Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/e64dff-8730-4393-a9f0-61646d737892/1/zwCWvE7QpJs5Ayu0J70E3pX_A-I.roa
File: zwCWvE7QpJs5Ayu0J70E3pX_A-I.roa (raw, json)
Hash identifier: FpHW+aBImlzefvjBIHPGlcr01p4AMKbala+iiCoLSc0=
Subject key identifier: CF:00:96:BC:4E:D0:A4:9B:39:03:2B:B4:27:BD:04:DE:95:FF:03:E2
Certificate issuer: /CN=70a4ed02536ee1a2a6c81eab78355473daf27114
Certificate serial: 0185714C08E6226AF987F9C953711E083AA0
Authority key identifier: 70:A4:ED:02:53:6E:E1:A2:A6:C8:1E:AB:78:35:54:73:DA:F2:71:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKTtAlNu4aKmyB6reDVUc9rycRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/e64dff-8730-4393-a9f0-61646d737892/1/zwCWvE7QpJs5Ayu0J70E3pX_A-I.roa
Signing time: Mon 02 Jan 2023 07:04:46 +0000
ROA not before: Mon 02 Jan 2023 07:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201814
IP address blocks: 185.248.24.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:08:e6:22:6a:f9:87:f9:c9:53:71:1e:08:3a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a4ed02536ee1a2a6c81eab78355473daf27114
Validity
Not Before: Jan 2 07:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf0096bc4ed0a49b39032bb427bd04de95ff03e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b2:97:02:bc:03:48:54:f9:ff:78:21:c5:ce:
24:f2:1c:8c:4d:4b:75:f3:c2:4e:e9:eb:93:dd:e3:
71:57:b2:81:e1:c5:c6:27:92:3b:60:d0:f8:93:5e:
34:ad:d7:7f:08:b7:24:a6:62:ac:51:fd:db:30:c5:
1f:aa:6e:44:ba:d3:e7:d1:c1:68:31:b1:51:d5:ef:
55:69:82:b2:5e:9c:b5:a1:df:03:9a:a8:29:2a:85:
17:0b:94:c4:35:80:d2:23:fd:54:5b:01:5d:21:57:
34:e5:a9:4a:85:98:19:7e:3f:e0:ad:67:93:f4:59:
96:0d:b6:9d:29:14:ff:ff:b0:93:8f:d3:08:5e:ee:
82:71:f3:d8:f9:60:b2:30:30:83:d5:39:f5:7d:c0:
b1:1d:f8:97:5a:d3:47:7b:27:0b:1d:50:0d:18:e4:
7b:7b:83:77:66:f5:bd:57:44:a6:3e:f4:37:7d:40:
2e:5c:a5:bc:93:77:79:e8:af:91:4a:c7:b7:90:73:
c1:6b:15:59:b9:a0:dd:c0:b6:cc:7e:af:cc:88:2d:
3b:ec:d8:7f:e0:40:de:81:a5:e9:17:80:f8:98:bb:
95:76:27:bc:9e:95:13:12:2d:5d:59:97:86:49:b6:
0a:b8:bc:10:20:a1:8e:a2:b9:1c:c9:ac:da:6d:93:
79:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:00:96:BC:4E:D0:A4:9B:39:03:2B:B4:27:BD:04:DE:95:FF:03:E2
X509v3 Authority Key Identifier:
keyid:70:A4:ED:02:53:6E:E1:A2:A6:C8:1E:AB:78:35:54:73:DA:F2:71:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKTtAlNu4aKmyB6reDVUc9rycRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e64dff-8730-4393-a9f0-61646d737892/1/zwCWvE7QpJs5Ayu0J70E3pX_A-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e64dff-8730-4393-a9f0-61646d737892/1/cKTtAlNu4aKmyB6reDVUc9rycRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.24.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:0b:9f:95:1d:db:ca:fd:3e:1d:4a:df:79:61:8a:a8:69:f2:
2f:60:b5:12:f3:ee:f1:b6:5b:ac:de:b7:b7:f7:5f:06:ed:ef:
b8:c8:bd:08:a1:19:e2:34:02:f7:d7:51:ae:89:fc:93:29:f9:
c6:86:8f:ac:49:9b:1f:f2:ee:dd:ca:de:22:eb:b0:a9:ec:cf:
d4:5a:b7:9c:0d:c2:53:9d:51:5f:af:36:fe:f9:70:6d:cb:cd:
69:7e:ef:cb:6a:30:3b:51:03:8f:29:cd:6e:07:61:46:23:20:
a8:12:55:94:da:ee:b2:24:a3:97:7c:e4:97:dc:c9:75:0d:59:
5b:56:08:13:27:2f:f4:7f:1d:c5:44:95:af:d1:c5:c1:5e:32:
87:6f:30:77:ad:50:39:33:9a:56:df:14:cb:f5:33:0f:a9:cd:
1a:3f:f7:84:0e:aa:ba:f2:0e:0f:03:9c:d7:db:60:d1:a9:9b:
55:8c:b6:01:4a:0d:a9:b0:52:5c:72:d5:8f:da:fa:82:09:e8:
2e:03:c4:98:22:13:54:cf:43:ad:cc:33:50:85:98:6a:93:cc:
97:dd:6b:a2:94:e8:ca:f0:11:c0:2b:0b:19:a5:69:25:a2:d2:
f6:86:e6:82:de:81:62:ee:c4:ef:6c:91:d0:fe:94:47:29:90:
7d:13:c8:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:41 2024 by rpki-client on console.sobornost.net