Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/188994-2d40-4c48-ba88-f6070a4ad83a/1/zvdMGRrRmMrKZ-1VqDV9yOODkNA.roa
File: zvdMGRrRmMrKZ-1VqDV9yOODkNA.roa (raw, json)
Hash identifier: chor6iMTKKB/FRp4kbPmhUImFe4+Qzolkb4AMIMZkGk=
Subject key identifier: CE:F7:4C:19:1A:D1:98:CA:CA:67:ED:55:A8:35:7D:C8:E3:83:90:D0
Certificate issuer: /CN=5e7401f32cd281699fbe4dcf3bb502a63a2a60de
Certificate serial: 019252544BCE5B735F69641F5C52A0EB531F
Authority key identifier: 5E:74:01:F3:2C:D2:81:69:9F:BE:4D:CF:3B:B5:02:A6:3A:2A:60:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XnQB8yzSgWmfvk3PO7UCpjoqYN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/188994-2d40-4c48-ba88-f6070a4ad83a/1/zvdMGRrRmMrKZ-1VqDV9yOODkNA.roa
Signing time: Thu 03 Oct 2024 12:21:49 +0000
ROA not before: Thu 03 Oct 2024 12:21:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59720
IP address blocks: 213.166.184.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:47:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:52:54:4b:ce:5b:73:5f:69:64:1f:5c:52:a0:eb:53:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e7401f32cd281699fbe4dcf3bb502a63a2a60de
Validity
Not Before: Oct 3 12:21:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cef74c191ad198caca67ed55a8357dc8e38390d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cf:82:1e:5f:33:d8:3a:fa:52:01:88:cc:7f:
77:88:9a:e4:f4:e3:c0:90:fa:c3:f7:92:ff:d3:1f:
ed:c7:4f:8f:a4:34:db:9c:6f:26:0f:61:0c:ec:75:
9c:85:54:9c:75:05:64:9b:c9:c3:25:c7:1b:7c:c3:
4b:fd:3b:95:a3:f9:c0:82:af:5b:32:07:33:a1:c0:
67:9d:9b:64:05:59:8b:ca:2c:30:a6:e1:3d:ca:b9:
f2:50:3f:15:5e:ee:23:9a:90:91:de:73:ea:85:08:
74:e0:bb:a5:94:4e:64:85:af:f9:5e:5b:9a:c9:78:
63:80:c1:bb:0a:fe:85:29:38:8c:34:72:c1:57:78:
d0:09:33:1a:e1:e6:68:3f:64:51:ec:c4:cc:82:8d:
02:80:6d:1e:a2:23:4e:37:07:06:5b:4b:46:7d:31:
d0:5c:7c:bb:df:e3:e8:98:cb:5f:82:98:b7:e4:01:
48:b7:86:da:6e:8a:49:e3:37:a5:90:27:6e:0e:2c:
ab:ae:93:4a:fa:d1:8c:8d:a0:b3:c8:5d:5b:8c:9c:
02:9a:e4:f9:7c:51:34:96:18:3e:8d:b7:73:48:41:
d1:a3:a7:74:ee:5e:81:27:98:21:b5:dd:2f:5b:b5:
f0:21:20:2b:86:bc:b0:1b:45:17:96:e1:7b:8b:a3:
37:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F7:4C:19:1A:D1:98:CA:CA:67:ED:55:A8:35:7D:C8:E3:83:90:D0
X509v3 Authority Key Identifier:
keyid:5E:74:01:F3:2C:D2:81:69:9F:BE:4D:CF:3B:B5:02:A6:3A:2A:60:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XnQB8yzSgWmfvk3PO7UCpjoqYN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/188994-2d40-4c48-ba88-f6070a4ad83a/1/zvdMGRrRmMrKZ-1VqDV9yOODkNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/188994-2d40-4c48-ba88-f6070a4ad83a/1/XnQB8yzSgWmfvk3PO7UCpjoqYN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.166.184.0/23
Signature Algorithm: sha256WithRSAEncryption
89:c1:41:b5:ec:d8:8e:2f:14:12:a3:45:58:61:2b:ca:2f:fa:
87:0f:0a:ed:c7:db:b7:3c:53:b6:c9:71:f9:eb:92:96:e7:86:
18:dd:0d:b8:6c:f7:0b:ee:75:a0:4a:bc:16:e9:d8:c6:28:ed:
b0:01:98:68:fa:d1:89:74:7b:74:c1:c0:80:a5:9d:89:84:27:
a9:ef:b8:bb:13:61:b1:4f:e9:dc:c8:49:10:40:07:77:1d:16:
06:fc:a9:59:62:11:90:f2:b8:db:7f:a1:b6:1d:dc:e4:5a:1a:
ad:13:9c:a1:51:dd:98:9e:4d:05:fa:53:85:33:57:ba:f8:d2:
8b:c4:f4:e2:34:7c:01:83:2f:3e:b9:b1:3e:f6:98:14:67:69:
cd:98:92:15:eb:d1:a9:21:99:16:6a:29:67:bd:27:c0:1a:37:
87:eb:e5:2c:7d:d7:3f:94:57:45:29:16:17:40:6a:aa:16:6d:
fa:43:72:3f:49:45:8a:5c:fb:44:65:5b:3e:8a:fe:25:fa:e2:
4f:80:aa:6c:a1:bf:37:55:9b:d4:f4:0b:c9:9c:9d:7a:da:1b:
62:5c:c8:94:d7:b8:35:02:a8:e5:e7:dd:4b:92:77:1b:40:12:
cc:86:70:c3:c3:4f:5a:ca:d3:e0:2e:cc:04:01:07:53:c1:3d:
7d:77:fc:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:57:56 2025 by rpki-client