Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/ZowLNV600MC0wyM_-VthSDAQmLc.roa
File: ZowLNV600MC0wyM_-VthSDAQmLc.roa (raw, json)
Hash identifier: P5UD3UhBv+iWUagP7rbWQ3wda7cw1Qtj59BbjFhhkUs=
Subject key identifier: 66:8C:0B:35:5E:B4:D0:C0:B4:C3:23:3F:F9:5B:61:48:30:10:98:B7
Certificate issuer: /CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Certificate serial: 0193ACA4CFCFBE5AEEEA039E479A3D11D3A4
Authority key identifier: 41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/ZowLNV600MC0wyM_-VthSDAQmLc.roa
Signing time: Mon 09 Dec 2024 18:18:22 +0000
ROA not before: Mon 09 Dec 2024 18:18:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205516
IP address blocks: 5.35.80.0/24 maxlen: 24
5.35.81.0/24 maxlen: 24
83.222.22.0/23 maxlen: 24
89.169.36.0/23 maxlen: 24
90.156.252.0/23 maxlen: 24
91.218.140.0/24 maxlen: 24
91.218.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Dec 2024 09:08:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ac:a4:cf:cf:be:5a:ee:ea:03:9e:47:9a:3d:11:d3:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Validity
Not Before: Dec 9 18:18:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=668c0b355eb4d0c0b4c3233ff95b6148301098b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3d:c1:5e:45:11:69:5f:25:7c:c3:fc:4b:b0:
71:40:7f:f4:9d:91:0e:41:98:ea:5e:c6:11:76:0f:
e9:fc:31:54:d9:8a:34:88:bf:68:76:37:e3:74:e9:
bc:50:b2:8d:27:b8:f6:52:bd:b9:6d:bf:90:b8:9f:
e5:1c:41:3b:b9:1b:a0:1f:18:d2:92:10:54:41:d1:
ef:4f:23:b7:49:49:05:17:47:bc:6c:89:9d:cc:8b:
99:60:e3:4b:e2:17:eb:c5:31:16:71:7e:83:73:2c:
34:13:7d:9b:5d:8a:4a:e6:34:5c:b0:8f:4b:94:5b:
54:9c:e4:79:da:1d:5b:69:47:3e:18:4f:e4:75:ad:
6f:4b:08:5d:93:7e:68:49:fc:10:00:80:3a:0b:91:
b3:e1:73:35:d5:5c:5c:d9:ab:22:fe:92:84:85:5d:
1e:e7:0f:65:29:28:ac:09:a5:2b:75:dd:f2:70:91:
44:d5:ce:81:e7:82:16:9b:aa:ff:3c:da:44:6f:06:
f7:fc:3d:80:18:b4:15:91:ab:ad:b1:45:6d:ae:ef:
b4:8b:ba:9e:8d:70:69:d0:85:1f:ff:7c:3d:7c:23:
44:d9:66:e1:8d:af:0f:3f:98:58:58:ff:9c:13:5e:
b9:07:f3:8b:18:f9:4c:d4:2c:da:30:fc:f3:0a:69:
e2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:8C:0B:35:5E:B4:D0:C0:B4:C3:23:3F:F9:5B:61:48:30:10:98:B7
X509v3 Authority Key Identifier:
keyid:41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/ZowLNV600MC0wyM_-VthSDAQmLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.35.80.0/23
83.222.22.0/23
89.169.36.0/23
90.156.252.0/23
91.218.140.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:a5:9e:86:ac:d3:4a:28:68:f2:a2:56:fb:8b:4d:1a:40:14:
21:79:0c:a8:f8:de:4f:49:e0:0b:b1:90:49:de:e2:61:ec:de:
7b:34:1a:12:d4:3c:0e:d7:35:6d:2a:ec:29:c8:c9:48:73:0c:
1c:7c:3f:46:9b:bc:a6:14:c8:0f:66:6b:bf:02:df:20:a7:93:
10:dc:11:b7:a9:28:fc:47:c8:f3:58:b2:6b:28:2a:9a:53:8e:
e8:eb:56:17:3f:95:ed:91:98:5a:d7:c1:4b:48:32:e8:57:88:
41:a7:c6:33:7e:9c:42:63:5e:a9:cc:1b:f9:b3:8e:6f:54:e6:
67:25:e6:d9:a6:4d:d3:80:67:3b:0d:90:a4:e9:88:26:27:19:
fc:16:96:46:95:60:73:e0:e2:82:1a:c7:24:e0:cc:e2:e1:2b:
c5:cb:3f:6b:47:e3:e1:3e:9b:cd:b0:c5:31:1a:94:04:98:8b:
f7:b5:7a:04:6c:13:fb:7a:e3:aa:41:e5:85:ce:5d:96:c5:ae:
fb:e5:a4:76:7d:22:45:c0:8f:ea:33:e2:5e:aa:12:c8:52:41:
2e:2e:3a:8c:1a:f9:45:4c:10:50:ca:e3:d2:d3:c9:47:89:14:
cb:ee:27:00:e6:97:05:a3:e2:70:b6:54:f4:27:7e:ce:0c:13:
ab:14:d2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 19:22:10 2025 by rpki-client