Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/zFT75sq9liB8NP7YP6Jcg7qbVIo.roa
File: zFT75sq9liB8NP7YP6Jcg7qbVIo.roa (raw, json)
Hash identifier: BjWyimO8xb1d0zTB2WjZ1qMPSKjinekcF9D8C94Ok7g=
Subject key identifier: CC:54:FB:E6:CA:BD:96:20:7C:34:FE:D8:3F:A2:5C:83:BA:9B:54:8A
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0192F6ABB73FC90B409779A2F103F5025CC6
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/zFT75sq9liB8NP7YP6Jcg7qbVIo.roa
Signing time: Mon 04 Nov 2024 10:15:01 +0000
ROA not before: Mon 04 Nov 2024 10:15:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214271
IP address blocks: 195.216.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:54:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f6:ab:b7:3f:c9:0b:40:97:79:a2:f1:03:f5:02:5c:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Nov 4 10:15:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc54fbe6cabd96207c34fed83fa25c83ba9b548a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:08:25:5e:49:27:9e:1f:68:6c:a3:cf:12:22:
f6:70:de:d5:6b:37:6d:c3:b7:b1:e0:c5:a0:a5:0d:
9d:0e:94:6f:3c:91:54:e0:63:b9:40:be:dd:50:6c:
0d:21:fe:9b:76:d8:e9:7e:75:b2:bd:2e:ca:7c:e6:
33:15:d1:03:4b:bb:6f:14:5c:80:97:cf:32:2b:89:
1f:fb:89:57:bc:dc:7e:25:d9:d2:fb:04:8a:da:d1:
87:ac:6c:3f:60:74:c2:27:9d:43:e0:26:65:2d:42:
0f:e8:f3:c7:ee:b5:13:f9:61:c1:ff:87:0e:78:54:
e9:98:73:61:ff:3a:0a:ce:9e:b7:53:fc:f7:68:4f:
4c:d1:bc:be:5e:3a:f0:51:ca:af:ef:2f:ba:8c:1c:
16:52:2b:da:52:87:e3:b6:4b:76:a3:37:3f:40:15:
10:dc:f7:15:2f:68:47:0d:c5:4f:3a:a5:67:65:69:
83:63:a4:44:b6:56:9d:39:18:92:e0:00:78:20:ec:
28:40:fb:44:bb:99:29:d6:ab:55:fc:1b:89:1d:a1:
fd:a1:ec:97:f7:d4:63:41:1e:56:85:2d:3f:34:80:
36:e6:08:ee:db:27:c0:a6:88:0c:0b:30:86:7d:fb:
48:33:ca:c2:21:bf:d2:a6:42:26:ea:9b:8e:d1:11:
99:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:54:FB:E6:CA:BD:96:20:7C:34:FE:D8:3F:A2:5C:83:BA:9B:54:8A
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/zFT75sq9liB8NP7YP6Jcg7qbVIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.161.0/24
Signature Algorithm: sha256WithRSAEncryption
57:fd:e8:e5:9d:57:1c:7b:1d:ea:ef:78:3f:c4:9d:07:4e:5a:
67:34:e4:ac:f5:91:7a:fc:e3:56:0c:c4:c0:14:8c:5f:ae:16:
30:0a:66:e0:56:5e:3c:79:55:e1:db:0e:df:18:b2:25:6a:4f:
fd:a6:96:85:ff:fc:5c:bd:1c:9d:80:fc:46:c8:45:36:52:71:
98:d6:1f:b2:3f:db:47:92:56:38:b6:20:98:50:75:7c:4d:f2:
ba:85:68:4c:44:f6:07:48:d8:dc:f5:d8:ec:5d:ec:38:c8:1c:
fc:17:4c:0d:ae:9c:e5:3b:b6:c4:a9:bb:17:87:4e:29:3e:49:
2e:3b:a3:f3:e1:4c:b5:a6:08:77:c6:d3:f3:93:4e:33:d9:12:
9f:8a:b8:9d:27:28:0b:33:6b:51:1a:55:82:6d:7d:62:b8:e9:
49:cf:ea:fa:1d:40:d1:59:ad:68:69:da:b1:42:34:68:ec:1d:
03:ec:ea:a8:51:fa:e7:2f:8c:fe:7e:ee:7e:26:cb:83:ab:60:
18:ad:14:e8:d3:15:07:be:9b:97:c1:cf:0b:e0:77:61:4a:b0:
5c:80:23:db:e9:e5:f1:c8:df:2d:9e:f0:9f:3b:ce:07:56:cc:
6f:05:27:ba:20:52:12:9f:cc:a0:d1:ec:b3:42:b2:74:b1:1a:
ee:6d:06:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:25 2025 by rpki-client