Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/xkzzd26peojg_KRq56UJd570ohY.roa
File: xkzzd26peojg_KRq56UJd570ohY.roa (raw, json)
Hash identifier: U/EP/SSeQBzOI4Ku29ZGzczZpZwhJ/l3y5RlaqannKI=
Subject key identifier: C6:4C:F3:77:6E:A9:7A:88:E0:FC:A4:6A:E7:A5:09:77:9E:F4:A2:16
Certificate issuer: /CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Certificate serial: 018B664F51EDC9F417BA8FEC8DBCB89BBE86
Authority key identifier: 67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/xkzzd26peojg_KRq56UJd570ohY.roa
Signing time: Wed 25 Oct 2023 10:09:16 +0000
ROA not before: Wed 25 Oct 2023 10:09:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35205
IP address blocks: 194.126.129.0/24 maxlen: 24
2a05:3700::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:66:4f:51:ed:c9:f4:17:ba:8f:ec:8d:bc:b8:9b:be:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Validity
Not Before: Oct 25 10:09:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c64cf3776ea97a88e0fca46ae7a509779ef4a216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:56:b0:6b:84:60:6b:c3:e0:07:28:41:ac:
91:ea:b1:06:8b:bc:10:38:90:58:df:a5:4f:fb:b2:
86:e5:c7:d9:09:0a:55:41:24:5f:e5:85:c3:03:70:
c0:48:43:88:f5:95:88:41:07:cb:c2:df:1f:3e:6b:
b7:29:a3:24:82:c7:b3:fe:6d:92:63:59:8b:ab:fe:
e4:a7:f2:9e:eb:16:ad:ed:ec:3e:2b:08:e3:87:3e:
24:60:f6:d5:60:ba:4a:c4:f0:c0:33:bc:bc:0e:b6:
37:c6:0d:80:0f:2b:0a:02:e5:48:65:1e:c8:12:2a:
02:65:d8:32:1a:77:39:cc:53:85:94:a0:79:ae:d6:
d4:11:6d:58:1b:31:4b:b5:01:56:9e:5c:d3:60:8f:
f5:fe:d9:46:d1:f4:e6:0a:90:38:21:73:00:a3:12:
56:db:02:f1:a3:2a:62:3e:7c:47:27:33:c3:2f:61:
9b:06:6f:e8:98:24:87:87:45:9e:37:5d:68:99:75:
24:e6:fa:9c:2b:2b:f6:fc:22:b3:db:a6:61:3a:44:
ee:cb:63:01:49:7f:6f:88:d6:44:4e:cd:53:fc:a2:
06:e5:21:d7:b5:08:6b:19:a2:63:9d:b6:c6:7c:c5:
32:4e:0f:07:2c:0a:1b:18:15:52:e6:8f:41:6a:37:
86:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:4C:F3:77:6E:A9:7A:88:E0:FC:A4:6A:E7:A5:09:77:9E:F4:A2:16
X509v3 Authority Key Identifier:
keyid:67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/xkzzd26peojg_KRq56UJd570ohY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.129.0/24
IPv6:
2a05:3700::/29
Signature Algorithm: sha256WithRSAEncryption
9b:11:75:60:fd:63:94:02:10:ff:74:19:b4:c7:b0:ac:3f:a3:
8e:a2:1e:2e:93:46:e6:fe:3d:a5:8d:77:24:70:a2:61:fa:b5:
1c:f0:55:42:92:da:55:27:ea:84:42:aa:e8:ac:bb:b2:2b:f8:
fe:fc:b3:22:62:cb:51:8e:b5:3a:66:cc:5f:10:bc:f7:77:e8:
2b:68:bd:31:f9:7a:b8:6f:f2:26:a9:0f:ed:90:5e:93:01:aa:
03:15:40:90:b8:c3:fa:6c:a0:03:43:1d:90:8e:4a:c2:66:87:
e2:74:a4:42:8b:38:30:31:b5:ff:41:04:08:2f:ea:4d:7f:7c:
34:98:71:d1:44:b5:02:09:01:2d:34:f5:27:ac:45:94:f6:0a:
d2:86:07:51:8e:86:66:96:ec:09:08:55:06:a4:c7:d9:bc:f9:
e4:1f:fe:c0:9d:39:91:cb:9d:c1:a1:45:da:c3:93:c3:77:94:
e4:97:8d:0f:42:db:51:5d:da:bc:b8:fd:b6:1a:81:b3:65:3d:
34:ab:f2:48:af:f6:d0:a0:9d:4c:4a:f9:ae:9b:b4:d4:ca:fd:
b2:d8:d0:26:1c:f7:71:9a:87:7b:26:84:94:df:f9:05:47:60:
b4:ba:14:09:06:33:3d:6c:c2:90:99:a7:63:05:7b:a2:16:0c:
4c:8b:5c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:30 2024 by rpki-client on console-fra.rpki-client.org