Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/ziN0POClq6e2XQTgiPUbVXVOVu4.roa
File: ziN0POClq6e2XQTgiPUbVXVOVu4.roa (raw, json)
Hash identifier: 3i0j6v3lzK8yqMoQrnPICvjylidQS+Wgl8p1JWVxh/c=
Subject key identifier: CE:23:74:3C:E0:A5:AB:A7:B6:5D:04:E0:88:F5:1B:55:75:4E:56:EE
Certificate issuer: /CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Certificate serial: 0186C5A1AF2EAECBAE726F4E2DE1C1135095
Authority key identifier: 6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/ziN0POClq6e2XQTgiPUbVXVOVu4.roa
Signing time: Thu 09 Mar 2023 09:09:12 +0000
ROA not before: Thu 09 Mar 2023 09:09:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212038
IP address blocks: 185.218.197.0/24 maxlen: 24
2a10:c780::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:a1:af:2e:ae:cb:ae:72:6f:4e:2d:e1:c1:13:50:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Validity
Not Before: Mar 9 09:09:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce23743ce0a5aba7b65d04e088f51b55754e56ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:12:a4:1a:71:20:1d:a8:ef:f3:31:88:84:cb:
fe:07:c0:c6:2e:08:62:56:03:c8:cf:d1:8c:7b:50:
ab:27:df:81:ee:5f:1c:ba:e5:b4:1e:a5:cc:1f:93:
d3:f7:f5:78:cd:8e:ac:27:00:e5:5c:67:df:76:e9:
67:61:93:85:82:d5:77:12:6f:30:5d:5b:fc:9b:bf:
60:2a:d7:10:89:cf:a2:00:da:de:f0:fd:d5:5f:dc:
85:af:b7:be:42:a4:1a:66:0f:1e:a7:36:01:70:a0:
5a:98:72:cc:4d:d2:13:f0:8d:8d:ba:2e:08:8d:4a:
d2:d2:d0:77:c8:39:55:01:d4:4c:65:b9:fe:d3:48:
80:c5:8e:9e:37:2a:c1:dc:15:02:5b:71:2f:54:d8:
a4:11:8c:04:8e:74:b6:86:39:8a:be:50:69:2a:6c:
ab:05:6a:64:91:a1:96:22:90:21:b0:22:c0:8c:1e:
81:8b:54:7f:15:85:86:44:9b:9e:ae:d7:bf:cb:b2:
8a:51:19:6c:d2:c8:78:05:bf:d4:e3:7d:32:94:68:
57:1c:55:ca:3b:22:e1:45:0e:6d:c9:d5:85:d5:18:
a2:18:ce:54:eb:d4:c3:1a:78:c1:c0:0e:d7:db:59:
4b:c7:11:b8:a2:b9:b8:25:67:a6:ef:e7:2c:75:e4:
82:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:23:74:3C:E0:A5:AB:A7:B6:5D:04:E0:88:F5:1B:55:75:4E:56:EE
X509v3 Authority Key Identifier:
keyid:6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/ziN0POClq6e2XQTgiPUbVXVOVu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.197.0/24
IPv6:
2a10:c780::/29
Signature Algorithm: sha256WithRSAEncryption
74:38:66:49:2e:d5:f6:26:41:47:3e:6c:45:b8:a3:5e:17:84:
fc:8c:95:43:8e:00:6f:16:e6:27:1a:b9:95:9b:ee:ee:9e:5b:
2b:0d:da:63:2f:f8:ff:ba:6a:6e:3b:60:88:75:ce:8c:fc:70:
cc:1c:e4:14:1f:39:d6:0b:b3:62:11:82:8a:7d:43:39:b1:07:
22:df:e6:1b:82:e8:5e:98:77:d2:71:cf:0f:0c:15:8b:b0:87:
62:79:a9:0f:6e:2a:ae:c5:ba:67:0b:70:a8:4a:7e:b8:85:21:
83:c0:65:f2:88:f4:aa:1f:69:84:40:5d:dc:fd:59:eb:ae:7a:
1b:04:af:b7:9a:5a:f9:f5:95:86:5b:52:ae:b2:3e:43:10:43:
36:cb:b9:99:48:20:48:fb:39:c9:b5:9d:66:e8:bc:7f:09:18:
ee:76:f3:f1:55:ec:bd:4d:65:ff:af:5f:fc:2d:8b:5f:b0:a9:
06:f0:1e:ac:91:bd:f6:00:aa:e0:e4:3f:8e:b3:79:05:51:54:
a5:e3:6d:e5:87:fd:bf:64:d5:20:7e:dd:17:b4:7d:95:ba:31:
e5:c5:2f:34:10:92:94:68:76:da:b6:23:1e:76:98:34:14:80:
b8:c4:0b:93:84:19:22:d5:59:9e:56:9a:a3:f4:b3:b4:e2:9d:
cf:a2:1c:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org