Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/zmBk6fswPno1UMtr9yXAjsY9IHk.roa
File: zmBk6fswPno1UMtr9yXAjsY9IHk.roa (raw, json)
Hash identifier: 42shw7dftrt635Qng5Kjy9wsXxLxrpSCFwgq3Ga6Gdg=
Subject key identifier: CE:60:64:E9:FB:30:3E:7A:35:50:CB:6B:F7:25:C0:8E:C6:3D:20:79
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 0192E8B66942BEA8A0EB2D533EF563D56DE5
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/zmBk6fswPno1UMtr9yXAjsY9IHk.roa
Signing time: Fri 01 Nov 2024 17:12:01 +0000
ROA not before: Fri 01 Nov 2024 17:12:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 150.241.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 19:39:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e8:b6:69:42:be:a8:a0:eb:2d:53:3e:f5:63:d5:6d:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Nov 1 17:12:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce6064e9fb303e7a3550cb6bf725c08ec63d2079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ee:ec:cb:5a:3e:fe:5b:5c:b7:07:de:bc:b1:
08:56:a5:72:62:d0:b3:f9:72:22:ad:de:24:74:cb:
2b:9a:10:a4:c0:b1:08:f6:e3:73:ee:93:5f:62:bb:
18:c2:75:fe:c6:6e:95:32:30:3c:e4:ff:7f:b9:53:
b0:56:70:71:ef:88:08:14:8e:b3:d1:b1:be:7f:3e:
05:49:af:2c:6c:c6:f6:fe:88:a9:d2:73:a9:0d:07:
08:4e:10:97:68:12:82:f1:97:4a:f8:9f:e7:45:3e:
d6:5e:df:ab:72:ba:58:cf:9b:8c:99:9a:63:93:f1:
6f:b8:6f:9a:b6:7f:fd:24:6b:e3:00:22:91:7f:87:
46:1b:93:4c:5d:29:82:08:a1:14:be:8b:22:40:f3:
97:cd:15:f8:93:56:5f:ef:3c:45:88:ce:d3:a5:62:
bd:43:fc:fb:74:4e:4e:c9:63:16:77:40:bd:b6:4a:
29:99:d2:9c:72:29:9d:17:9d:65:69:04:75:87:2e:
00:3c:26:8d:53:d5:31:aa:94:98:58:02:56:2b:35:
c0:28:96:c4:cc:ab:ed:8d:eb:78:4b:81:d3:fe:49:
18:d0:79:31:29:cb:74:6b:ca:cf:ac:59:3f:09:be:
92:7b:3c:cc:3f:7d:93:19:a2:29:4f:5c:76:91:49:
a4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:60:64:E9:FB:30:3E:7A:35:50:CB:6B:F7:25:C0:8E:C6:3D:20:79
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/zmBk6fswPno1UMtr9yXAjsY9IHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.121.0/24
Signature Algorithm: sha256WithRSAEncryption
21:89:cc:24:fd:b4:79:cc:ed:c9:14:78:35:85:3d:42:0b:54:
91:e3:aa:14:df:0c:3c:b1:53:cc:d5:bf:0f:49:92:dd:cb:d9:
9e:d2:57:ea:7b:d8:fe:3b:a4:3e:8e:f9:34:05:50:32:f2:3e:
91:d8:a5:52:fe:ce:32:c7:55:52:64:6f:4b:bc:45:78:cc:34:
45:10:4e:99:53:79:ee:e1:ba:1c:c3:bb:be:6f:d6:71:be:cb:
a8:15:60:79:8e:9f:1b:be:84:99:aa:c9:62:f4:58:2d:1f:a4:
ad:11:ba:e8:1e:6d:a4:fc:45:0e:90:74:4f:28:8b:29:0b:15:
18:eb:3c:47:c1:a5:a6:57:ad:c6:45:8b:82:fa:7e:0e:08:05:
73:0b:62:41:cb:0c:44:68:25:e0:ca:e2:40:48:f9:92:ca:df:
a5:5a:30:fe:71:15:f3:0a:f0:d7:01:65:b4:2c:00:7e:c7:b9:
12:9e:99:9b:05:57:b6:43:77:8a:75:92:b2:74:73:91:1c:f6:
ad:e4:f4:6f:ec:60:3e:b8:57:4e:f4:49:76:0c:77:0e:4b:9b:
06:da:fd:b1:73:1b:d5:e3:c2:14:4f:6c:a6:fa:55:fe:a9:98:
e0:9e:1f:22:35:24:ee:eb:21:d5:a0:d0:3f:15:40:f5:42:55:
ea:b6:fd:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:51 2025 by rpki-client