Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/ZOGtua5J35lJFUfLdoOW_aUKXT8.roa
File: ZOGtua5J35lJFUfLdoOW_aUKXT8.roa (raw, json)
Hash identifier: Qp9BPkIvtCkTQhaRVtbUTohgwZWAJvQDMwgri6kvf40=
Subject key identifier: 64:E1:AD:B9:AE:49:DF:99:49:15:47:CB:76:83:96:FD:A5:0A:5D:3F
Certificate issuer: /CN=68038d4cacbd41919952eb3709c16533838900e3
Certificate serial: 018570FBE11EF1D56D2C01D72AF437972BC9
Authority key identifier: 68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/ZOGtua5J35lJFUfLdoOW_aUKXT8.roa
Signing time: Mon 02 Jan 2023 05:37:13 +0000
ROA not before: Mon 02 Jan 2023 05:37:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43545
IP address blocks: 185.182.70.0/24 maxlen: 24
185.182.68.0/24 maxlen: 24
185.182.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Feb 2023 11:43:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:e1:1e:f1:d5:6d:2c:01:d7:2a:f4:37:97:2b:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68038d4cacbd41919952eb3709c16533838900e3
Validity
Not Before: Jan 2 05:37:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64e1adb9ae49df99491547cb768396fda50a5d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b5:ea:67:cd:eb:ed:1b:ee:eb:e8:cf:c9:b2:
fa:b0:40:cd:b7:56:f5:82:07:52:51:3d:32:5b:0e:
65:63:66:bb:6d:b7:08:78:c4:4b:91:67:1a:26:84:
32:1a:d1:82:49:ae:cb:f5:c7:2f:b5:fe:65:f3:e6:
78:a0:9c:cc:9b:9d:1b:2d:03:87:cf:fd:ed:78:37:
43:7f:81:d3:47:db:c0:99:f9:b9:d6:0a:5a:05:7f:
b1:8f:7f:de:f2:f3:2e:f2:30:63:d5:47:8d:a2:88:
89:2d:51:ca:1f:2a:bc:61:49:ba:62:d8:ff:c2:37:
40:d8:4a:bd:5c:99:7d:70:6e:ac:fe:95:30:0e:df:
38:9e:e0:b1:64:4e:d5:9a:25:3f:d2:2c:7d:08:78:
55:c1:20:1c:c8:18:ac:67:ec:56:52:e9:a5:99:62:
51:27:7a:77:25:de:a3:a2:ac:61:e5:27:de:20:eb:
6c:8d:2f:e2:f6:29:cb:42:36:80:71:78:f2:92:ee:
5d:9c:80:b2:85:62:08:bb:df:b9:4e:63:59:5a:11:
73:26:4f:bf:5c:fc:dc:fc:b8:12:05:85:71:05:23:
89:81:92:e2:1e:14:43:a7:92:22:0d:d7:00:a7:7e:
14:18:02:d7:aa:ad:6e:6b:14:59:0b:e2:f7:68:4a:
1b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E1:AD:B9:AE:49:DF:99:49:15:47:CB:76:83:96:FD:A5:0A:5D:3F
X509v3 Authority Key Identifier:
keyid:68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/ZOGtua5J35lJFUfLdoOW_aUKXT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.68.0-185.182.70.255
Signature Algorithm: sha256WithRSAEncryption
ca:a8:ae:22:3c:77:2c:d1:44:fc:23:8d:c2:91:8f:c8:fb:34:
e0:de:f6:c4:c6:45:25:d9:d0:f8:b3:5a:19:41:72:7e:98:f0:
f1:8c:21:f9:4d:30:39:66:ac:1f:12:15:eb:bc:0d:13:3c:16:
76:b8:a3:88:52:13:2f:42:98:e7:0e:d8:2a:fb:43:0f:21:97:
02:21:da:d4:87:d6:e4:d4:0c:28:ca:cc:f6:7e:93:8b:26:46:
1e:2f:91:28:48:fc:eb:c5:82:73:c8:64:96:7b:c9:13:ca:11:
b6:a8:6d:15:fe:8a:77:ad:54:bb:db:d0:ad:d2:30:33:ac:2f:
06:dc:4f:17:03:26:3d:db:31:b1:01:02:9d:91:85:a1:85:d3:
31:06:b6:6b:ef:6b:0c:49:cb:7c:42:32:36:87:66:4a:f2:54:
c2:ea:9f:ab:3e:2f:bc:86:60:26:10:f0:ca:ad:cc:05:ab:e1:
ec:c0:32:b0:95:cc:86:9f:03:69:b5:79:7b:d1:96:4f:f0:a6:
8e:f3:c4:81:dd:59:21:f7:dd:10:64:83:75:d2:56:11:2e:7a:
53:69:89:ad:70:0b:01:b4:1a:df:91:38:53:af:9f:f2:b3:af:
7c:35:cd:9d:2f:da:80:e4:c1:d4:08:ad:a2:76:89:27:15:c8:
60:71:d2:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org