Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/ZquFy6eM7mXO1nVIs8Qz6kg7aOU.roa
File: ZquFy6eM7mXO1nVIs8Qz6kg7aOU.roa (raw, json)
Hash identifier: Z2m0tFyoF2eUwha3xeaCiJCNXUM4EnBik0qAf8H49c8=
Subject key identifier: 66:AB:85:CB:A7:8C:EE:65:CE:D6:75:48:B3:C4:33:EA:48:3B:68:E5
Certificate issuer: /CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Certificate serial: 018A07AD7BE9D1A5624078B47B7A94E90467
Authority key identifier: 53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/ZquFy6eM7mXO1nVIs8Qz6kg7aOU.roa
Signing time: Fri 18 Aug 2023 08:05:24 +0000
ROA not before: Fri 18 Aug 2023 08:05:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204621
IP address blocks: 93.95.212.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:ad:7b:e9:d1:a5:62:40:78:b4:7b:7a:94:e9:04:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Validity
Not Before: Aug 18 08:05:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66ab85cba78cee65ced67548b3c433ea483b68e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:bc:ca:e7:5a:90:55:bd:64:90:95:53:33:9e:
23:e4:d7:c3:6a:da:79:d7:35:9b:b5:4b:cf:27:a7:
89:f4:c8:b3:d8:47:be:e6:ab:7e:83:ff:dd:24:af:
06:37:59:1e:81:13:b0:c1:ef:a0:a2:24:60:bd:fc:
1f:2e:d5:bf:bb:11:84:02:f4:16:9e:0a:0c:ee:be:
6b:33:c4:28:d1:2d:50:f4:d1:bd:39:f1:6f:3e:19:
c6:96:57:3b:d3:1a:76:b5:69:2c:54:cf:6c:6d:18:
cb:88:5f:63:2a:44:45:71:a1:0b:f1:8d:ab:9a:64:
43:a9:e2:a6:c8:51:9c:77:29:4b:4e:40:2d:ca:16:
0f:3e:60:7e:ae:63:87:37:99:b1:4a:0e:ce:15:61:
65:c7:96:2e:d1:f4:08:86:eb:e7:31:f2:77:d7:79:
11:3c:11:0c:ce:9a:09:55:7e:56:76:11:66:79:5a:
20:28:25:8a:e1:c3:0d:a4:ba:78:23:1d:08:c0:10:
ee:2c:9f:47:89:a9:f8:22:74:cf:91:09:b8:b6:36:
b2:2b:cd:a7:7e:d8:bf:f5:2e:55:2c:32:d5:7b:0f:
ed:df:e0:de:50:35:ef:99:59:28:50:71:c9:3f:08:
75:d7:5f:3e:ff:d0:ec:1f:51:13:66:d6:22:a6:ed:
e8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:AB:85:CB:A7:8C:EE:65:CE:D6:75:48:B3:C4:33:EA:48:3B:68:E5
X509v3 Authority Key Identifier:
keyid:53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/ZquFy6eM7mXO1nVIs8Qz6kg7aOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.212.0/24
Signature Algorithm: sha256WithRSAEncryption
79:60:0f:fc:25:49:68:e7:56:7d:4d:c0:c0:e0:59:da:1b:3f:
f8:be:74:b0:a2:df:a1:95:73:99:ed:88:0c:2b:98:c2:2f:15:
65:13:2f:cc:06:cf:f7:d5:61:1b:84:58:d7:a1:41:37:c1:ef:
6f:f8:3f:87:fc:39:c4:5d:8c:5a:f4:21:3f:e5:b0:d8:f9:38:
3d:67:37:9f:72:62:8f:2f:45:39:80:3b:6e:54:86:fe:c8:03:
a5:1c:ac:f1:f6:9c:51:aa:3a:ba:13:0e:75:4e:38:a6:09:bd:
c6:c5:d4:4d:5c:47:54:e2:72:04:6d:8c:21:ec:97:b0:66:5b:
b9:83:39:b3:66:8c:6f:ba:4a:b4:ba:eb:9f:91:9f:57:ec:05:
7c:da:60:1e:2d:23:33:01:55:48:aa:7e:92:c2:de:46:d2:e7:
bf:a9:4d:dd:df:3c:a6:58:87:1e:b2:31:12:52:77:72:41:ef:
ac:98:03:70:a5:80:b7:35:25:1e:39:84:f6:c2:23:ec:1c:61:
bc:a5:b4:88:f6:03:ef:91:28:2c:fa:0a:8c:fe:60:2b:76:c3:
22:77:85:24:6c:be:de:44:d4:ae:a3:c0:09:73:e5:2f:c3:35:
5a:d0:12:e2:74:99:6e:81:65:c4:b6:3c:59:a6:2e:71:e3:db:
e6:18:c0:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:08 2024 by rpki-client on console-ams.rpki-client.org