Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/b7b7fa-13d0-4ffc-9878-097b4d6d81e4/1/ZTQ4GgVf-9BDLJOKrgPbpKqUxXM.roa
File: ZTQ4GgVf-9BDLJOKrgPbpKqUxXM.roa (raw, json)
Hash identifier: Ht/UO+OfdZelJxwEkZ9JFusmUHZUpEnlNQng+7QsNsU=
Subject key identifier: 65:34:38:1A:05:5F:FB:D0:43:2C:93:8A:AE:03:DB:A4:AA:94:C5:73
Certificate issuer: /CN=6f108bd5addfabf151d9079e3d3d341269666fa7
Certificate serial: 0189DE9782BBAC51374158F4EB1FD8B38F2A
Authority key identifier: 6F:10:8B:D5:AD:DF:AB:F1:51:D9:07:9E:3D:3D:34:12:69:66:6F:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxCL1a3fq_FR2QeePT00Emlmb6c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/b7b7fa-13d0-4ffc-9878-097b4d6d81e4/1/ZTQ4GgVf-9BDLJOKrgPbpKqUxXM.roa
Signing time: Thu 10 Aug 2023 08:36:58 +0000
ROA not before: Thu 10 Aug 2023 08:36:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199533
IP address blocks: 185.144.115.0/24 maxlen: 24
2a0f:ac80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:97:82:bb:ac:51:37:41:58:f4:eb:1f:d8:b3:8f:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f108bd5addfabf151d9079e3d3d341269666fa7
Validity
Not Before: Aug 10 08:36:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6534381a055ffbd0432c938aae03dba4aa94c573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:09:61:dd:27:29:fb:8a:26:8e:b4:ce:bb:66:
a1:60:61:b8:ba:0e:43:2e:ab:52:db:35:cb:4e:40:
6e:01:18:c5:fa:ae:30:aa:03:2d:88:74:31:ea:09:
df:c5:41:59:36:e8:f4:7e:f1:8a:05:f5:15:c3:27:
9d:bf:3c:f0:27:57:5e:22:f9:52:bb:7c:78:e6:53:
a4:ed:38:63:d6:5c:7b:d7:8d:da:58:5f:e8:c3:7c:
cf:01:63:a4:46:5b:45:45:9a:55:02:b2:7f:fe:86:
70:71:bc:86:4e:82:53:28:b0:cb:09:92:7b:f6:2f:
6c:bd:24:c3:17:20:84:39:41:50:c4:42:48:a9:1c:
c2:2d:42:a9:99:ae:8d:9c:7e:a2:ed:5a:c9:85:d1:
18:7a:0a:4e:f9:11:6c:bd:f9:08:ed:b0:79:f4:65:
10:1a:53:13:c8:56:50:93:7d:d8:4d:d5:2e:ea:25:
8c:bd:66:5d:cc:cf:44:62:08:42:7c:c0:bb:61:ec:
eb:b9:51:5c:31:15:aa:2d:25:7c:1e:e4:a5:20:c0:
11:d0:36:74:75:a7:10:28:a6:67:63:46:73:f9:92:
dd:79:1c:f5:fe:37:97:f0:35:03:c1:cb:0d:55:8e:
3d:58:bf:f3:26:90:bd:4f:26:fb:23:69:a3:90:79:
9e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:34:38:1A:05:5F:FB:D0:43:2C:93:8A:AE:03:DB:A4:AA:94:C5:73
X509v3 Authority Key Identifier:
keyid:6F:10:8B:D5:AD:DF:AB:F1:51:D9:07:9E:3D:3D:34:12:69:66:6F:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxCL1a3fq_FR2QeePT00Emlmb6c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b7b7fa-13d0-4ffc-9878-097b4d6d81e4/1/ZTQ4GgVf-9BDLJOKrgPbpKqUxXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b7b7fa-13d0-4ffc-9878-097b4d6d81e4/1/bxCL1a3fq_FR2QeePT00Emlmb6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.115.0/24
IPv6:
2a0f:ac80::/29
Signature Algorithm: sha256WithRSAEncryption
6d:bf:84:a1:01:3e:93:a3:5e:00:76:d6:6d:53:21:df:54:01:
ff:90:dc:1a:91:8e:e2:41:24:e8:43:68:86:e3:4b:1a:17:71:
46:4c:48:8c:f5:f4:eb:15:fc:6c:15:29:25:72:0b:ae:6a:8d:
ee:e8:e3:13:c0:2e:24:1a:28:9a:44:46:77:69:af:5d:a0:ed:
7f:df:4f:c4:f9:a5:a4:49:3d:4f:66:9e:88:ae:65:b9:36:bb:
47:0c:e8:32:a4:7c:60:04:80:30:58:59:1a:b9:12:33:90:d2:
7e:c0:2f:54:4f:aa:03:89:ae:98:11:4a:44:ae:fb:e4:84:70:
ed:16:28:17:02:d5:91:eb:74:05:53:cb:7f:01:5d:b8:4b:91:
fb:56:8b:07:f9:55:81:bf:6d:3a:bf:b8:a0:3e:04:bc:c3:3b:
ec:ab:ae:d9:83:8a:b0:7c:69:03:53:c7:d2:3e:64:dc:1d:67:
e9:63:97:87:37:a4:4a:91:54:57:79:66:95:e3:26:e7:df:aa:
ad:1b:68:5a:d3:d2:9d:98:22:7a:68:12:1a:3a:8e:37:64:85:
e4:75:37:6a:a3:04:d9:11:ef:27:e5:bc:58:d6:65:1c:a9:8e:
4e:7c:e8:9f:48:60:4b:17:74:89:f3:c0:3e:f1:8d:35:fa:cc:
89:c2:1d:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:36:51 2024 by rpki-client on console.sobornost.net