Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/ZfEw-8yUU4Aj9yOewEaZGnUbPsU.roa
File: ZfEw-8yUU4Aj9yOewEaZGnUbPsU.roa (raw, json)
Hash identifier: BUOAy9Dw51QtEmuLUBBzTrup/0hyd4T6PZ3zj0UIYAI=
Subject key identifier: 65:F1:30:FB:CC:94:53:80:23:F7:23:9E:C0:46:99:1A:75:1B:3E:C5
Certificate issuer: /CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Certificate serial: 01887AE76352A96EF654F40D94067188A4D3
Authority key identifier: 11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/ZfEw-8yUU4Aj9yOewEaZGnUbPsU.roa
Signing time: Fri 02 Jun 2023 06:59:24 +0000
ROA not before: Fri 02 Jun 2023 06:59:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202973
IP address blocks: 94.228.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7a:e7:63:52:a9:6e:f6:54:f4:0d:94:06:71:88:a4:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Validity
Not Before: Jun 2 06:59:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65f130fbcc94538023f7239ec046991a751b3ec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f5:6a:a8:7e:af:e8:c6:8e:5d:12:ff:4d:48:
5e:1f:97:16:34:5c:4c:32:e8:f3:c3:26:b5:85:7c:
1e:4b:73:fd:89:18:9f:39:67:c0:97:6b:59:d0:ee:
07:f3:20:a4:00:a4:cb:0d:9c:f8:1e:b1:f1:dd:a8:
78:5e:24:bb:35:87:a4:5b:31:d1:37:31:97:c3:da:
24:a8:ae:c7:83:d8:88:2a:10:68:fa:6b:65:32:f3:
95:69:db:10:e4:00:0a:ff:53:33:06:19:6a:24:61:
6c:5f:ad:10:db:fb:f0:ab:fe:10:e9:14:f2:9f:1c:
3e:23:6a:ef:a4:ae:80:91:47:3f:41:85:7d:be:69:
b0:aa:95:69:66:f4:ed:44:b2:b9:dd:e5:0e:5e:25:
87:9d:7f:a8:4f:a0:78:f6:6a:2f:da:56:6d:ae:a9:
2d:b5:a3:c2:df:69:37:be:5e:45:e1:14:b7:12:c0:
e3:f4:90:27:24:d3:7c:fc:e0:e8:50:66:2f:81:cf:
d4:10:21:90:b9:98:30:12:47:52:29:2d:7b:d1:2c:
b0:cb:ac:65:88:13:ea:a3:33:f3:73:fe:5a:2e:e6:
62:39:96:26:c9:d6:cc:b3:7a:79:0b:c0:2b:f2:ce:
91:73:4e:80:45:50:85:32:f0:86:a1:78:2b:c2:15:
9b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:F1:30:FB:CC:94:53:80:23:F7:23:9E:C0:46:99:1A:75:1B:3E:C5
X509v3 Authority Key Identifier:
keyid:11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/ZfEw-8yUU4Aj9yOewEaZGnUbPsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.228.170.0/24
Signature Algorithm: sha256WithRSAEncryption
36:7e:e2:72:ec:8c:1d:c3:4e:15:e4:9f:ce:bf:32:31:82:04:
f2:07:89:6b:c8:59:75:59:74:09:5d:d6:89:81:ad:ad:f1:b0:
9f:c3:f4:5d:72:d4:3a:80:e4:30:bb:20:7a:72:92:70:85:d7:
12:a9:74:b3:71:4d:f9:3d:b8:b0:da:a8:95:29:06:f5:fc:9c:
0c:06:c0:bd:7e:d1:3e:14:b9:ca:00:e9:5f:35:dc:60:85:4a:
2e:17:e5:74:35:86:0d:35:32:69:ad:b9:20:dd:b8:f7:61:2e:
0c:60:10:f3:4f:1d:25:f4:2e:27:98:07:be:47:11:b6:b6:cf:
3b:ea:6c:99:06:6b:28:f3:1c:a3:a6:43:cc:6d:29:7d:b0:ad:
c4:33:70:6b:98:fe:72:64:3b:ef:ae:2c:2a:8b:01:e7:91:54:
49:20:03:0f:28:77:8f:9a:50:07:e5:87:0c:8a:aa:cd:92:1e:
aa:27:bb:ec:5c:83:7d:a4:19:62:c6:a7:5a:54:5b:ac:9f:8a:
6d:a7:f9:e5:59:7f:0d:61:43:be:c2:9d:44:f4:86:ae:e9:da:
e2:a6:93:c5:ca:28:80:3a:14:5e:f4:57:a9:f9:d8:64:5a:20:
b0:68:63:48:8d:fd:0c:d3:a9:35:2e:2b:40:9c:78:21:ed:c3:
97:c4:b6:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 17:23:25 2023 by rpki-client on console-fra.rpki-client.org