Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/zrux3xV1-2-6NNNZnSh_P5jhgV4.roa
File: zrux3xV1-2-6NNNZnSh_P5jhgV4.roa (raw, json)
Hash identifier: Chp4cqoXahB8fARsrjwabhOqGS2KTGaEp1+oREY0rLI=
Subject key identifier: CE:BB:B1:DF:15:75:FB:6F:BA:34:D3:59:9D:28:7F:3F:98:E1:81:5E
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018E3D02EA9B866CECF936FD4BF96370AA3E
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/zrux3xV1-2-6NNNZnSh_P5jhgV4.roa
Signing time: Thu 14 Mar 2024 12:49:44 +0000
ROA not before: Thu 14 Mar 2024 12:49:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47583
IP address blocks: 77.37.34.0/23 maxlen: 24
77.37.36.0/23 maxlen: 24
77.37.38.0/23 maxlen: 24
77.37.40.0/21 maxlen: 24
77.37.48.0/21 maxlen: 24
77.37.56.0/21 maxlen: 24
77.37.86.0/23 maxlen: 24
77.37.88.0/21 maxlen: 24
91.108.96.0/21 maxlen: 24
91.108.104.0/21 maxlen: 24
91.108.112.0/21 maxlen: 24
91.108.120.0/21 maxlen: 24
93.127.162.0/23 maxlen: 24
93.127.166.0/23 maxlen: 24
93.127.168.0/23 maxlen: 24
93.127.172.0/23 maxlen: 24
93.127.178.0/23 maxlen: 24
93.127.186.0/23 maxlen: 24
93.127.188.0/23 maxlen: 24
93.127.190.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 10:41:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3d:02:ea:9b:86:6c:ec:f9:36:fd:4b:f9:63:70:aa:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Mar 14 12:49:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cebbb1df1575fb6fba34d3599d287f3f98e1815e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9d:fc:a7:ad:db:55:d8:a4:ec:8e:a8:a9:a8:
a4:98:12:30:9c:0d:89:c8:da:2c:1a:8f:a3:9c:a0:
82:bc:3e:18:13:f2:76:5c:04:8f:27:69:bb:c9:97:
6d:80:e3:d0:ef:15:7d:b9:08:e9:af:a2:ad:e4:b5:
6d:08:b7:d7:4c:c7:bf:bf:4b:5e:58:da:cb:46:91:
a6:f6:68:c0:41:ab:be:77:f8:76:09:2d:07:62:fa:
ea:4d:e2:47:f2:cf:e1:7a:00:08:1d:1e:6b:49:ad:
0a:37:53:24:8b:f0:10:67:0c:3f:31:10:fd:ac:1d:
7f:d5:e6:9e:67:46:ae:0e:a3:63:dc:d8:19:73:0a:
92:71:31:b0:a5:73:3a:d4:45:1e:61:4c:39:4c:e5:
0d:e2:ba:aa:2b:53:65:4a:56:0d:e0:70:62:a2:41:
2d:a9:99:d9:de:ac:4d:62:35:05:90:45:b3:62:c9:
5c:0b:b9:73:a5:99:6f:99:0a:60:8b:88:44:c4:be:
d8:49:67:ad:fa:1f:ec:55:37:fe:59:a5:75:18:10:
b7:a3:50:72:f5:7b:75:48:d5:e9:d3:f7:ae:ec:34:
19:7f:47:d8:2d:1e:7d:88:da:fa:03:ad:eb:36:76:
3e:f9:f6:52:ad:54:60:6c:c9:c1:88:b3:b1:b0:e3:
e2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:BB:B1:DF:15:75:FB:6F:BA:34:D3:59:9D:28:7F:3F:98:E1:81:5E
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/zrux3xV1-2-6NNNZnSh_P5jhgV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.34.0-77.37.63.255
77.37.86.0-77.37.95.255
91.108.96.0/19
93.127.162.0/23
93.127.166.0-93.127.169.255
93.127.172.0/23
93.127.178.0/23
93.127.186.0-93.127.191.255
Signature Algorithm: sha256WithRSAEncryption
53:52:54:4a:c8:1d:42:2d:a6:6a:eb:6a:31:a3:33:e5:36:60:
91:76:a8:dc:b3:49:3a:9d:ac:9c:da:9f:72:c3:29:a8:c0:11:
05:12:03:18:97:b6:41:32:f3:1e:33:c5:68:c4:17:65:53:ff:
81:e0:c8:d7:fb:0b:20:24:78:b4:84:0f:1e:f9:46:48:80:ea:
b8:21:22:e1:fd:19:08:21:27:7e:2e:c9:87:de:45:e7:f4:31:
78:15:34:b3:a1:23:9f:54:2a:6c:fa:c2:e8:a2:73:15:f9:51:
6a:e2:6e:6a:cc:7e:c0:66:3c:e8:5d:2d:bc:92:33:0e:28:57:
f4:4b:5f:29:02:69:5e:a6:6d:f5:b2:0e:4e:ef:36:c1:46:b9:
72:3b:b0:02:ad:4b:e2:fa:24:41:a7:09:c5:1e:10:14:54:a4:
f6:4d:10:95:b5:61:3c:8e:f4:21:cd:64:10:62:a2:37:2e:55:
c1:68:90:75:88:b4:6d:fd:79:d2:a1:97:97:5e:c0:a6:9d:7f:
e8:d0:63:b8:c8:cb:6a:ea:86:27:bb:3c:cd:99:c9:3f:45:ee:
3f:e7:c0:9b:e1:28:17:ed:09:db:ad:a0:0f:0e:a8:45:32:8f:
da:11:b2:d2:a4:7d:87:29:00:cf:ce:ba:6c:6d:c3:4d:2b:55:
88:90:6f:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:04 2024 by rpki-client on console-ams.rpki-client.org