Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/ZcAY53pYnMUOGvDnvRlKcfA9-dQ.roa
File: ZcAY53pYnMUOGvDnvRlKcfA9-dQ.roa (raw, json)
Hash identifier: vpvlyAXR/Pa7VCBh7Yt5V9cqt7fYVkQfcvpDjqOCXQk=
Subject key identifier: 65:C0:18:E7:7A:58:9C:C5:0E:1A:F0:E7:BD:19:4A:71:F0:3D:F9:D4
Certificate issuer: /CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Certificate serial: 0185723A1A67D6895DA6FE6463255AFE0822
Authority key identifier: B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/ZcAY53pYnMUOGvDnvRlKcfA9-dQ.roa
Signing time: Mon 02 Jan 2023 11:24:48 +0000
ROA not before: Mon 02 Jan 2023 11:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25091
IP address blocks: 192.162.204.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:1a:67:d6:89:5d:a6:fe:64:63:25:5a:fe:08:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Validity
Not Before: Jan 2 11:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65c018e77a589cc50e1af0e7bd194a71f03df9d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b6:9d:2a:0f:2e:88:de:20:49:34:ec:d7:79:
be:cf:73:d6:a5:1c:37:f4:84:42:c3:d1:ac:39:95:
74:a0:f7:25:ea:e7:dd:43:e7:d4:8e:9d:e1:70:60:
87:ed:87:f9:94:98:72:d4:4e:bd:8e:db:e9:d8:3d:
d6:6b:31:da:b3:02:59:13:0f:c9:31:74:cf:c1:b1:
2a:07:76:64:12:0e:fb:60:33:70:46:72:32:58:cc:
7a:9d:61:07:e5:71:90:71:40:75:4b:a5:05:b0:1d:
af:19:ae:ca:4a:22:9d:1a:69:bd:34:ea:06:9c:06:
7b:ef:04:17:9c:9f:73:36:d2:12:8b:14:fe:0a:c4:
7f:a5:cf:c8:41:02:86:a7:2e:e0:41:87:76:61:4e:
3f:3d:a0:b2:e9:69:66:ec:31:c3:44:e5:08:39:56:
dc:d5:45:55:ac:1b:8d:62:e4:ce:20:9c:5a:73:31:
26:06:be:5b:69:9f:fb:31:91:7f:29:27:01:b1:7c:
b1:37:e0:00:9e:48:eb:f3:fb:66:21:81:d0:3c:8e:
43:a5:29:f3:03:74:9c:b1:76:44:d1:fd:01:e4:e1:
13:65:9c:a7:7e:3d:ca:22:f6:85:a3:76:b7:87:ed:
e7:24:60:25:42:cd:27:51:94:f7:24:c5:2e:1a:0c:
74:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C0:18:E7:7A:58:9C:C5:0E:1A:F0:E7:BD:19:4A:71:F0:3D:F9:D4
X509v3 Authority Key Identifier:
keyid:B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/ZcAY53pYnMUOGvDnvRlKcfA9-dQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.204.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:1f:8f:4b:2a:f8:b1:f4:20:92:36:74:42:d6:c8:41:34:07:
45:6c:12:6c:fb:12:09:53:6d:65:3f:ed:90:49:5c:42:bf:7a:
ac:cf:9b:95:dc:58:39:fe:0a:c5:52:4a:32:5a:a1:de:a9:d2:
52:2d:93:cb:7e:1a:8a:d4:5f:68:dd:94:5b:a3:0a:1c:c6:8d:
f6:28:3a:98:22:6a:be:f6:a3:ce:fa:b0:30:06:75:09:2d:84:
fe:80:0f:40:4e:2b:28:01:c3:8d:92:70:8b:b2:c6:75:ac:5a:
d7:c3:52:cb:cc:4f:92:27:d3:c9:e2:0c:09:6a:73:2c:71:ad:
50:2d:2c:a6:ce:40:78:93:1c:5c:9d:fa:87:f9:1c:5a:a2:f6:
38:fa:4f:5f:a6:4a:67:1c:7a:67:ea:33:dc:48:76:6e:e3:5c:
da:5d:f0:4b:0c:f2:28:19:6a:bc:59:c1:15:b0:04:0e:08:3f:
3d:6a:1b:7d:9c:3b:78:ed:3c:40:5c:fd:de:25:5b:18:64:4c:
ef:39:24:db:16:06:4f:20:35:62:6f:86:ca:41:51:5f:0b:9b:
86:4b:4e:99:5a:9e:47:40:39:81:e9:d1:cd:73:83:b4:7f:d5:
b2:09:62:68:1f:60:a1:75:6e:26:8e:94:b2:b1:24:bf:ae:ae:
d0:6e:71:5d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyOhpn1oldpv5kYyVa/ggiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMTVjZDhlNmRiMzU0NDE5ODRkOWM3ZGZjOWFmYjY1M2U1
NWRmZjEwHhcNMjMwMTAyMTEyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NWMwMThlNzdhNTg5Y2M1MGUxYWYwZTdiZDE5NGE3MWYwM2RmOWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLadKg8uiN4gSTTs13m+z3PWpRw3
9IRCw9GsOZV0oPcl6ufdQ+fUjp3hcGCH7Yf5lJhy1E69jtvp2D3WazHaswJZEw/J
MXTPwbEqB3ZkEg77YDNwRnIyWMx6nWEH5XGQcUB1S6UFsB2vGa7KSiKdGmm9NOoG
nAZ77wQXnJ9zNtISixT+CsR/pc/IQQKGpy7gQYd2YU4/PaCy6Wlm7DHDROUIOVbc
1UVVrBuNYuTOIJxaczEmBr5baZ/7MZF/KScBsXyxN+AAnkjr8/tmIYHQPI5DpSnz
A3ScsXZE0f0B5OETZZynfj3KIvaFo3a3h+3nJGAlQs0nUZT3JMUuGgx0TQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGXAGOd6WJzFDhrw570ZSnHwPfnUMB8GA1UdIwQY
MBaAFLIVzY5ts1RBmE2cffya+2U+Vd/xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMt
ZTk1MGQ4N2Y4ZTI1LzEvWmNBWTUzcFluTVVPR3ZEbnZSbEtjZkE5LWRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMtZTk1MGQ4N2Y4ZTI1
LzEvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwKLMMA0G
CSqGSIb3DQEBCwUAA4IBAQAPH49LKvix9CCSNnRC1shBNAdFbBJs+xIJU21lP+2Q
SVxCv3qsz5uV3Fg5/grFUkoyWqHeqdJSLZPLfhqK1F9o3ZRbowocxo32KDqYImq+
9qPO+rAwBnUJLYT+gA9ATisoAcONknCLssZ1rFrXw1LLzE+SJ9PJ4gwJanMsca1Q
LSymzkB4kxxcnfqH+RxaovY4+k9fpkpnHHpn6jPcSHZu41zaXfBLDPIoGWq8WcEV
sAQOCD89aht9nDt47TxAXP3eJVsYZEzvOSTbFgZPIDVib4bKQVFfC5uGS06ZWp5H
QDmB6dHNc4O0f9WyCWJoH2ChdW4mjpSysSS/rq7QbnFd
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:32 2024 by rpki-client on console-ams.rpki-client.org