Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/zk_84u-th8KlR5jVLGkd8xkHIG4.roa
File: zk_84u-th8KlR5jVLGkd8xkHIG4.roa (raw, json)
Hash identifier: CKO10QuH8JvaSaSflSWp9rQ7Clhq7c4aFG31JdaxOjo=
Subject key identifier: CE:4F:FC:E2:EF:AD:87:C2:A5:47:98:D5:2C:69:1D:F3:19:07:20:6E
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0188D89810BF51A2576D236FA891D7A28F46
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/zk_84u-th8KlR5jVLGkd8xkHIG4.roa
Signing time: Tue 20 Jun 2023 11:37:04 +0000
ROA not before: Tue 20 Jun 2023 11:37:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 78.143.224.0/21 maxlen: 24
78.143.232.0/21 maxlen: 24
89.46.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Jun 2023 07:02:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:98:10:bf:51:a2:57:6d:23:6f:a8:91:d7:a2:8f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 20 11:37:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce4ffce2efad87c2a54798d52c691df31907206e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d9:55:3a:61:9e:38:97:9d:cb:9d:17:57:b9:
87:34:9e:ce:d7:7f:18:2c:33:94:51:47:10:e8:cb:
ac:32:a8:5a:0f:d3:86:8e:e2:26:11:89:46:94:7d:
b1:f8:4f:df:58:48:e4:80:97:1f:22:0f:88:31:84:
a4:87:c8:22:9e:d2:7d:76:01:b9:0b:82:10:1c:50:
38:21:bb:1c:0f:3f:74:4e:2e:7b:42:fb:54:74:93:
52:19:a6:03:bc:53:1e:49:72:bc:b1:90:6e:82:24:
2e:f8:fd:71:e4:80:a6:04:bd:c2:e9:3e:30:16:2a:
41:03:56:a1:20:01:48:82:e9:e0:65:d4:03:fd:0a:
a1:28:cb:0f:f2:19:95:97:bf:7c:ba:60:03:fb:d8:
7a:7d:68:4c:26:b4:26:fc:cb:06:e3:de:d7:d4:a1:
e8:63:8c:16:5c:a4:29:ad:2e:03:ab:fc:34:38:72:
b0:88:f8:9a:ad:e1:f5:ff:37:24:f7:6f:41:75:6c:
c6:83:bf:c6:00:64:df:44:bd:7c:85:9a:5d:13:90:
d1:06:f8:5a:f8:36:c1:20:6e:97:0c:64:c8:9e:8f:
3b:2b:b3:89:7b:48:d0:ee:30:17:28:67:05:89:95:
48:79:42:e3:75:9a:52:f1:1e:1a:94:7c:c9:86:ff:
ee:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4F:FC:E2:EF:AD:87:C2:A5:47:98:D5:2C:69:1D:F3:19:07:20:6E
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/zk_84u-th8KlR5jVLGkd8xkHIG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.143.224.0/20
89.46.176.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:d1:73:38:d6:f9:b3:f0:3a:49:1d:0f:75:4a:a5:04:78:e8:
a6:26:c1:81:96:ce:3f:7a:03:09:5b:f0:bd:62:cd:32:79:cd:
85:2a:66:91:cf:7d:53:15:1e:9a:48:a4:06:20:4a:e8:82:41:
5a:7c:2e:da:86:01:0d:4f:d4:7b:4d:d7:04:86:ae:d7:03:c2:
25:c7:59:e6:af:dc:4c:9c:c1:47:ae:98:bb:c7:67:9c:6b:8d:
50:f3:b4:fa:01:fa:a3:32:a7:5f:a3:8b:6a:c5:cb:39:e7:de:
9a:c8:03:cb:cd:b9:46:ef:db:2a:26:b3:46:36:3a:ef:d6:3f:
33:f3:cb:3d:6f:bf:a3:23:56:d7:00:0c:74:f2:ec:24:e9:9b:
df:2c:07:66:f0:8b:2c:1a:ce:e1:df:71:9a:92:76:98:a7:71:
6e:33:0f:ec:2e:ef:82:72:cf:0d:03:25:fd:fb:55:b0:ed:38:
f5:69:90:29:59:b3:29:e7:99:7d:bf:c7:f8:53:08:1c:ad:c8:
cc:a2:cf:3d:1c:25:f1:96:da:f8:de:9a:1d:d0:64:27:c3:a0:
03:6f:e1:52:66:00:23:82:a9:f2:d9:60:33:99:e3:17:44:df:
5d:0a:03:9f:f4:db:31:a4:17:4c:90:b3:4e:5c:a5:6d:f8:69:
af:9c:56:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org