Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/c0a326-88e1-42b4-9d56-0921d1bbf349/1/ZKaCrtKFOn94omWjfKKf2Fm2rqo.roa
File: ZKaCrtKFOn94omWjfKKf2Fm2rqo.roa (raw, json)
Hash identifier: oEFuc5jHh8/KjaBImhbip0u4eJXutJQenwEzkQzAbyI=
Subject key identifier: 64:A6:82:AE:D2:85:3A:7F:78:A2:65:A3:7C:A2:9F:D8:59:B6:AE:AA
Certificate issuer: /CN=1e02b2489f4713962d105112b25276eb81f1ac90
Certificate serial: 0189ABB4E9A549C853771AD7650BF5939088
Authority key identifier: 1E:02:B2:48:9F:47:13:96:2D:10:51:12:B2:52:76:EB:81:F1:AC:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgKySJ9HE5YtEFESslJ264HxrJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/c0a326-88e1-42b4-9d56-0921d1bbf349/1/ZKaCrtKFOn94omWjfKKf2Fm2rqo.roa
Signing time: Mon 31 Jul 2023 11:28:27 +0000
ROA not before: Mon 31 Jul 2023 11:28:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 85.208.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:b4:e9:a5:49:c8:53:77:1a:d7:65:0b:f5:93:90:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e02b2489f4713962d105112b25276eb81f1ac90
Validity
Not Before: Jul 31 11:28:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64a682aed2853a7f78a265a37ca29fd859b6aeaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:98:6e:ac:7a:4d:b7:69:cd:ff:71:d7:38:50:
60:7f:db:6a:1a:13:6b:b4:e5:05:95:67:ff:62:c9:
04:6c:0d:d8:aa:8f:f2:94:b4:96:3a:0e:31:25:5c:
ba:74:ba:db:8d:b7:b6:1c:7e:34:db:20:36:47:26:
df:12:d7:28:32:76:e6:e8:e7:ce:22:3f:ad:9b:22:
bd:f5:1d:99:19:7a:d8:19:7c:24:9b:8d:6b:92:fc:
dd:f5:20:86:b9:51:70:ab:33:fc:8b:ae:08:d5:01:
43:fe:35:c4:c7:89:7b:73:c8:62:84:80:cd:34:a9:
bc:34:12:d4:e5:8c:3b:6b:cf:a8:38:73:48:7d:da:
0f:36:c0:01:61:dd:13:72:76:c5:4f:be:21:ef:d0:
2e:f4:82:2a:da:4c:5d:76:32:e4:62:0e:e7:d0:2d:
8f:80:56:7c:b9:61:09:47:9a:a2:04:b3:3b:76:c0:
e1:4e:46:84:ec:6a:c8:87:48:f0:ba:89:b7:02:7e:
15:c4:2a:b2:75:9d:9c:08:b9:0b:b4:9a:f9:6e:8b:
a8:e2:fe:ea:a3:1d:da:b4:45:fb:b1:76:8f:e7:25:
a9:eb:3d:54:10:ec:ed:53:2a:39:be:31:8d:f4:e2:
f2:50:fd:67:2d:be:af:94:5a:38:a6:0a:0c:8b:7e:
33:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:A6:82:AE:D2:85:3A:7F:78:A2:65:A3:7C:A2:9F:D8:59:B6:AE:AA
X509v3 Authority Key Identifier:
keyid:1E:02:B2:48:9F:47:13:96:2D:10:51:12:B2:52:76:EB:81:F1:AC:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgKySJ9HE5YtEFESslJ264HxrJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c0a326-88e1-42b4-9d56-0921d1bbf349/1/ZKaCrtKFOn94omWjfKKf2Fm2rqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c0a326-88e1-42b4-9d56-0921d1bbf349/1/HgKySJ9HE5YtEFESslJ264HxrJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.67.0/24
Signature Algorithm: sha256WithRSAEncryption
14:d3:1c:00:e2:dd:5f:2c:db:f3:8d:e1:7e:21:ab:fd:37:fe:
70:e2:80:b8:7e:82:93:c1:64:d5:a9:a9:61:87:fc:e3:e1:62:
76:a3:30:da:85:d0:a0:a1:bd:86:95:d8:24:82:fd:d9:a4:f6:
fc:b5:e5:c2:48:28:bf:59:16:8c:ff:d0:a4:77:c2:ef:97:a7:
7f:a7:fd:52:b7:a0:ce:cb:d8:ba:a8:aa:2b:31:b5:d9:fc:e7:
e4:94:dd:b4:ea:24:36:10:a0:c6:f6:d7:43:ac:a8:4c:7d:9e:
c7:c2:bb:15:37:ad:9f:02:6b:f0:4d:2b:d6:2f:88:3e:5a:27:
53:af:9b:a8:30:34:6b:76:7e:1e:04:e8:f6:ce:4d:ff:14:ce:
ed:f5:06:ba:60:ba:fd:4f:8c:3d:33:de:9d:45:f7:5b:05:44:
1e:1f:47:f5:4e:ed:99:18:5b:82:df:38:87:1d:d9:41:53:38:
e5:23:a3:87:ac:96:ca:b7:a8:ac:e2:84:70:ca:f3:4a:15:22:
5a:45:f1:0e:db:ec:36:2f:72:a9:fa:86:81:d0:37:9a:ce:41:
cc:30:38:90:9a:a8:4d:e4:7e:4a:8e:ef:fb:3f:85:63:de:69:
a0:20:82:0f:bd:c2:0c:51:1f:48:00:9e:37:6c:18:d4:58:8d:
62:b6:4d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:23 2024 by rpki-client on console-fra.rpki-client.org