Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/zuI0IO5DSS-RaVRa4fwK0Fk46GA.roa
File: zuI0IO5DSS-RaVRa4fwK0Fk46GA.roa (raw, json)
Hash identifier: Syb07Q4+VQ3GOo9oEsc22nQA4naIsgC4JPJntlGHAm4=
Subject key identifier: CE:E2:34:20:EE:43:49:2F:91:69:54:5A:E1:FC:0A:D0:59:38:E8:60
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018571B9F5636B9943374EBB6241F0033BC9
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/zuI0IO5DSS-RaVRa4fwK0Fk46GA.roa
Signing time: Mon 02 Jan 2023 09:04:50 +0000
ROA not before: Mon 02 Jan 2023 09:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212384
IP address blocks: 185.106.194.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f5:63:6b:99:43:37:4e:bb:62:41:f0:03:3b:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 2 09:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cee23420ee43492f9169545ae1fc0ad05938e860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:54:95:3f:24:f8:ca:49:c1:59:90:9a:03:35:
ae:a2:b6:5c:22:53:ed:6b:fb:00:34:59:e0:34:af:
2f:df:52:1c:66:0b:9f:fa:ac:02:e8:dd:6d:fc:5e:
60:9f:1d:06:77:93:af:72:27:2c:5e:da:a0:2b:42:
e3:24:fb:59:e3:87:db:fa:2c:e2:fd:31:b6:d8:6b:
f2:ab:a2:0a:62:45:f2:88:bc:96:62:7d:8b:8d:6c:
fc:f9:9b:49:a0:1c:9f:68:65:71:46:e5:f4:6e:5b:
87:d2:ad:91:ca:c9:5f:22:55:fb:9c:38:24:57:3c:
c2:50:1b:a3:44:3c:4c:3a:f4:96:75:b4:1d:79:a4:
35:f8:72:74:f3:a4:c7:67:95:31:55:a1:53:63:74:
11:e8:56:2f:6f:99:cb:2b:e9:22:34:41:ac:53:13:
d6:f5:2e:29:e1:a0:33:9f:f3:03:03:ad:15:65:d9:
aa:71:b3:6b:1c:d3:87:de:84:85:90:b8:28:44:44:
39:80:30:34:22:4d:97:ae:5d:2f:14:cd:63:5a:27:
5f:a7:b1:42:16:c4:83:dc:db:4d:c5:d5:5e:aa:9d:
ec:5b:48:e9:3e:1a:18:8e:b9:7d:ce:c5:f6:8f:86:
98:ea:f8:d2:39:ed:13:fe:6d:cf:a7:07:86:29:44:
fe:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E2:34:20:EE:43:49:2F:91:69:54:5A:E1:FC:0A:D0:59:38:E8:60
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/zuI0IO5DSS-RaVRa4fwK0Fk46GA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.194.0/23
Signature Algorithm: sha256WithRSAEncryption
26:7a:6d:a1:0d:d5:66:b8:fd:34:d5:7a:53:81:a7:cf:1b:4a:
db:08:51:a5:2f:46:61:f2:d0:6e:53:7a:27:13:00:30:4e:04:
48:ef:df:40:58:0c:f4:a8:62:a6:27:5e:40:ac:d0:de:e7:68:
1d:56:1a:cf:0c:2e:7f:91:54:db:f4:5d:20:da:60:c2:5b:3f:
6c:f4:09:c4:92:f1:bf:82:de:a5:2d:ee:86:5a:48:a1:77:2a:
10:7e:57:fb:be:e9:fe:d7:09:f3:61:26:4a:1e:52:2c:ff:01:
63:f3:d9:34:3c:1a:77:60:00:cb:1b:cb:ae:50:d8:7a:2e:4f:
ca:03:57:b8:6e:2b:87:4c:2e:be:6a:e1:e0:18:1d:4d:31:5c:
8b:7d:a9:16:8d:41:68:53:9f:ba:b9:82:07:d8:9a:c4:73:64:
23:b7:04:12:ef:d0:7c:f8:6d:55:ef:4a:e3:13:89:94:1e:f2:
da:e7:8b:1e:d9:97:83:a0:f4:f6:8a:73:cd:b7:d9:4a:b2:49:
fa:2e:b0:78:27:44:d5:a4:e7:e4:f1:de:9c:5f:ab:79:5f:97:
cd:49:cd:e3:49:c6:6b:69:08:59:d3:c1:10:1e:26:a2:51:ce:
d9:a6:90:64:a1:b6:b2:d6:5a:27:bc:7b:90:f5:6b:aa:c4:c4:
e0:5b:6d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org