Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/340eb5-7be0-4bc9-bf2d-b473ce7807ca/1/pzoToL7n_KQVkuEi4f3zO3yK3n0.roa
File: pzoToL7n_KQVkuEi4f3zO3yK3n0.roa (raw, json)
Hash identifier: iwZho2jquWYGfjWk8VpVZ2MA0F82J4hSM15vIvEUqzM=
Subject key identifier: A7:3A:13:A0:BE:E7:FC:A4:15:92:E1:22:E1:FD:F3:3B:7C:8A:DE:7D
Certificate issuer: /CN=082b303cb49e73e2d2a404583d5f8377ceb02545
Certificate serial: 018AD5647D7C68899B8F6BBA918024AA7D87
Authority key identifier: 08:2B:30:3C:B4:9E:73:E2:D2:A4:04:58:3D:5F:83:77:CE:B0:25:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CCswPLSec-LSpARYPV-Dd86wJUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/340eb5-7be0-4bc9-bf2d-b473ce7807ca/1/pzoToL7n_KQVkuEi4f3zO3yK3n0.roa
Signing time: Wed 27 Sep 2023 06:47:27 +0000
ROA not before: Wed 27 Sep 2023 06:47:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59812
IP address blocks: 193.134.251.0/24 maxlen: 24
2a12:5a40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 07 Oct 2023 13:43:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d5:64:7d:7c:68:89:9b:8f:6b:ba:91:80:24:aa:7d:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=082b303cb49e73e2d2a404583d5f8377ceb02545
Validity
Not Before: Sep 27 06:47:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a73a13a0bee7fca41592e122e1fdf33b7c8ade7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:63:72:69:af:ea:68:e5:87:45:d3:79:62:7d:
c5:76:f8:44:1b:f0:56:07:15:3f:e0:3d:80:52:56:
92:a2:42:1f:02:25:b2:4e:86:01:50:82:bc:91:87:
af:67:4d:83:b7:fc:84:8d:7f:35:9e:0e:81:96:59:
b1:c6:05:79:9b:9e:66:52:18:de:aa:db:c4:3f:49:
60:31:90:aa:d7:f2:64:e0:6a:c6:fd:e2:97:e9:31:
3b:b3:19:59:61:14:62:64:e6:b1:59:da:0e:e9:d3:
56:3a:1b:3b:05:f5:5e:8a:79:13:e3:d5:12:0c:69:
74:5a:db:2f:6e:bf:e7:b3:32:c9:07:3b:81:34:a8:
c2:49:3d:99:2c:ef:ae:5a:cc:bc:24:57:cf:35:a0:
ee:5c:ef:63:54:27:d0:33:f0:63:cd:78:3f:91:2c:
d6:85:ee:d3:9d:62:7a:95:28:b3:c4:cd:e4:9b:d8:
fd:b1:d3:23:23:09:82:fa:0b:0a:cd:72:d8:ab:47:
40:ce:23:1a:10:b3:8f:97:07:61:a1:d5:a9:91:cb:
b0:ca:4d:f1:d4:87:33:bd:22:f1:65:3d:f8:9a:c8:
b9:3c:0a:83:65:7b:b1:8d:fd:34:0b:9e:13:3d:1f:
78:47:5b:93:5d:48:dc:24:29:3e:24:26:36:4e:9e:
29:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:3A:13:A0:BE:E7:FC:A4:15:92:E1:22:E1:FD:F3:3B:7C:8A:DE:7D
X509v3 Authority Key Identifier:
keyid:08:2B:30:3C:B4:9E:73:E2:D2:A4:04:58:3D:5F:83:77:CE:B0:25:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CCswPLSec-LSpARYPV-Dd86wJUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/340eb5-7be0-4bc9-bf2d-b473ce7807ca/1/pzoToL7n_KQVkuEi4f3zO3yK3n0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/340eb5-7be0-4bc9-bf2d-b473ce7807ca/1/CCswPLSec-LSpARYPV-Dd86wJUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.251.0/24
IPv6:
2a12:5a40::/29
Signature Algorithm: sha256WithRSAEncryption
a0:7f:65:6f:2e:26:40:6e:f1:61:df:83:53:51:12:60:83:b6:
c6:a7:80:2f:72:53:b6:34:56:06:ca:8f:15:a3:c2:0c:25:dc:
93:ae:d5:25:ef:b7:d6:c1:49:8e:b5:f1:8e:44:d0:13:ba:f5:
cd:17:27:72:9d:e6:9a:54:fb:18:ec:1a:d6:d6:8a:17:87:f8:
95:69:d3:fa:82:d6:a7:11:65:bc:f7:e5:fb:c5:43:4e:b9:bf:
c8:9a:d1:3f:35:4f:f8:46:c0:5f:97:f9:f1:1a:9b:1d:8d:02:
ca:aa:6f:51:9a:fb:fa:7f:43:cc:b9:b3:0b:2f:f7:1b:02:ba:
04:00:fa:6a:58:68:5b:d1:3f:0c:5d:f6:1f:bb:52:46:c6:32:
37:9d:46:d1:c9:a8:08:f8:01:31:6f:7b:d5:5a:45:bf:f3:09:
cd:52:3d:53:58:54:b9:6b:3a:d2:02:9e:ce:ae:c8:cb:90:f9:
31:aa:d1:7a:da:63:64:27:84:3a:9c:14:60:80:6b:63:c4:00:
b2:ba:70:fc:2d:79:2f:d8:24:39:b1:7a:26:67:e0:e8:bd:48:
c1:f1:38:00:e7:34:9d:1f:47:7e:c3:91:35:19:ad:12:26:34:
f5:41:2f:56:c7:5c:bf:88:0d:3b:b7:4c:c1:c3:eb:c6:1d:7e:
60:22:c3:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:08 2024 by rpki-client on console-ams.rpki-client.org