Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/zmrGyC3MY8-ml4tpPfdhiJ4mLM4.roa
File: zmrGyC3MY8-ml4tpPfdhiJ4mLM4.roa (raw, json)
Hash identifier: MJqqFJolXMyufsZ+WwS2Fk9MNUmlw6vhuBg2utB9R7o=
Subject key identifier: CE:6A:C6:C8:2D:CC:63:CF:A6:97:8B:69:3D:F7:61:88:9E:26:2C:CE
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 019091FA3DF1A11F5F8A6283F0C92E1F126D
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/zmrGyC3MY8-ml4tpPfdhiJ4mLM4.roa
Signing time: Mon 08 Jul 2024 10:53:34 +0000
ROA not before: Mon 08 Jul 2024 10:53:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204004
IP address blocks: 176.222.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 06:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:fa:3d:f1:a1:1f:5f:8a:62:83:f0:c9:2e:1f:12:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Jul 8 10:53:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce6ac6c82dcc63cfa6978b693df761889e262cce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a4:47:e1:a7:df:9d:93:af:9e:8e:6e:45:a2:
83:28:5b:84:4a:07:ae:44:23:7e:ba:4d:e7:72:6f:
63:9b:8c:d1:cf:0c:07:13:ab:88:f2:d8:e4:d8:a4:
8b:4b:e6:c1:93:91:f1:53:aa:18:ad:51:13:20:33:
22:c5:7e:80:92:f2:57:ae:76:56:f5:7f:03:db:04:
a7:95:58:04:d1:fb:81:4d:1e:af:f5:28:5e:b6:47:
2b:25:31:db:a8:55:ab:20:5d:3a:4e:fc:20:a2:eb:
af:e4:02:10:33:9c:d3:03:a0:89:4b:f2:c0:fa:95:
1a:fe:15:6b:9e:f5:ef:f7:3b:b0:73:ed:02:75:29:
a3:bc:37:ba:40:aa:f6:3e:45:51:a5:cd:98:a5:89:
ef:ab:8c:30:fe:f8:1d:f9:60:68:7a:d8:e4:af:f5:
fd:48:e8:2e:c0:b9:c4:56:a8:72:21:b9:c7:90:0c:
c7:eb:a8:63:ad:18:c8:20:e7:df:05:89:3a:de:bc:
89:b4:dc:f7:81:46:62:87:e0:9e:5d:30:86:a6:3e:
f9:8a:a4:d9:71:25:e3:f0:50:c0:d7:60:e2:54:16:
97:95:c5:20:e4:b9:ba:94:b0:54:fd:b0:50:07:40:
b8:54:ed:83:74:3c:69:0b:a6:ab:43:03:1c:ea:40:
2e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:6A:C6:C8:2D:CC:63:CF:A6:97:8B:69:3D:F7:61:88:9E:26:2C:CE
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/zmrGyC3MY8-ml4tpPfdhiJ4mLM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.222.69.0/24
Signature Algorithm: sha256WithRSAEncryption
61:74:9c:92:2b:a2:80:4d:db:a6:68:2f:dd:89:bc:55:29:32:
fb:8a:f0:5c:c7:5e:48:f4:a4:e4:56:dd:bf:2d:e9:50:fc:3a:
01:7a:4b:05:5b:6f:0f:4e:02:04:dd:57:e4:01:5a:27:35:78:
2f:79:8d:f2:9d:fb:e7:c5:01:39:7e:d8:ed:9e:15:1b:78:e3:
0f:10:f7:2e:cf:10:01:d9:65:8d:d7:62:37:e6:2e:3e:be:b8:
ba:09:ce:04:d6:75:aa:cf:26:f5:bb:4b:10:83:38:7a:5c:d1:
ab:7b:e0:83:6e:a8:63:a7:7f:6f:80:fc:71:5b:0f:37:8c:c0:
cf:a5:b6:45:7d:4e:55:78:d6:68:06:60:a1:53:0b:c1:90:44:
d3:0b:9b:20:fa:ac:eb:18:b6:9d:78:ea:21:3c:cd:c1:d2:06:
f0:25:0f:d8:5a:55:88:e6:f7:8a:eb:0d:60:a7:98:9a:83:47:
3c:bc:3d:20:26:6c:15:65:6c:f4:e0:3a:72:41:96:4a:41:00:
75:cd:bf:60:3e:9a:d1:5c:a2:64:c7:13:7b:c7:e8:8a:07:c4:
fa:2b:be:a9:ab:ec:9a:45:8a:2e:0e:fc:b3:07:2e:ef:62:25:
43:dc:f9:a8:ac:2f:9a:7a:87:ac:b2:4f:f1:a2:36:29:2c:af:
38:28:40:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 07:06:50 2024 by rpki-client on console-fra.rpki-client.org