Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/zXYBuNfjQ_hnzNI5HMOi2DYhLh4.roa
File: zXYBuNfjQ_hnzNI5HMOi2DYhLh4.roa (raw, json)
Hash identifier: 1lrSZeldnhXqU6Jq62tBumOPfP2TwnOrgQL/irdmWTc=
Subject key identifier: CD:76:01:B8:D7:E3:43:F8:67:CC:D2:39:1C:C3:A2:D8:36:21:2E:1E
Certificate issuer: /CN=237f7db033314c473cda194e0df79f1c375da3f4
Certificate serial: 01856C6F293B2DC6A3814EEC215288ADF824
Authority key identifier: 23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/zXYBuNfjQ_hnzNI5HMOi2DYhLh4.roa
Signing time: Sun 01 Jan 2023 08:25:02 +0000
ROA not before: Sun 01 Jan 2023 08:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21050
IP address blocks: 94.187.192.0/21 maxlen: 24
94.187.200.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:29:3b:2d:c6:a3:81:4e:ec:21:52:88:ad:f8:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237f7db033314c473cda194e0df79f1c375da3f4
Validity
Not Before: Jan 1 08:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd7601b8d7e343f867ccd2391cc3a2d836212e1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0b:75:1c:c0:96:9a:18:a7:40:50:01:37:a4:
9a:26:72:cf:6d:6c:00:56:53:d1:00:81:c4:39:95:
03:a7:83:47:c8:fd:7e:e4:a4:33:5a:53:10:ae:ef:
7f:34:b3:ec:a0:25:23:56:e5:6a:12:89:e3:83:dc:
7d:36:7e:99:18:12:f2:ba:21:5d:33:70:16:a7:c6:
34:fa:49:78:48:16:35:99:37:26:9d:48:95:d2:b0:
97:47:84:5f:95:f8:77:91:18:f5:54:ef:2f:5d:a4:
7c:25:49:31:04:d3:e6:35:df:74:21:16:a0:f0:85:
1d:f7:4b:7a:ee:8d:93:2d:cc:35:ee:2a:2c:3b:64:
4e:2f:e9:b4:e6:4f:79:21:0f:a5:05:28:e6:61:92:
ad:c2:64:e8:ba:9c:27:4b:fa:03:1e:ce:c6:fb:b5:
af:a4:ae:51:1e:eb:5c:89:3a:f8:21:36:43:34:d3:
16:f1:07:90:27:de:6e:d0:46:39:5f:b3:d9:49:a0:
2b:28:3b:c5:8d:4a:3a:49:bc:12:14:34:d9:bb:8c:
67:7a:9e:76:e1:98:df:f9:1c:e5:33:2d:53:9f:55:
56:01:d3:d0:fa:62:d9:c2:cf:74:1e:0a:5a:67:a2:
7d:b2:96:00:54:82:69:71:ad:4f:e9:43:2e:2e:60:
c2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:76:01:B8:D7:E3:43:F8:67:CC:D2:39:1C:C3:A2:D8:36:21:2E:1E
X509v3 Authority Key Identifier:
keyid:23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/zXYBuNfjQ_hnzNI5HMOi2DYhLh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/I399sDMxTEc82hlODfefHDddo_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.187.192.0-94.187.203.255
Signature Algorithm: sha256WithRSAEncryption
78:b3:8c:b4:f7:49:73:1e:4c:bf:ff:2e:73:da:f9:48:60:90:
53:db:51:15:89:11:dd:b1:07:61:31:a3:f3:c7:18:5a:98:46:
bb:7c:82:33:43:e7:67:7f:65:dc:ca:a1:8e:c1:71:f3:1f:5e:
b6:f1:0c:bb:1c:4e:95:8c:1f:d7:ed:de:0b:33:d6:84:b9:3b:
4e:3e:f5:ce:f8:60:f3:da:37:d3:1b:a7:1d:67:d4:67:f3:b9:
53:13:f9:5d:b5:17:7a:1b:e9:db:15:69:a7:b4:30:b9:75:9e:
5e:be:8e:0b:f0:e5:6c:4c:b7:d1:70:28:60:95:67:db:4c:be:
32:9c:c0:90:9c:e8:ac:79:97:3a:9b:51:3c:07:44:e9:b0:c0:
da:94:87:ab:d6:ee:28:a4:e3:9f:e0:c1:80:b4:ec:cd:4b:a2:
3a:f1:69:ca:18:1f:bd:92:0e:a7:07:a0:1b:a3:49:fc:70:45:
ab:8b:fb:8d:c4:24:0e:b9:2a:91:2a:e2:39:21:85:42:70:b8:
e5:14:0a:07:89:56:91:a4:fc:e7:f5:1c:dc:d3:4b:cc:44:6f:
f3:3e:e1:c7:a8:78:ec:f0:c9:20:5a:cf:32:33:d7:75:e5:33:
98:1c:fb:4c:6d:9b:43:e7:10:0d:e4:2a:e8:47:a3:3e:b0:61:
3d:4d:f9:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:58 2024 by rpki-client on console-ams.rpki-client.org