Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/zNfwLPbzPk_uTRj-6zXeJGRtxPs.roa
File: zNfwLPbzPk_uTRj-6zXeJGRtxPs.roa (raw, json)
Hash identifier: RT5nrMdAIwMaOgnuWN6DbaRpKPFzLsTv74PxUsjrs3c=
Subject key identifier: CC:D7:F0:2C:F6:F3:3E:4F:EE:4D:18:FE:EB:35:DE:24:64:6D:C4:FB
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246F6AC54EB2976E6638D58D4C893B4
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/zNfwLPbzPk_uTRj-6zXeJGRtxPs.roa
Signing time: Mon 02 Jan 2023 11:38:51 +0000
ROA not before: Mon 02 Jan 2023 11:38:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211159
IP address blocks: 151.237.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:f6:ac:54:eb:29:76:e6:63:8d:58:d4:c8:93:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccd7f02cf6f33e4fee4d18feeb35de24646dc4fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:da:91:5e:f9:cb:4a:dc:bb:a2:ac:4b:be:48:
50:91:b3:63:1d:0e:35:63:f0:4f:6f:68:08:41:32:
dd:23:d3:39:57:ff:4d:52:5b:09:d9:53:91:37:25:
6f:c2:63:5d:ba:11:ac:9a:89:66:f4:a7:ec:66:69:
46:87:b1:9e:19:4f:6f:47:d1:b9:ef:77:55:fa:01:
7d:78:3e:62:31:0c:d6:89:51:e7:12:a0:9e:b6:a7:
ca:a9:0f:1b:1d:8b:c2:f6:8b:d1:65:5e:10:00:26:
e0:a6:6f:f5:dc:cd:f6:67:b6:ac:64:e8:72:a0:8a:
01:2c:1c:23:49:6b:4d:54:21:72:51:dc:42:42:28:
d7:98:f3:f6:c9:ed:04:18:e6:89:88:78:b0:cd:35:
d6:a8:67:24:ee:e4:e7:5a:a1:66:53:71:82:40:d7:
c8:6d:4a:3e:38:b0:bb:a5:8e:fe:d7:fb:6d:13:b5:
66:2d:0c:13:fd:3d:fb:83:c6:0a:f7:53:36:53:fb:
18:2c:59:9d:e0:f6:90:b8:03:aa:03:14:f4:ae:d2:
08:36:2f:59:1d:d7:5b:ac:d8:50:98:c0:bb:3f:df:
53:4b:23:b5:2b:cc:ac:a7:fb:e3:db:a4:14:60:5e:
15:0a:90:e8:f3:40:02:8f:d1:8a:1b:88:37:db:6c:
bc:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D7:F0:2C:F6:F3:3E:4F:EE:4D:18:FE:EB:35:DE:24:64:6D:C4:FB
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/zNfwLPbzPk_uTRj-6zXeJGRtxPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.24.0/24
Signature Algorithm: sha256WithRSAEncryption
57:9b:02:21:9a:aa:15:60:d0:d3:55:24:6f:24:f0:73:73:93:
91:95:08:bb:de:f5:58:51:d9:30:2d:f3:6e:b4:39:9e:69:a9:
65:b7:fe:29:9a:b2:b7:5d:b7:30:f2:85:9d:cd:d3:56:cb:3c:
0f:b9:27:e0:6d:c2:7e:6d:52:3a:cc:ab:06:45:d8:ff:b7:7a:
30:db:e2:29:4b:08:9e:ab:32:f7:49:80:88:dd:86:ac:b7:85:
2a:33:62:ef:3e:9b:43:54:81:2d:52:6f:80:a0:0f:3e:73:57:
25:2e:ca:ba:f6:5f:8b:c7:f0:ff:4c:c6:c5:c7:f1:f7:cd:a3:
f8:75:df:b5:4f:ab:2d:f0:76:89:7f:94:a5:ce:29:39:39:1c:
7f:f6:3c:95:af:b2:f1:c0:9b:33:90:81:c9:11:60:db:7d:0e:
54:6d:cf:c2:b8:b6:ff:ef:89:d0:3f:72:04:8a:93:e1:22:41:
f0:b6:e6:a7:eb:bf:fe:cc:43:42:25:89:bf:6d:38:a1:0e:b3:
17:3f:cf:da:89:05:88:9b:b4:e6:e6:43:95:1f:9a:91:36:32:
a4:95:58:fe:2c:4c:87:96:38:59:2d:c4:2e:33:df:19:48:31:
0b:01:02:09:d6:6b:c0:e3:77:6e:f7:6c:b4:c2:d6:a3:ef:b5:
ee:55:61:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org