Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/zwTcoQtqMaNbg2f-lE4vnyusSFY.roa
File: zwTcoQtqMaNbg2f-lE4vnyusSFY.roa (raw, json)
Hash identifier: Oo4UKrPmt1qnhxGMcr5a2Gv6nZJFzbfUFcGb6Vt0GSk=
Subject key identifier: CF:04:DC:A1:0B:6A:31:A3:5B:83:67:FE:94:4E:2F:9F:2B:AC:48:56
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 01856CAF10E6F66372C3F95A98838A5E58EB
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/zwTcoQtqMaNbg2f-lE4vnyusSFY.roa
Signing time: Sun 01 Jan 2023 09:34:50 +0000
ROA not before: Sun 01 Jan 2023 09:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 83.136.214.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:10:e6:f6:63:72:c3:f9:5a:98:83:8a:5e:58:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Jan 1 09:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf04dca10b6a31a35b8367fe944e2f9f2bac4856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b1:48:8c:d7:4f:7a:35:0c:b6:41:af:a1:21:
ad:6f:94:85:95:04:53:04:11:68:a0:61:49:d1:9e:
6f:80:51:31:0a:8a:23:39:ef:09:42:b9:fb:53:59:
2f:c0:01:82:2a:74:fd:41:31:e0:b7:c3:52:d3:3f:
5f:2f:c7:4e:f0:00:cb:63:b9:51:ce:ee:e7:f2:0d:
ac:0c:4d:a1:ee:43:a3:58:a4:2f:9f:d0:9b:a8:02:
ea:d3:45:84:c2:b1:07:7d:fd:73:eb:c0:2e:9b:82:
af:e7:bc:b3:0c:ac:bc:f7:6f:7a:79:6c:59:94:b4:
be:b1:55:e5:05:ae:d1:dd:a5:14:a6:98:60:90:09:
93:01:a2:ab:cb:2b:53:4b:18:01:5e:41:3b:3a:1c:
32:0a:9b:c8:99:3b:42:bf:c6:51:80:2b:a8:eb:c5:
16:ef:9a:ba:16:59:02:d9:54:29:83:33:90:ab:09:
89:3c:a1:54:47:aa:35:98:6f:7f:a6:73:e2:3d:f0:
61:f4:88:50:c0:c3:07:6f:37:d9:5c:d3:44:5b:6b:
3d:c3:91:2a:33:cd:98:b8:fe:96:fa:04:e2:c9:fd:
9d:2b:ed:9b:70:9d:59:eb:7b:41:70:36:8b:ae:3c:
07:40:1d:14:5b:cd:73:64:51:a8:5e:93:89:9c:29:
cf:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:04:DC:A1:0B:6A:31:A3:5B:83:67:FE:94:4E:2F:9F:2B:AC:48:56
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/zwTcoQtqMaNbg2f-lE4vnyusSFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.214.0/23
Signature Algorithm: sha256WithRSAEncryption
30:b1:5b:02:0f:4a:bd:3e:19:34:dd:c7:5c:51:6e:eb:66:e8:
f3:71:fe:83:07:b6:c4:d7:d6:5d:17:21:e4:6b:01:98:5e:4a:
6c:9a:46:d9:0b:7f:67:9e:87:b1:a2:76:6a:c1:b2:77:84:c1:
c9:7b:c3:c0:6a:5d:db:f3:a8:64:13:15:5a:f2:07:68:07:75:
dc:64:ec:c0:3c:20:45:78:a2:c3:0d:6a:c8:38:e3:09:4f:49:
ca:69:7a:eb:47:81:96:22:19:ee:b1:94:6a:7c:54:d8:cc:44:
4a:8b:5e:16:62:be:02:64:77:59:4e:99:35:db:b3:d4:cc:21:
38:63:fb:42:fb:03:db:2d:f9:9c:58:96:0a:8c:50:17:c9:0b:
39:ed:03:44:b7:82:33:3b:11:b2:60:c1:ac:95:8e:58:be:ce:
18:c9:24:e4:36:90:26:fe:30:6e:90:39:1b:01:c1:30:be:df:
05:99:42:e5:23:52:ff:cf:46:ee:c3:d6:a9:dd:3d:6f:34:8d:
76:3a:21:29:cd:a5:8d:28:a3:93:85:7e:99:57:15:28:ca:f9:
df:11:39:11:9a:22:fd:6b:5b:70:df:7a:b8:a7:04:21:d2:4e:
5b:c8:3f:3c:6a:15:88:6a:de:2c:f2:d5:c1:6e:24:b7:7f:db:
af:89:97:b6
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVsrxDm9mNyw/lamIOKXljrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4Nzk5ODhlMGY0OTk3MWEzMjZmNDE5ZTVjZmFjYmZkZGNj
OTkzZTcwHhcNMjMwMTAxMDkzNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjA0ZGNhMTBiNmEzMWEzNWI4MzY3ZmU5NDRlMmY5ZjJiYWM0ODU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAirFIjNdPejUMtkGvoSGtb5SFlQRT
BBFooGFJ0Z5vgFExCoojOe8JQrn7U1kvwAGCKnT9QTHgt8NS0z9fL8dO8ADLY7lR
zu7n8g2sDE2h7kOjWKQvn9CbqALq00WEwrEHff1z68Aum4Kv57yzDKy89296eWxZ
lLS+sVXlBa7R3aUUpphgkAmTAaKryytTSxgBXkE7OhwyCpvImTtCv8ZRgCuo68UW
75q6FlkC2VQpgzOQqwmJPKFUR6o1mG9/pnPiPfBh9IhQwMMHbzfZXNNEW2s9w5Eq
M82YuP6W+gTiyf2dK+2bcJ1Z63tBcDaLrjwHQB0UW81zZFGoXpOJnCnPqwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFM8E3KELajGjW4Nn/pROL58rrEhWMB8GA1UdIwQY
MBaAFPh5mI4PSZcaMm9Bnlz6y/3cyZPnMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1IbVlqZzlKbHhveWIwR2VYUHJMX2R6SmstYy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUvYWYzZDgxLTAwNDctNDEzYy05MWY0
LTA0NzBiNGJiMzBkYi8xL3p3VGNvUXRxTWFOYmcyZi1sRTR2bnl1c1NGWS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMDUvYWYzZDgxLTAwNDctNDEzYy05MWY0LTA0NzBiNGJiMzBk
Yi8xLzEtSG1Zamc5Smx4b3liMEdlWFByTF9kekprLWMuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFTiNYw
DQYJKoZIhvcNAQELBQADggEBADCxWwIPSr0+GTTdx1xRbutm6PNx/oMHtsTX1l0X
IeRrAZheSmyaRtkLf2eeh7GidmrBsneEwcl7w8BqXdvzqGQTFVryB2gHddxk7MA8
IEV4osMNasg44wlPScppeutHgZYiGe6xlGp8VNjMREqLXhZivgJkd1lOmTXbs9TM
IThj+0L7A9st+ZxYlgqMUBfJCzntA0S3gjM7EbJgwayVjli+zhjJJOQ2kCb+MG6Q
ORsBwTC+3wWZQuUjUv/PRu7D1qndPW80jXY6ISnNpY0oo5OFfplXFSjK+d8RORGa
Iv1rW3DferinBCHSTlvIPzxqFYhq3izy1cFuJLd/26+Jl7Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:13 2024 by rpki-client on console-ams.rpki-client.org