Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/Zi11GGUjBMHmMDbgg7noIqeJcgk.roa
File: Zi11GGUjBMHmMDbgg7noIqeJcgk.roa (raw, json)
Hash identifier: 6eJVflQrFB3y7yqseiKJB+z7lAh+RY9MxoQkctqpOQ0=
Subject key identifier: 66:2D:75:18:65:23:04:C1:E6:30:36:E0:83:B9:E8:22:A7:89:72:09
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 0191108FCBB17E84A06A0F273A3D005C484D
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/Zi11GGUjBMHmMDbgg7noIqeJcgk.roa
Signing time: Fri 02 Aug 2024 00:49:04 +0000
ROA not before: Fri 02 Aug 2024 00:49:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 195.133.202.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 06:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:10:8f:cb:b1:7e:84:a0:6a:0f:27:3a:3d:00:5c:48:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Aug 2 00:49:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=662d7518652304c1e63036e083b9e822a7897209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b5:cb:b4:4a:0e:ca:05:24:42:b8:78:8b:b8:
e0:a7:07:94:e0:1e:12:ec:7c:10:e8:12:37:21:63:
02:7c:41:a3:c3:23:ee:16:b9:ee:33:c3:1f:8b:d5:
41:7d:4d:25:7e:e4:b9:f0:38:c1:bb:08:28:71:3d:
ac:9d:55:de:34:fc:9c:3d:1d:97:75:64:d6:fe:9e:
a6:41:94:1f:f7:7e:38:24:1d:e1:aa:71:55:83:67:
ed:eb:80:71:d8:de:2d:f4:86:e5:02:c3:b1:bf:42:
d7:24:3e:dd:34:13:44:74:e2:3b:ae:ee:f7:0a:33:
42:fd:aa:1c:c1:2e:04:26:2c:d0:f7:4b:ed:22:a6:
67:f8:c3:46:77:6a:30:73:27:7a:ae:e5:30:b2:84:
8f:83:5c:99:98:84:70:2d:55:4d:73:d3:e8:81:05:
88:84:64:e7:fa:ce:11:b9:b9:4a:64:30:8c:d0:de:
51:e5:68:75:1f:6a:27:9e:18:99:3d:90:2a:3c:5d:
04:11:b1:f8:36:50:37:5b:f8:44:4d:a0:ea:ee:68:
4a:2f:36:ad:23:11:f6:f8:a1:4f:62:00:c9:6b:f2:
96:d7:38:af:76:c3:cb:79:2b:3f:1d:da:5b:50:b2:
5e:c7:53:ce:13:a9:4d:c4:a2:43:93:17:1a:d1:1f:
68:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2D:75:18:65:23:04:C1:E6:30:36:E0:83:B9:E8:22:A7:89:72:09
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/Zi11GGUjBMHmMDbgg7noIqeJcgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.202.0/23
Signature Algorithm: sha256WithRSAEncryption
53:ca:00:de:6a:33:53:d0:b8:95:d8:26:aa:68:60:88:de:a8:
85:2a:38:f0:df:0b:8c:9f:c5:a1:8d:85:86:65:db:8a:90:42:
60:a2:55:b6:ab:53:05:1f:98:55:b5:eb:82:e1:16:52:ee:08:
df:8f:02:ec:3f:c4:49:96:a8:c7:1d:c2:d2:d6:00:52:74:5e:
2f:1d:6d:47:14:6d:c6:81:d5:0c:2d:6f:15:35:ec:f5:22:6b:
80:40:4f:cb:89:0d:cc:07:5a:83:03:eb:67:67:f4:ee:6b:77:
0c:b8:10:13:95:ff:00:0c:0f:6d:80:1d:ab:38:d6:13:70:b4:
5a:94:8a:82:c8:3b:54:b6:ad:35:00:31:c5:04:af:a0:49:a0:
59:00:56:96:af:d4:13:10:ee:50:21:2f:47:27:2c:95:9c:7f:
55:b3:0b:f2:66:27:9f:d8:04:71:ab:75:f2:a8:73:09:04:bb:
29:25:77:e3:9e:91:29:89:3a:11:db:62:d5:83:f5:60:0b:e1:
58:cc:a2:ff:5d:33:a6:c3:85:40:1c:45:9f:4b:47:31:2b:33:
22:47:6e:e3:58:3c:30:28:37:2d:48:8d:dd:32:32:6b:f4:3a:
7b:ce:bf:10:6a:30:bf:fc:16:4e:d2:3b:c9:ba:9a:71:c1:7c:
b1:ed:80:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 08:13:31 2024 by rpki-client on console-fra.rpki-client.org