Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ZiCYSUfq-yWJ7WQTOpRFnCILlgg.roa
File: ZiCYSUfq-yWJ7WQTOpRFnCILlgg.roa (raw, json)
Hash identifier: 5m0QfShIEJrxP3QmatVcCxjdJPvit0S93XuKVk1d6go=
Subject key identifier: 66:20:98:49:47:EA:FB:25:89:ED:64:13:3A:94:45:9C:22:0B:96:08
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018959A59B1C2D1D3E977B33BF5D175835CD
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ZiCYSUfq-yWJ7WQTOpRFnCILlgg.roa
Signing time: Sat 15 Jul 2023 13:02:52 +0000
ROA not before: Sat 15 Jul 2023 13:02:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213382
IP address blocks: 193.58.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 08:59:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:59:a5:9b:1c:2d:1d:3e:97:7b:33:bf:5d:17:58:35:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 15 13:02:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6620984947eafb2589ed64133a94459c220b9608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f6:db:cc:bf:b8:6f:f5:e2:7d:a4:17:df:45:
a2:99:db:03:9a:b4:88:6e:60:33:12:d0:16:d9:c8:
bf:ca:98:20:6c:da:fa:db:d7:e3:1c:1e:2e:57:17:
99:33:85:c9:7f:bf:57:03:a0:6a:15:73:e2:8b:45:
31:49:6c:ff:86:ff:dd:46:4a:ed:2a:e0:f6:30:08:
f0:8c:7c:be:25:ac:b5:b7:b4:f7:d4:bb:7e:07:db:
b4:51:f8:5e:a5:61:97:d5:7c:59:4d:3d:38:41:8d:
c4:24:f9:7e:a8:cd:e4:81:4a:01:6c:f7:58:94:3c:
22:b7:b7:a0:a5:1b:ff:20:49:2f:ff:80:fc:d3:a4:
80:03:22:54:35:c1:a6:63:d5:5d:ab:20:ac:e1:03:
83:a9:d4:1f:2b:bb:d5:a4:1a:02:18:18:18:d4:17:
bd:ef:8f:71:cb:21:25:ac:73:25:9b:de:c3:8f:ee:
bb:b6:a3:1b:03:0f:48:f7:3b:7a:28:59:c6:76:91:
ae:33:b8:7e:80:7f:a8:ae:23:8e:f1:6b:59:5b:73:
e1:44:b5:f2:aa:16:ff:9a:97:ef:09:86:c2:9f:3b:
e4:86:05:b5:db:06:4a:17:d4:86:42:cc:e0:27:f6:
32:0a:3b:db:27:0c:80:31:2f:79:ba:d8:2d:c0:73:
bb:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:20:98:49:47:EA:FB:25:89:ED:64:13:3A:94:45:9C:22:0B:96:08
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ZiCYSUfq-yWJ7WQTOpRFnCILlgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.146.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:cb:38:4b:25:2f:0a:c8:da:80:65:7b:c6:c1:97:41:49:be:
96:02:8c:7b:9c:6e:af:be:ac:0f:75:a0:2c:ab:93:3f:59:6b:
f1:9f:57:41:54:6d:24:05:2a:18:ea:56:29:9f:a8:6b:7d:54:
7a:19:49:8f:73:43:1a:73:c0:7a:34:54:09:87:45:84:19:60:
44:46:66:28:4b:8c:f0:1f:f2:71:bf:73:0e:94:9d:da:97:3e:
5c:14:7d:38:e4:c5:1f:90:53:c1:78:84:e5:d5:b8:79:8d:16:
64:04:f2:94:3d:4e:4e:38:68:77:70:12:df:27:77:25:9a:44:
39:b7:80:7e:21:b3:c7:62:aa:b7:5c:a8:0f:64:a9:47:a5:41:
c5:5f:4a:c2:56:dc:c0:cf:bd:01:76:44:af:cd:2f:1a:a3:2b:
7c:e4:39:d3:9b:69:83:3e:72:87:72:0a:a3:32:f0:cc:5e:f4:
c6:c1:80:2b:08:2c:0d:e9:b9:3f:18:9a:3e:bd:ef:8a:53:fe:
99:ea:57:8f:64:d4:c5:2f:5a:09:54:9c:1b:15:38:11:bc:89:
07:e3:ea:81:1b:57:c2:68:1f:83:da:85:e2:e5:a4:d5:3a:65:
9f:8d:23:8b:05:12:14:d8:c5:78:bf:7a:c0:8a:f8:55:73:2f:
c4:7e:43:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org