Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/ZgcguI6B60teQ3c1JT6_rj4mp7M.roa
File: ZgcguI6B60teQ3c1JT6_rj4mp7M.roa (raw, json)
Hash identifier: Gm7KjjI6UYE95DbbBa/oRdFupZlNF7hgaBF87uLDMc0=
Subject key identifier: 66:07:20:B8:8E:81:EB:4B:5E:43:77:35:25:3E:BF:AE:3E:26:A7:B3
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 01936D475438A7894538D9F0C7B2342F20B9
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/ZgcguI6B60teQ3c1JT6_rj4mp7M.roa
Signing time: Wed 27 Nov 2024 11:00:11 +0000
ROA not before: Wed 27 Nov 2024 11:00:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 395793
IP address blocks: 195.114.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:47:54:38:a7:89:45:38:d9:f0:c7:b2:34:2f:20:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Nov 27 11:00:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=660720b88e81eb4b5e437735253ebfae3e26a7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b2:26:4f:40:a2:0b:4a:a0:8a:fc:c9:63:9b:
31:6c:e8:67:5d:87:2f:fc:1f:b9:42:60:01:9a:eb:
8b:88:de:30:52:18:23:89:c6:c6:c6:e3:04:f3:d9:
82:a7:61:2a:05:18:65:9f:10:94:62:01:d6:a2:59:
ee:1b:86:6d:c1:d7:4e:b7:e3:b3:43:06:9e:87:43:
f1:0b:fe:38:0f:69:3f:50:c5:df:34:2c:c8:2a:7e:
b4:32:91:15:74:30:dc:15:3b:63:0b:ee:81:f3:18:
99:86:fb:91:c2:72:74:7a:60:a9:6f:d4:4c:87:3d:
bc:50:49:96:da:46:57:49:f3:74:15:92:cf:fe:18:
8d:7d:e4:ee:19:5c:d9:9c:e9:6c:ca:ea:d0:eb:7b:
44:18:54:a8:0e:19:f0:de:f8:d1:16:41:ab:39:e9:
ad:3a:24:84:f5:01:44:1a:ff:a3:66:18:2b:05:16:
23:ea:e8:f1:f7:b8:21:42:6d:84:3c:8d:84:0f:ec:
ca:8c:2c:71:b5:bd:40:4b:78:94:32:72:64:85:b0:
4d:d6:92:c0:a4:5c:0d:91:ab:76:61:c6:a4:28:e1:
e5:c3:93:59:80:19:4d:3c:3c:eb:f4:46:1a:c6:21:
6c:e0:fb:2b:30:ab:52:13:76:df:af:04:2e:81:b6:
7c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:07:20:B8:8E:81:EB:4B:5E:43:77:35:25:3E:BF:AE:3E:26:A7:B3
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/ZgcguI6B60teQ3c1JT6_rj4mp7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.197.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:12:c0:d5:10:d0:2b:27:86:82:99:64:eb:58:ab:33:ba:72:
b3:da:b3:fa:cd:09:d7:c1:40:1a:3a:0f:de:03:87:1d:77:b8:
65:0c:5a:01:0c:f1:31:31:74:d5:ac:ac:0e:7e:5c:2d:cf:4c:
0b:3d:64:a5:b9:36:51:b6:ab:e8:86:4c:26:56:64:8d:72:c3:
ae:2f:77:70:fd:d9:13:67:af:c5:cb:5e:75:a7:54:60:cf:9b:
80:b3:e4:a5:70:d8:b3:41:6a:27:9c:5e:f5:7e:6f:3c:03:26:
90:f4:9d:4b:2e:61:a4:31:d9:17:7d:2c:73:31:73:bf:03:c8:
0c:60:0f:0e:02:c2:e0:8b:59:45:ac:04:d6:87:7e:e4:c4:6c:
36:6f:be:91:d3:78:b9:35:5f:c7:2d:13:6c:0a:61:52:87:d1:
52:8c:e3:05:ec:23:78:d8:c9:e8:5e:55:a6:67:e2:60:4e:73:
35:b1:38:72:3f:97:49:23:19:5d:5a:bc:9c:60:95:ea:d7:9c:
85:7f:6d:5c:51:2c:7d:73:4b:1b:74:a4:f9:25:8c:35:29:23:
f7:92:84:e2:cc:ac:e5:6a:3a:3c:d8:64:ed:7d:44:85:d5:e0:
1c:f7:c7:15:b7:9b:80:63:f8:b8:c2:9d:b4:31:eb:d3:f4:79:
62:a0:71:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:16:35 2025 by rpki-client