Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/DzZ_DAYhuU_XtaRAyVFlBEwe9TE.roa
File: DzZ_DAYhuU_XtaRAyVFlBEwe9TE.roa (raw, json)
Hash identifier: 0UZ1luWTIQ5NPW+5PtOxNWNpSfkvf2hDapXl9kg22nQ=
Subject key identifier: 0F:36:7F:0C:06:21:B9:4F:D7:B5:A4:40:C9:51:65:04:4C:1E:F5:31
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01894E0709E7B2C7F28652DC58DAC4EB4DEB
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/DzZ_DAYhuU_XtaRAyVFlBEwe9TE.roa
Signing time: Thu 13 Jul 2023 06:53:51 +0000
ROA not before: Thu 13 Jul 2023 06:53:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2285
IP address blocks: 90.84.250.0/24 maxlen: 24
90.84.249.0/24 maxlen: 24
90.84.248.0/24 maxlen: 24
2a01:c9c0:8010::/48 maxlen: 64
2a01:c9c0:8018::/48 maxlen: 64
2a01:c9c0:8030::/48 maxlen: 64
2a01:c9c0:8016::/48 maxlen: 64
2a01:c9c0:801e::/48 maxlen: 64
2a01:c9c0:8014::/48 maxlen: 64
2a01:c9c0:801c::/48 maxlen: 64
2a01:c9c0:8012::/48 maxlen: 64
2a01:c9c0:801a::/48 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4e:07:09:e7:b2:c7:f2:86:52:dc:58:da:c4:eb:4d:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jul 13 06:53:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f367f0c0621b94fd7b5a440c95165044c1ef531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:54:1f:5a:e1:d4:8a:8a:51:1b:4c:a3:17:23:
40:f2:15:6c:00:b7:99:0b:ec:82:bc:ee:5b:bb:8f:
4e:ee:82:06:12:06:24:c9:ec:56:60:47:46:25:d0:
96:12:cf:7a:10:c7:76:f2:9e:67:35:41:58:f3:21:
02:63:8b:07:5e:6b:aa:84:c9:9e:ab:80:9d:e2:72:
58:51:3b:78:8a:7e:4b:20:51:de:0a:e9:99:d6:f4:
d8:16:4b:ca:44:42:77:1f:5a:f6:6f:b5:e9:c3:6b:
58:03:b6:c0:a5:f6:69:2d:7b:b4:5a:0e:4e:9d:2e:
0a:61:41:06:c0:ae:f6:e9:06:94:57:ae:e3:3d:af:
df:9b:25:c2:26:71:05:83:c0:9e:07:1c:81:92:3a:
0c:b8:b2:ff:37:e3:ef:f1:87:95:8c:92:04:13:72:
b8:b2:f2:69:e5:fc:f4:95:07:26:ce:9a:3d:74:00:
cd:8b:1d:1f:e1:1d:7e:9e:bc:99:f0:2b:74:dc:bf:
03:6b:c0:34:19:f9:6c:7c:08:79:a4:a2:53:8f:76:
ea:44:43:9b:a3:bc:d9:4b:7c:16:49:94:ab:28:77:
f5:88:d4:0a:0a:b4:04:c5:ff:e0:ca:2d:43:04:2c:
1d:0d:0b:5c:27:e3:f8:ae:5a:70:34:58:71:5a:be:
7a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:36:7F:0C:06:21:B9:4F:D7:B5:A4:40:C9:51:65:04:4C:1E:F5:31
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/DzZ_DAYhuU_XtaRAyVFlBEwe9TE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.84.248.0-90.84.250.255
IPv6:
2a01:c9c0:8010::/48
2a01:c9c0:8012::/48
2a01:c9c0:8014::/48
2a01:c9c0:8016::/48
2a01:c9c0:8018::/48
2a01:c9c0:801a::/48
2a01:c9c0:801c::/48
2a01:c9c0:801e::/48
2a01:c9c0:8030::/48
Signature Algorithm: sha256WithRSAEncryption
0b:09:67:fa:1e:82:10:51:f4:7c:b2:ce:1f:0b:74:d6:54:f7:
2a:cd:81:a5:ae:d4:46:39:36:2e:72:ca:2d:0d:6f:72:51:90:
e8:bb:24:0c:42:0a:81:07:22:ae:ec:4a:51:4c:48:ab:80:01:
a1:96:ed:58:3d:a6:d7:79:13:27:83:4d:96:a3:a5:6a:ea:c5:
bd:cc:d2:17:3a:e9:38:c4:9d:0b:ab:09:c5:0f:ef:13:1e:6a:
fc:9d:89:41:93:fb:08:c7:9b:3d:b1:2c:cb:51:79:23:4e:32:
01:21:67:07:d2:bb:d2:0b:0b:6d:f4:4a:18:40:3c:95:e3:c7:
b6:32:3f:38:dc:39:af:f5:43:a8:30:ec:61:d4:04:f3:ef:5e:
3f:6d:91:cc:d7:6b:f0:e5:66:ad:f2:05:05:42:38:dc:c4:90:
8c:d5:44:ff:d6:92:51:fb:57:2c:d6:20:c6:e9:91:7e:4f:d1:
f3:fc:89:66:cb:82:9b:28:7c:28:a4:99:f8:f9:2b:04:e9:2d:
44:c9:13:19:bc:b4:fb:71:6e:78:da:9c:5f:3d:8f:d1:bd:fb:
31:57:46:72:5c:68:dd:35:8c:83:b1:e1:69:0d:ae:72:7e:1f:
5f:50:71:46:a8:00:83:37:57:88:bc:cd:01:61:c9:d3:8a:45:
c3:ed:09:9b
-----BEGIN CERTIFICATE-----
MIIFXzCCBEegAwIBAgISAYlOBwnnssfyhlLcWNrE603rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh
MTA1MTEwHhcNMjMwNzEzMDY1MzUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjM2N2YwYzA2MjFiOTRmZDdiNWE0NDBjOTUxNjUwNDRjMWVmNTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFQfWuHUiopRG0yjFyNA8hVsALeZ
C+yCvO5bu49O7oIGEgYkyexWYEdGJdCWEs96EMd28p5nNUFY8yECY4sHXmuqhMme
q4Cd4nJYUTt4in5LIFHeCumZ1vTYFkvKREJ3H1r2b7Xpw2tYA7bApfZpLXu0Wg5O
nS4KYUEGwK726QaUV67jPa/fmyXCJnEFg8CeBxyBkjoMuLL/N+Pv8YeVjJIEE3K4
svJp5fz0lQcmzpo9dADNix0f4R1+nryZ8Ct03L8Da8A0GflsfAh5pKJTj3bqREOb
o7zZS3wWSZSrKHf1iNQKCrQExf/gyi1DBCwdDQtcJ+P4rlpwNFhxWr56zQIDAQAB
o4ICazCCAmcwHQYDVR0OBBYEFA82fwwGIblP17WkQMlRZQRMHvUxMB8GA1UdIwQY
MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt
NDU5MzVmNTA2YTEyLzEvRHpaX0RBWWh1VV9YdGFSQXlWRmxCRXdlOVRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy
LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGABggrBgEFBQcBBwEB/wRxMG8wFAQCAAEwDjAMAwQDWlT4
AwQAWlT6MFcEAgACMFEDBwAqAcnAgBADBwAqAcnAgBIDBwAqAcnAgBQDBwAqAcnA
gBYDBwAqAcnAgBgDBwAqAcnAgBoDBwAqAcnAgBwDBwAqAcnAgB4DBwAqAcnAgDAw
DQYJKoZIhvcNAQELBQADggEBAAsJZ/oeghBR9Hyyzh8LdNZU9yrNgaWu1EY5Ni5y
yi0Nb3JRkOi7JAxCCoEHIq7sSlFMSKuAAaGW7Vg9ptd5EyeDTZajpWrqxb3M0hc6
6TjEnQurCcUP7xMeavydiUGT+wjHmz2xLMtReSNOMgEhZwfSu9ILC230ShhAPJXj
x7YyPzjcOa/1Q6gw7GHUBPPvXj9tkczXa/DlZq3yBQVCONzEkIzVRP/WklH7VyzW
IMbpkX5P0fP8iWbLgpsofCikmfj5KwTpLUTJExm8tPtxbnjanF89j9G9+zFXRnJc
aN01jIOx4WkNrnJ+H19QcUaoAIM3V4i8zQFhydOKRcPtCZs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org