Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/Z0oUMWkXs4CU3pV5fBs3rhHQuJo.roa
File: Z0oUMWkXs4CU3pV5fBs3rhHQuJo.roa (raw, json)
Hash identifier: SZHQB4iX3KL2cMK/f7OK/s25QS15GwdWxliFE7Y6yeA=
Subject key identifier: 67:4A:14:31:69:17:B3:80:94:DE:95:79:7C:1B:37:AE:11:D0:B8:9A
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 018AA7A912C21ACFB9EA2A5E54E7D3FD6D41
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/Z0oUMWkXs4CU3pV5fBs3rhHQuJo.roa
Signing time: Mon 18 Sep 2023 09:39:50 +0000
ROA not before: Mon 18 Sep 2023 09:39:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 185.228.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:a9:12:c2:1a:cf:b9:ea:2a:5e:54:e7:d3:fd:6d:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Sep 18 09:39:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=674a14316917b38094de95797c1b37ae11d0b89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:05:d4:4c:12:f0:5f:06:81:c0:df:87:82:64:
ae:8e:ba:b1:1f:12:57:19:4b:89:81:91:02:00:24:
ee:74:1d:e2:ad:50:d1:f3:ab:c1:56:19:64:0d:05:
c8:e1:6f:b4:ed:fc:22:b5:e1:56:00:30:31:99:94:
46:7c:d8:89:f0:fa:26:ac:7d:4d:a2:18:98:3f:96:
9f:5b:2d:39:e0:19:6b:0c:f5:7d:a5:c0:1b:02:db:
78:6a:3c:75:7b:85:87:ef:f4:d4:bc:5a:f6:6f:e7:
7c:33:c4:6f:66:26:c7:9e:fe:ed:f9:b7:52:c5:b6:
bc:eb:1f:39:e4:d6:59:7f:0d:ba:64:86:b3:3f:39:
e4:fd:d1:2b:b5:c3:9e:da:35:3f:79:ad:94:48:a0:
0a:ac:91:3c:bb:fa:d0:f2:58:2e:36:d5:b8:c3:37:
99:f7:1f:ec:b6:df:13:64:02:6b:df:98:66:94:03:
b8:2e:b9:2c:0f:31:cd:77:08:3a:45:3f:86:6b:08:
18:3c:77:05:cb:79:3e:36:2c:44:54:1a:51:7d:86:
65:91:eb:47:bd:9e:45:b4:f7:f6:88:f2:1e:2c:24:
9f:50:6b:e5:b1:7b:20:15:c7:d0:db:3e:43:dc:4b:
35:8e:df:09:9d:a7:13:86:1f:a4:10:57:9a:dc:6c:
12:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:4A:14:31:69:17:B3:80:94:DE:95:79:7C:1B:37:AE:11:D0:B8:9A
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/Z0oUMWkXs4CU3pV5fBs3rhHQuJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.1.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:68:cb:2f:c3:be:cc:49:fb:7f:17:b5:e2:02:14:af:bf:dd:
a3:65:9d:06:2c:e0:42:b3:ad:2d:c4:50:42:b8:a8:4e:a1:ed:
24:e5:6f:56:17:5e:27:08:49:0d:47:af:d7:09:11:7c:93:78:
cd:69:dc:a7:79:5a:d4:7e:51:74:25:a9:80:92:50:c4:b1:0f:
a1:28:0b:17:84:a4:65:1a:84:7b:9d:0e:9f:30:46:c3:af:ae:
5c:cb:23:58:af:47:01:6e:0d:cd:7f:fc:c6:ab:82:dc:06:28:
29:3e:f0:33:b2:8f:74:59:83:db:cf:81:47:b5:f1:cb:3c:80:
8d:bf:8a:57:97:d3:76:09:aa:55:69:6a:7d:dd:f5:73:5f:28:
ac:90:48:9e:c0:a8:7f:59:d6:7b:17:bd:59:b9:5e:20:83:a4:
45:09:49:01:d2:d3:c4:6a:a3:90:09:b1:ec:13:62:d3:07:cc:
ee:d8:9d:59:40:c8:70:7e:b3:00:8f:9c:75:9a:fc:75:a4:ba:
d2:4c:c1:23:9c:da:05:55:9a:60:91:bf:4c:ba:23:de:e6:7a:
14:82:97:57:b5:40:7e:51:60:e5:24:a9:91:23:f7:55:fb:af:
6b:29:09:fd:9b:b8:11:3a:a6:77:34:c7:74:75:18:2f:5c:01:
54:b1:6a:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:02 2024 by rpki-client on console-ams.rpki-client.org