Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/cb51f5-a843-49c4-9f19-10eb8adfea7e/1/ZasrBn8JHcidQD5OzzIkbnVrObs.roa
File: ZasrBn8JHcidQD5OzzIkbnVrObs.roa (raw, json)
Hash identifier: uKgU5W/6MP71SEUiBpGbPWPYvf2HD0nofsETESjoD2E=
Subject key identifier: 65:AB:2B:06:7F:09:1D:C8:9D:40:3E:4E:CF:32:24:6E:75:6B:39:BB
Certificate issuer: /CN=e3d0a84bab3def41d6aaa9028de7a475d32d12bd
Certificate serial: 018971C55D9D22B94C2CCE167B7E6171E5A2
Authority key identifier: E3:D0:A8:4B:AB:3D:EF:41:D6:AA:A9:02:8D:E7:A4:75:D3:2D:12:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/49CoS6s970HWqqkCjeekddMtEr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/cb51f5-a843-49c4-9f19-10eb8adfea7e/1/ZasrBn8JHcidQD5OzzIkbnVrObs.roa
Signing time: Thu 20 Jul 2023 05:28:27 +0000
ROA not before: Thu 20 Jul 2023 05:28:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 185.238.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 14:43:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:71:c5:5d:9d:22:b9:4c:2c:ce:16:7b:7e:61:71:e5:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3d0a84bab3def41d6aaa9028de7a475d32d12bd
Validity
Not Before: Jul 20 05:28:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65ab2b067f091dc89d403e4ecf32246e756b39bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:54:54:0d:5a:6a:dd:9c:a5:90:6b:4e:4d:40:
f3:2c:4c:c9:bb:c5:71:90:b1:01:56:8c:52:4a:30:
d9:6d:39:a8:10:5a:76:12:e8:20:59:61:4e:65:e5:
ff:ef:97:05:c8:b0:0d:a3:34:10:31:1b:49:2d:e5:
ec:57:30:c8:d2:5d:2e:70:b3:36:8f:96:27:4e:60:
9e:de:b2:1f:12:81:83:90:f2:a5:0d:63:eb:51:1d:
c7:a7:68:14:13:55:28:c2:a7:e8:ed:30:71:9d:2e:
77:1d:d5:1c:34:62:75:3f:b3:e2:ba:70:a8:eb:07:
d4:2b:68:a5:ec:1d:0a:a4:37:04:ac:f6:aa:64:b1:
ea:12:4d:23:7d:37:58:a8:b1:69:80:d0:42:5b:f3:
79:38:9d:4a:62:2e:6b:72:ef:8c:d4:78:eb:f2:56:
97:7b:a1:5c:8c:2d:ce:ab:88:8a:12:ea:c0:0d:0e:
65:50:a1:60:ee:c3:c5:1e:c7:ac:14:44:46:db:ef:
b8:4b:4c:54:01:30:13:81:19:d8:cb:73:e0:e8:ac:
b1:24:83:bd:da:f4:a5:f0:62:35:49:6e:e1:b2:53:
83:2a:13:3d:87:93:1c:d5:f9:6f:91:87:f9:5f:6d:
f5:c9:5c:11:cc:83:4f:67:bf:f4:ab:31:91:91:de:
28:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:AB:2B:06:7F:09:1D:C8:9D:40:3E:4E:CF:32:24:6E:75:6B:39:BB
X509v3 Authority Key Identifier:
keyid:E3:D0:A8:4B:AB:3D:EF:41:D6:AA:A9:02:8D:E7:A4:75:D3:2D:12:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/49CoS6s970HWqqkCjeekddMtEr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/cb51f5-a843-49c4-9f19-10eb8adfea7e/1/ZasrBn8JHcidQD5OzzIkbnVrObs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/cb51f5-a843-49c4-9f19-10eb8adfea7e/1/49CoS6s970HWqqkCjeekddMtEr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.141.0/24
Signature Algorithm: sha256WithRSAEncryption
85:cd:0d:44:5f:76:76:90:c2:0c:fd:37:80:f7:91:d1:8d:29:
82:d9:a5:c0:7a:43:62:66:f8:1f:29:72:c8:04:b4:c1:0d:f6:
16:9e:20:4a:04:c7:28:a0:7c:e3:48:d2:37:eb:4e:6a:83:93:
f6:d3:81:32:ef:24:d5:a1:37:95:e2:79:53:c6:fd:41:46:df:
05:08:ef:c8:1e:68:3b:b2:b0:a4:0b:09:62:9e:36:91:8e:4f:
7f:ae:3e:cb:d1:ed:99:e0:52:b9:f8:bf:63:59:09:69:2e:d8:
e7:99:c2:64:26:01:b9:3e:30:7a:e5:84:8e:36:70:f6:b9:b4:
50:4c:2c:2a:42:2e:f8:79:25:f2:44:80:ba:9a:fe:f9:f8:30:
88:f0:db:37:98:3b:cd:f0:e8:29:de:a1:71:96:74:ce:64:ad:
ba:73:35:7e:fe:0c:63:57:f7:21:d4:7c:41:a9:cb:47:02:46:
86:29:13:6e:82:b9:ae:9d:ed:54:b3:7f:9b:0e:b2:e8:e4:93:
c7:7c:23:b4:1c:44:d5:8f:b6:65:a6:5b:e9:58:ed:60:b5:0d:
d2:81:ca:53:10:b7:1a:97:ad:40:9a:e8:23:a6:1d:13:05:cb:
1c:6f:a0:f1:27:33:07:b2:08:64:fc:3b:0f:38:d2:21:b4:c8:
65:7e:a0:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:04 2024 by rpki-client on console-ams.rpki-client.org