ed:28:
14:6c:aa:c6:8e:eb:a9:e7:0d:f6:4a:d4:73:c1:6e:
a8:49:2b:ba:b4:0c:50:41:57:21:15:80:9b:10:b5:
11:bb:d7:bf:ce:b4:bb:38:dd:14:0c:cc:45:bb:5b:
ea:2c:dc:52:33:6e:ef:a7:7b:36:5d:80:a9:36:42:
1e:26:d6:19:56:c1:a8:23:33:67:34:41:90:dc:4b:
04:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:85:92:D2:5D:DC:82:80:00:AF:33:AC:1F:35:1A:B2:97:09:F2:8F
X509v3 Authority Key Identifier:
keyid:45:8C:C5:2A:07:07:CC:34:0A:C9:C7:F6:E9:02:8B:64:B7:02:67:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RYzFKgcHzDQKycf26QKLZLcCZ7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/Z4WS0l3cgoAArzOsHzUaspcJ8o8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/RYzFKgcHzDQKycf26QKLZLcCZ7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.155.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:00:cb:ac:4f:46:f9:95:4d:62:49:0c:75:4d:2c:50:be:46:
9d:3b:84:04:f6:70:9d:50:ce:30:28:23:c2:c9:bf:78:b1:30:
45:8b:c0:ef:a7:c9:4d:6b:d5:74:6a:02:f0:4a:19:ee:eb:03:
13:68:cb:c8:6f:5b:de:a0:7f:56:66:de:2f:b3:23:a5:b8:1c:
cb:48:1e:33:8d:c2:bb:cd:6f:b4:02:f0:6b:24:18:5f:c3:b6:
76:eb:9e:51:e6:16:53:64:1c:dd:de:22:c8:ea:db:8d:1b:96:
7e:0b:e1:9e:07:ed:9f:ce:18:76:23:8c:5b:63:c8:8f:01:ee:
1b:e5:42:43:74:1c:ec:94:33:f5:ab:50:51:09:26:05:cf:4f:
4e:36:de:5c:00:73:ae:8c:2a:5f:69:a0:43:7c:bb:6c:7f:1b:
8a:1b:08:c6:9d:bb:d4:f7:e5:24:15:02:04:42:74:72:4d:da:
58:10:d0:c6:0b:ee:10:8e:8e:93:63:d8:24:ba:9a:25:c1:23:
06:08:a9:0e:e5:db:f1:33:63:0c:b7:9b:ee:b8:05:d3:cd:1b:
c5:f6:d2:fc:ca:7a:47:5f:1c:80:a7:e3:c2:24:e2:b2:b1:d5:
08:bb:c8:1a:c3:19:bd:84:67:bc:22:90:55:23:94:42:0c:e3:
0a:f8:cb:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:27 2024 by rpki-client on console-ams.rpki-client.org