Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4bd00a-83ce-4134-b592-7243d9347143/1/zPOfX7MOpBKAy-964RKjCoFrXkg.roa
File: zPOfX7MOpBKAy-964RKjCoFrXkg.roa (raw, json)
Hash identifier: zGeF3w4guagy8TPIMNTTTgrf72o3zvcV3Fi7jjrW8Lw=
Subject key identifier: CC:F3:9F:5F:B3:0E:A4:12:80:CB:EF:7A:E1:12:A3:0A:81:6B:5E:48
Certificate issuer: /CN=304d706d759b0213114fb319cb593315d7e3409b
Certificate serial: 01856E78B35B87D0079C7E567F730DA940A9
Authority key identifier: 30:4D:70:6D:75:9B:02:13:11:4F:B3:19:CB:59:33:15:D7:E3:40:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ME1wbXWbAhMRT7MZy1kzFdfjQJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4bd00a-83ce-4134-b592-7243d9347143/1/zPOfX7MOpBKAy-964RKjCoFrXkg.roa
Signing time: Sun 01 Jan 2023 17:54:42 +0000
ROA not before: Sun 01 Jan 2023 17:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12552
IP address blocks: 185.236.40.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:b3:5b:87:d0:07:9c:7e:56:7f:73:0d:a9:40:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=304d706d759b0213114fb319cb593315d7e3409b
Validity
Not Before: Jan 1 17:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccf39f5fb30ea41280cbef7ae112a30a816b5e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:cf:02:48:66:4a:86:a8:1b:25:7f:45:39:9f:
2d:2b:4e:84:01:ea:9a:a9:6d:d3:e6:94:6a:90:74:
cc:94:46:ce:8f:0c:a8:8c:64:49:6a:f1:14:f9:89:
df:ba:70:75:44:76:f2:21:a5:d9:19:b0:99:18:d8:
e1:93:6c:54:59:c6:24:dd:16:97:19:12:1c:a1:49:
c7:33:d9:ce:b8:6d:86:7e:d4:cb:cf:c2:ca:87:66:
f4:11:d1:95:11:45:7c:13:c7:a3:8f:35:de:c0:e3:
1a:ee:d7:14:4b:e1:a3:53:53:e3:dd:0a:5a:69:7e:
56:46:8c:42:4e:4b:f5:77:da:bb:ba:ee:48:7a:60:
20:24:71:b9:8c:a1:3f:e0:fa:8f:9b:4f:23:48:34:
40:08:75:a3:12:3b:1c:5e:06:9d:c6:81:a3:b1:8b:
9a:bc:57:36:7e:1c:eb:08:dc:a0:b1:b2:4e:fa:69:
0f:e8:07:8c:6b:7d:26:0e:d0:ab:84:b2:b5:30:d6:
81:28:32:96:50:ca:dd:b2:1b:0f:92:53:93:3c:71:
ac:38:c5:b4:c2:18:f5:c6:ae:7a:4c:37:69:e0:09:
7a:e5:e5:79:70:a3:78:eb:7a:04:07:66:bd:de:ab:
32:c9:fc:25:c8:d2:b3:b1:3f:03:a1:50:66:df:dc:
03:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F3:9F:5F:B3:0E:A4:12:80:CB:EF:7A:E1:12:A3:0A:81:6B:5E:48
X509v3 Authority Key Identifier:
keyid:30:4D:70:6D:75:9B:02:13:11:4F:B3:19:CB:59:33:15:D7:E3:40:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ME1wbXWbAhMRT7MZy1kzFdfjQJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4bd00a-83ce-4134-b592-7243d9347143/1/zPOfX7MOpBKAy-964RKjCoFrXkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4bd00a-83ce-4134-b592-7243d9347143/1/ME1wbXWbAhMRT7MZy1kzFdfjQJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.40.0/24
Signature Algorithm: sha256WithRSAEncryption
96:13:3e:94:a8:67:77:a2:de:01:bf:fa:bb:48:48:a7:0c:03:
09:81:0a:bb:e4:fe:ce:f6:92:4d:9b:bd:24:d2:1e:21:f6:e2:
07:02:e1:08:f9:71:f2:14:55:4e:66:2f:2a:4c:e2:75:2a:56:
9d:da:90:89:ca:e9:6c:a4:00:db:2a:5d:dd:22:8a:27:0e:bb:
db:5d:12:7b:7c:a4:03:23:de:d6:ec:50:70:63:2d:0b:a4:31:
aa:0b:ca:7e:ac:e3:6d:b5:ff:28:97:f7:66:28:1f:be:87:54:
6d:2a:cc:bc:e8:14:a0:a7:f3:59:9c:51:1f:05:cc:7a:bd:bc:
47:55:cf:8b:c5:dd:d4:64:4b:3a:ca:d1:bf:0d:ae:df:41:cc:
ba:06:39:a8:84:71:06:0f:cd:7b:bb:df:3a:a3:97:d2:90:fa:
bb:63:a0:62:68:7b:79:80:fa:1d:86:07:a1:b5:19:29:6a:d3:
38:2f:55:26:7e:ea:0c:d8:5a:36:e8:09:e3:93:bf:6e:b8:e4:
1e:9c:1a:62:8d:c6:ac:c5:f5:c0:02:4f:e7:70:6f:42:99:f3:
7c:bd:a2:ec:1a:2f:8a:9b:17:f4:c4:5d:da:e1:99:a3:7c:ca:
e8:e8:bf:1e:7e:e8:cc:c4:40:62:0b:ed:44:41:4f:24:be:98:
45:9e:00:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:59 2024 by rpki-client on console-ams.rpki-client.org