Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/f57b93-d253-4fbb-a31e-6b89fa46757c/1/ZSUMhIKUsFVVXWHTmY2UKu7Go1o.roa
File: ZSUMhIKUsFVVXWHTmY2UKu7Go1o.roa (raw, json)
Hash identifier: jURts8mIfqye8Xd9+WNGtRN4ZELpnhUCwgz3N4AokDk=
Subject key identifier: 65:25:0C:84:82:94:B0:55:55:5D:61:D3:99:8D:94:2A:EE:C6:A3:5A
Certificate issuer: /CN=b8dafa7ea553178133e7e84feeb8ac3a9dbcf9ca
Certificate serial: 0187C423EFB73D696D9DDFEC4BD0160C663E
Authority key identifier: B8:DA:FA:7E:A5:53:17:81:33:E7:E8:4F:EE:B8:AC:3A:9D:BC:F9:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNr6fqVTF4Ez5-hP7risOp28-co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/f57b93-d253-4fbb-a31e-6b89fa46757c/1/ZSUMhIKUsFVVXWHTmY2UKu7Go1o.roa
Signing time: Thu 27 Apr 2023 19:15:02 +0000
ROA not before: Thu 27 Apr 2023 19:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208124
IP address blocks: 91.209.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 14:55:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c4:23:ef:b7:3d:69:6d:9d:df:ec:4b:d0:16:0c:66:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8dafa7ea553178133e7e84feeb8ac3a9dbcf9ca
Validity
Not Before: Apr 27 19:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65250c848294b055555d61d3998d942aeec6a35a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ca:49:98:4b:53:3b:e4:88:2e:3b:90:ee:2c:
09:0d:5f:04:09:8f:15:8f:56:82:fd:01:19:3a:f7:
d4:7d:12:06:c0:26:b6:3d:5f:d5:bc:3a:b5:78:8a:
06:c1:8f:46:39:ac:a0:1c:af:84:f5:16:d2:93:6b:
9c:80:f1:33:54:32:90:df:ae:40:b9:82:e4:04:df:
10:cd:7a:28:50:c1:0d:e2:67:e2:67:ba:74:a8:de:
67:48:2a:8d:fb:a9:27:f3:3d:6a:1d:71:3e:6c:52:
a5:53:29:87:26:7b:83:9c:2f:00:74:84:9a:0b:b3:
90:66:60:32:d4:51:2c:ee:5f:3a:f4:a4:06:6a:f2:
b7:fe:e6:d7:98:1b:b1:86:e0:98:45:a4:68:0b:17:
a3:51:f9:7d:f4:1b:d6:e6:fb:bc:4b:da:60:37:8e:
f8:35:ee:4d:f9:54:0a:33:6f:1e:8e:80:d0:26:b9:
af:cc:57:8a:fc:df:49:8a:c7:9d:f2:cd:60:7b:de:
cf:1a:de:ac:f9:a5:55:c2:5e:a3:b9:87:67:85:00:
87:65:75:ad:88:54:91:29:d8:98:1d:43:b5:17:7c:
28:d0:55:b8:90:05:29:20:4f:be:32:31:51:88:30:
22:bf:9f:0e:39:16:48:d4:59:16:19:b4:df:e2:f0:
bb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:25:0C:84:82:94:B0:55:55:5D:61:D3:99:8D:94:2A:EE:C6:A3:5A
X509v3 Authority Key Identifier:
keyid:B8:DA:FA:7E:A5:53:17:81:33:E7:E8:4F:EE:B8:AC:3A:9D:BC:F9:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNr6fqVTF4Ez5-hP7risOp28-co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/f57b93-d253-4fbb-a31e-6b89fa46757c/1/ZSUMhIKUsFVVXWHTmY2UKu7Go1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/f57b93-d253-4fbb-a31e-6b89fa46757c/1/uNr6fqVTF4Ez5-hP7risOp28-co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.161.0/24
Signature Algorithm: sha256WithRSAEncryption
04:fc:2f:a6:17:cb:b8:72:3f:a3:b8:60:6d:d3:cd:f0:0a:fb:
7c:9a:4b:4e:67:9a:a1:48:4c:8c:13:90:2d:0c:38:b5:10:26:
f5:82:31:72:17:61:bf:0b:2b:d8:88:84:46:8e:50:14:e7:27:
c2:f1:82:e2:9e:90:e0:6f:c2:0d:4c:09:d8:ba:68:fb:93:59:
3d:cf:67:6a:2f:37:3a:25:02:84:fe:04:a4:45:8a:21:4a:94:
98:1e:f5:4a:d5:10:36:33:25:85:6c:ef:d7:f0:dc:b2:56:8b:
02:a4:b1:f6:ac:61:36:8f:6e:2d:32:e9:c0:92:9b:4f:54:1b:
e3:2f:19:60:c6:b5:03:b7:7e:4d:ad:d5:fd:4d:4d:0b:75:01:
71:65:3f:ca:93:f4:e3:88:9f:1f:d4:02:de:d0:a3:13:2c:2c:
9b:b7:ba:c7:e7:83:12:39:23:04:fd:c7:2c:8c:7e:5b:10:ab:
18:97:bc:ed:95:0c:17:da:56:61:51:dd:2e:22:1f:1f:8e:cc:
d4:af:45:04:46:c7:75:ef:3a:9d:da:b4:bd:bc:74:a1:ec:db:
58:bd:24:5e:22:90:38:54:27:5a:ca:1b:5b:27:4d:61:09:98:
a6:d5:e9:e7:73:41:e6:f1:15:66:0d:a7:87:c2:1d:a4:15:cb:
9a:d4:0e:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfEI++3PWltnd/sS9AWDGY+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4ZGFmYTdlYTU1MzE3ODEzM2U3ZTg0ZmVlYjhhYzNhOWRi
Y2Y5Y2EwHhcNMjMwNDI3MTkxNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTI1MGM4NDgyOTRiMDU1NTU1ZDYxZDM5OThkOTQyYWVlYzZhMzVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiMpJmEtTO+SILjuQ7iwJDV8ECY8V
j1aC/QEZOvfUfRIGwCa2PV/VvDq1eIoGwY9GOaygHK+E9RbSk2ucgPEzVDKQ365A
uYLkBN8QzXooUMEN4mfiZ7p0qN5nSCqN+6kn8z1qHXE+bFKlUymHJnuDnC8AdISa
C7OQZmAy1FEs7l869KQGavK3/ubXmBuxhuCYRaRoCxejUfl99BvW5vu8S9pgN474
Ne5N+VQKM28ejoDQJrmvzFeK/N9Jised8s1ge97PGt6s+aVVwl6juYdnhQCHZXWt
iFSRKdiYHUO1F3wo0FW4kAUpIE++MjFRiDAiv58OORZI1FkWGbTf4vC7lQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGUlDISClLBVVV1h05mNlCruxqNaMB8GA1UdIwQY
MBaAFLja+n6lUxeBM+foT+64rDqdvPnKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdU5yNmZxVlRGNEV6NS1oUDdyaXNPcDI4LWNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9mNTdiOTMtZDI1My00ZmJiLWEzMWUt
NmI4OWZhNDY3NTdjLzEvWlNVTWhJS1VzRlZWWFdIVG1ZMlVLdTdHbzFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9mNTdiOTMtZDI1My00ZmJiLWEzMWUtNmI4OWZhNDY3NTdj
LzEvdU5yNmZxVlRGNEV6NS1oUDdyaXNPcDI4LWNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9GhMA0G
CSqGSIb3DQEBCwUAA4IBAQAE/C+mF8u4cj+juGBt083wCvt8mktOZ5qhSEyME5At
DDi1ECb1gjFyF2G/CyvYiIRGjlAU5yfC8YLinpDgb8INTAnYumj7k1k9z2dqLzc6
JQKE/gSkRYohSpSYHvVK1RA2MyWFbO/X8NyyVosCpLH2rGE2j24tMunAkptPVBvj
LxlgxrUDt35NrdX9TU0LdQFxZT/Kk/TjiJ8f1ALe0KMTLCybt7rH54MSOSME/ccs
jH5bEKsYl7ztlQwX2lZhUd0uIh8fjszUr0UERsd17zqd2rS9vHSh7NtYvSReIpA4
VCdayhtbJ01hCZim1ennc0Hm8RVmDaeHwh2kFcua1A4z
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:50 2024 by rpki-client on console-fra.rpki-client.org