Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/720539-d36a-44dc-93e7-5a537629a439/1/ZaVr2OB6Y-WZexbrV_yOiaog8XM.roa
File: ZaVr2OB6Y-WZexbrV_yOiaog8XM.roa (raw, json)
Hash identifier: TxmuD9giM+OfyvGaWTlVw1XF9rAn8L1ZdrSQHFxR6dg=
Subject key identifier: 65:A5:6B:D8:E0:7A:63:E5:99:7B:16:EB:57:FC:8E:89:AA:20:F1:73
Certificate issuer: /CN=3b2616b6cf7bb31efbfc153768625a4d504b24df
Certificate serial: 01857127A0A78907D95C112FEDBC4A8FEF05
Authority key identifier: 3B:26:16:B6:CF:7B:B3:1E:FB:FC:15:37:68:62:5A:4D:50:4B:24:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyYWts97sx77_BU3aGJaTVBLJN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/720539-d36a-44dc-93e7-5a537629a439/1/ZaVr2OB6Y-WZexbrV_yOiaog8XM.roa
Signing time: Mon 02 Jan 2023 06:25:00 +0000
ROA not before: Mon 02 Jan 2023 06:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39337
IP address blocks: 194.126.160.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:a0:a7:89:07:d9:5c:11:2f:ed:bc:4a:8f:ef:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b2616b6cf7bb31efbfc153768625a4d504b24df
Validity
Not Before: Jan 2 06:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65a56bd8e07a63e5997b16eb57fc8e89aa20f173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:40:fa:84:3a:62:d0:28:d2:34:7c:77:2d:cc:
db:0e:a9:0c:0d:3a:f8:a0:11:b9:52:ea:13:ce:e9:
f1:eb:54:5b:99:cf:7f:6b:1b:4c:87:59:92:97:c5:
c9:38:9e:a3:f9:16:fe:72:3a:5d:e2:9a:f9:eb:0f:
e6:54:73:bb:58:43:3f:23:15:04:bd:21:15:4b:d7:
72:8d:32:e7:37:a1:1a:4d:cf:15:f2:35:68:66:e7:
08:2f:0b:66:66:53:ac:67:b8:8a:08:86:5c:93:e0:
62:00:75:e7:3a:c0:c0:36:a6:c6:f9:ab:23:dd:37:
88:80:45:fb:2b:ac:57:a2:83:73:52:57:62:bd:8c:
81:c4:5e:67:3e:77:19:48:f3:49:86:05:68:e2:ef:
75:32:15:eb:24:1c:5b:78:b5:e0:8d:ef:ae:ce:6b:
98:a8:1d:97:ad:fa:b5:6f:6d:82:a3:b5:60:a7:bd:
7d:ed:0c:cd:c5:7f:97:6a:2d:a1:29:7e:a5:c3:ba:
2b:72:e0:49:6f:92:65:28:ef:0b:5f:04:a8:65:c3:
7b:b1:27:b2:ab:4f:81:ed:08:82:89:1b:1b:38:00:
e1:51:4b:cb:50:d2:44:78:8c:37:23:5f:d5:46:59:
53:51:6c:11:05:b9:15:ad:51:05:fc:9b:5b:43:45:
4f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A5:6B:D8:E0:7A:63:E5:99:7B:16:EB:57:FC:8E:89:AA:20:F1:73
X509v3 Authority Key Identifier:
keyid:3B:26:16:B6:CF:7B:B3:1E:FB:FC:15:37:68:62:5A:4D:50:4B:24:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyYWts97sx77_BU3aGJaTVBLJN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/720539-d36a-44dc-93e7-5a537629a439/1/ZaVr2OB6Y-WZexbrV_yOiaog8XM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/720539-d36a-44dc-93e7-5a537629a439/1/OyYWts97sx77_BU3aGJaTVBLJN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.160.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:0a:83:75:52:74:3c:68:85:2e:29:73:1d:19:cd:4b:29:2d:
c4:30:fa:34:6f:75:99:d5:29:cc:fe:6b:66:f8:87:eb:90:bf:
2f:f1:1b:99:b1:62:58:eb:1e:5c:cf:67:5d:bb:81:a0:d4:d9:
52:1d:3b:1b:77:34:cc:5a:88:df:6f:d1:c9:b4:9c:31:65:9e:
cc:fb:42:f4:fa:26:3f:fd:3d:1e:a2:25:b5:e5:e9:7d:d6:9a:
fc:d8:e2:b6:67:df:7f:a2:90:97:16:e4:6a:69:1f:75:02:00:
17:44:5a:83:fd:89:30:c2:e1:e3:cc:50:ef:4e:89:04:91:c9:
09:f3:30:0b:fd:39:12:76:cf:cd:7b:3d:88:9f:9d:11:c6:84:
f7:9d:09:cf:76:2e:e5:49:79:7a:8b:ab:e6:c8:ad:ff:4e:e3:
8e:0f:67:3f:a7:1f:d5:fc:f1:4d:92:e5:63:0c:64:ee:70:f5:
f9:ff:1f:49:11:02:e0:f1:85:a1:6b:d9:97:61:83:49:c3:21:
ea:f6:a0:46:00:33:26:ab:80:04:96:42:44:88:9a:5a:3d:00:
1f:46:fd:dc:89:5c:04:03:4c:61:53:ce:d4:91:eb:b3:3c:72:
44:a6:a2:4f:c8:32:dc:45:63:fa:d8:c3:21:c2:39:b9:d9:3b:
81:6a:16:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:52 2024 by rpki-client on console-fra.rpki-client.org