Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/ZtvT3wRu6Zl5YotpNsUx7d3pa4M.roa
File: ZtvT3wRu6Zl5YotpNsUx7d3pa4M.roa (raw, json)
Hash identifier: UGdrvBaL1ozntOwy40Nc4B1jK+C5ONJmBhSxDXP+ibs=
Subject key identifier: 66:DB:D3:DF:04:6E:E9:99:79:62:8B:69:36:C5:31:ED:DD:E9:6B:83
Certificate issuer: /CN=97668547a433343dde9bb36595bc903b4f149604
Certificate serial: 01856F02317D07A6970ED67599F1CA4DE573
Authority key identifier: 97:66:85:47:A4:33:34:3D:DE:9B:B3:65:95:BC:90:3B:4F:14:96:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l2aFR6QzND3em7NllbyQO08UlgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/ZtvT3wRu6Zl5YotpNsUx7d3pa4M.roa
Signing time: Sun 01 Jan 2023 20:24:52 +0000
ROA not before: Sun 01 Jan 2023 20:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25400
IP address blocks: 194.54.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:31:7d:07:a6:97:0e:d6:75:99:f1:ca:4d:e5:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97668547a433343dde9bb36595bc903b4f149604
Validity
Not Before: Jan 1 20:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66dbd3df046ee99979628b6936c531eddde96b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6e:0e:3c:a6:a7:87:67:38:4a:5e:b3:64:5e:
bc:86:fd:e4:03:e9:c2:c4:9d:69:ea:30:ce:68:8c:
9b:2b:99:45:41:f0:57:fe:d7:da:73:ca:85:b6:47:
56:7f:b1:f3:da:2d:7d:d1:bd:22:26:6b:da:9b:32:
d3:aa:b8:f6:a8:c2:33:40:e7:2d:96:a2:c1:b1:90:
b5:17:2c:9b:da:0d:a9:01:7c:e8:19:5e:a7:90:7f:
ad:97:75:e0:86:72:24:97:00:77:cb:bf:cd:da:d5:
21:4c:93:d6:1d:49:dd:a5:6e:36:e3:24:3e:13:83:
ed:0e:9a:c8:de:b3:3f:08:85:ea:af:ff:3e:d9:e7:
f1:0f:1f:73:14:38:f7:9e:90:db:c5:2d:8b:1e:c7:
65:b2:29:03:b5:17:ba:c1:c7:0a:bb:9a:79:83:85:
99:1d:39:18:36:ee:5e:02:25:6c:36:a0:7d:72:f4:
32:0d:d0:1d:30:9b:87:24:1b:4a:fa:eb:d3:fa:45:
ab:5b:98:47:43:40:1a:c7:03:50:15:b6:66:6b:8d:
74:6c:77:14:67:3d:f6:29:20:22:70:fe:cb:fa:6b:
5b:a9:80:d1:ae:8d:8e:26:4b:ea:6c:f7:c9:62:ff:
f6:e1:7e:d6:2d:af:75:b3:a3:9b:dd:80:8a:b8:72:
e1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:DB:D3:DF:04:6E:E9:99:79:62:8B:69:36:C5:31:ED:DD:E9:6B:83
X509v3 Authority Key Identifier:
keyid:97:66:85:47:A4:33:34:3D:DE:9B:B3:65:95:BC:90:3B:4F:14:96:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l2aFR6QzND3em7NllbyQO08UlgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/ZtvT3wRu6Zl5YotpNsUx7d3pa4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/l2aFR6QzND3em7NllbyQO08UlgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.68.0/22
Signature Algorithm: sha256WithRSAEncryption
14:d9:7c:b3:54:e3:27:13:27:74:56:88:95:6a:62:1c:21:07:
08:37:b9:4a:5e:00:65:4f:4b:cb:58:46:b0:ef:ec:d1:14:c5:
aa:e2:f2:b8:f7:d0:4f:7e:dd:44:f0:d5:e0:a8:e4:4a:27:df:
96:ed:44:19:1e:2c:71:9d:29:0f:3e:f6:bf:f4:20:23:72:84:
92:db:8e:d2:d9:65:b6:4b:93:fd:f0:fd:43:d0:87:1d:0a:95:
c4:60:23:a3:8b:a3:dd:3a:ab:fe:a5:39:36:53:43:80:99:88:
7d:8e:ac:20:9d:57:c6:cf:be:a5:17:d5:47:2d:f1:b0:03:bd:
12:a6:d8:47:e9:28:cc:c9:cc:d2:30:d0:b0:36:51:fc:58:e2:
1a:61:3b:16:fb:7d:62:fb:9b:88:e3:53:10:d4:3b:91:af:3a:
bf:6e:15:2f:89:39:f2:cb:1f:c3:68:55:22:ff:00:c2:24:f0:
c5:3b:b5:9f:d8:63:a9:7d:75:45:43:7f:4d:7b:c5:b8:88:c7:
7b:59:45:09:eb:67:35:8d:58:25:43:4b:be:2a:d9:e7:15:9d:
86:cc:97:bf:4d:64:2c:b3:2e:a9:98:e2:b0:1e:7e:88:99:90:
82:9d:5b:54:5e:e1:b8:49:3a:86:e5:83:75:ed:dc:36:ae:30:
29:41:44:5d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvAjF9B6aXDtZ1mfHKTeVzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3NjY4NTQ3YTQzMzM0M2RkZTliYjM2NTk1YmM5MDNiNGYx
NDk2MDQwHhcNMjMwMTAxMjAyNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NmRiZDNkZjA0NmVlOTk5Nzk2MjhiNjkzNmM1MzFlZGRkZTk2YjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj24OPKanh2c4Sl6zZF68hv3kA+nC
xJ1p6jDOaIybK5lFQfBX/tfac8qFtkdWf7Hz2i190b0iJmvamzLTqrj2qMIzQOct
lqLBsZC1Fyyb2g2pAXzoGV6nkH+tl3XghnIklwB3y7/N2tUhTJPWHUndpW424yQ+
E4PtDprI3rM/CIXqr/8+2efxDx9zFDj3npDbxS2LHsdlsikDtRe6wccKu5p5g4WZ
HTkYNu5eAiVsNqB9cvQyDdAdMJuHJBtK+uvT+kWrW5hHQ0AaxwNQFbZma410bHcU
Zz32KSAicP7L+mtbqYDRro2OJkvqbPfJYv/24X7WLa91s6Ob3YCKuHLh9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGbb098EbumZeWKLaTbFMe3d6WuDMB8GA1UdIwQY
MBaAFJdmhUekMzQ93puzZZW8kDtPFJYEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDJhRlI2UXpORDNlbTdObGxieVFPMDhVbGdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS85NzhjMmUtMWI3Ni00OGIwLWE2MDMt
NjRjMWMyNzljY2MwLzEvWnR2VDN3UnU2Wmw1WW90cE5zVXg3ZDNwYTRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS85NzhjMmUtMWI3Ni00OGIwLWE2MDMtNjRjMWMyNzljY2Mw
LzEvbDJhRlI2UXpORDNlbTdObGxieVFPMDhVbGdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwjZEMA0G
CSqGSIb3DQEBCwUAA4IBAQAU2XyzVOMnEyd0VoiVamIcIQcIN7lKXgBlT0vLWEaw
7+zRFMWq4vK499BPft1E8NXgqORKJ9+W7UQZHixxnSkPPva/9CAjcoSS247S2WW2
S5P98P1D0IcdCpXEYCOji6PdOqv+pTk2U0OAmYh9jqwgnVfGz76lF9VHLfGwA70S
pthH6SjMyczSMNCwNlH8WOIaYTsW+31i+5uI41MQ1DuRrzq/bhUviTnyyx/DaFUi
/wDCJPDFO7Wf2GOpfXVFQ39Ne8W4iMd7WUUJ62c1jVglQ0u+KtnnFZ2GzJe/TWQs
sy6pmOKwHn6ImZCCnVtUXuG4STqG5YN17dw2rjApQURd
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:07 2024 by rpki-client on console-ams.rpki-client.org