Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0551a7-c2a6-4df3-b8d0-00b02beb8b83/1/z5ysqv-3YZB2Xv4futj-o5nEnzU.roa
File: z5ysqv-3YZB2Xv4futj-o5nEnzU.roa (raw, json)
Hash identifier: PxBKdUK0D9ej5/WwoORl7cBnjE6oXeacP059qx9s5xA=
Subject key identifier: CF:9C:AC:AA:FF:B7:61:90:76:5E:FE:1F:BA:D8:FE:A3:99:C4:9F:35
Certificate issuer: /CN=bacc1d99a06cbe40dcc71ddc2f1887910f7dd91f
Certificate serial: 018572B43D6386EC4935BEC40366D06CD3EF
Authority key identifier: BA:CC:1D:99:A0:6C:BE:40:DC:C7:1D:DC:2F:18:87:91:0F:7D:D9:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uswdmaBsvkDcxx3cLxiHkQ992R8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0551a7-c2a6-4df3-b8d0-00b02beb8b83/1/z5ysqv-3YZB2Xv4futj-o5nEnzU.roa
Signing time: Mon 02 Jan 2023 13:38:12 +0000
ROA not before: Mon 02 Jan 2023 13:38:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24904
IP address blocks: 92.118.96.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:3d:63:86:ec:49:35:be:c4:03:66:d0:6c:d3:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bacc1d99a06cbe40dcc71ddc2f1887910f7dd91f
Validity
Not Before: Jan 2 13:38:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf9cacaaffb76190765efe1fbad8fea399c49f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d0:28:d7:29:26:49:e0:95:e4:6b:1f:1f:78:
31:f4:ce:38:07:8a:9b:6e:ac:00:5b:e9:ca:ef:fb:
5d:16:94:bd:60:a2:6f:ab:d4:49:23:db:1a:de:bd:
53:ff:f0:37:43:45:e2:66:5d:89:02:df:1d:20:18:
37:bc:5d:ee:ab:3b:4d:48:43:d2:d1:31:0a:1f:9b:
10:fa:64:0a:1f:97:76:f3:b2:32:23:f5:4b:41:ea:
4d:09:89:b3:cc:06:61:16:e8:4a:c2:ee:5a:f2:4f:
fb:4c:7e:6f:00:b2:5f:e6:90:11:57:be:66:90:4e:
9f:1b:77:61:4b:a6:97:bd:d7:fb:88:b1:05:ca:70:
0a:72:58:73:07:76:ae:eb:fb:9d:cf:58:92:ba:b9:
85:fe:48:fa:73:72:eb:ea:96:3b:ea:c5:c3:59:96:
89:e1:22:4f:db:0f:73:4c:41:ad:37:6a:d0:f1:19:
0e:4a:46:0c:db:b8:2d:63:dc:05:cb:60:cd:4c:4b:
e7:1f:6d:6a:1c:93:22:8c:b6:67:07:22:1e:a9:76:
c1:af:68:a6:74:67:b3:fe:20:50:f6:32:05:58:f8:
b2:ca:ed:e4:45:eb:e5:8e:24:ca:c8:ff:b2:92:e3:
1d:dc:89:63:a6:f1:4d:74:d5:24:64:19:64:7d:bd:
b0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:9C:AC:AA:FF:B7:61:90:76:5E:FE:1F:BA:D8:FE:A3:99:C4:9F:35
X509v3 Authority Key Identifier:
keyid:BA:CC:1D:99:A0:6C:BE:40:DC:C7:1D:DC:2F:18:87:91:0F:7D:D9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uswdmaBsvkDcxx3cLxiHkQ992R8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0551a7-c2a6-4df3-b8d0-00b02beb8b83/1/z5ysqv-3YZB2Xv4futj-o5nEnzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0551a7-c2a6-4df3-b8d0-00b02beb8b83/1/uswdmaBsvkDcxx3cLxiHkQ992R8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.96.0/22
Signature Algorithm: sha256WithRSAEncryption
00:9a:01:d4:3c:f9:38:bf:de:d9:b2:50:fa:70:90:51:c1:ea:
d5:fb:57:c9:3d:2d:0c:0a:ad:54:b8:1b:0b:a6:f3:d6:00:a1:
23:b1:89:92:d7:fb:e5:6c:67:33:ea:99:23:04:26:8f:50:62:
4c:14:84:b4:ee:d6:71:eb:ad:90:39:5a:02:03:84:16:40:62:
eb:33:62:6e:12:29:7f:f0:cc:8e:cd:fe:96:0e:0d:b8:a7:4a:
3b:05:71:fd:49:e9:df:dc:3a:fd:22:e0:7b:bb:7e:b7:7f:15:
31:12:8f:de:27:41:97:de:2e:fa:90:4a:90:dd:6d:18:22:e2:
36:8b:3a:c8:17:b0:b6:8f:cf:f0:9c:b2:8a:be:2f:73:be:30:
95:27:83:2e:5c:fd:82:2f:ad:69:45:7c:66:6f:74:6e:2e:d8:
49:70:92:19:80:08:c7:9f:52:ca:5f:35:db:f3:4c:3b:4f:1d:
9d:c4:bb:2c:1f:bd:66:b9:a4:56:80:5d:26:f5:e0:35:17:0b:
f4:0c:54:97:39:7e:87:f2:4b:c2:84:18:aa:72:81:ab:ed:52:
61:ff:bc:47:f5:9b:c6:6e:cd:4e:9a:72:81:16:a4:ff:66:2e:
e2:e0:88:75:68:6e:c0:e7:22:49:e1:2a:5e:cc:f7:0e:bf:a9:
8d:81:1e:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVytD1jhuxJNb7EA2bQbNPvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhY2MxZDk5YTA2Y2JlNDBkY2M3MWRkYzJmMTg4NzkxMGY3
ZGQ5MWYwHhcNMjMwMTAyMTMzODEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjljYWNhYWZmYjc2MTkwNzY1ZWZlMWZiYWQ4ZmVhMzk5YzQ5ZjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhdAo1ykmSeCV5GsfH3gx9M44B4qb
bqwAW+nK7/tdFpS9YKJvq9RJI9sa3r1T//A3Q0XiZl2JAt8dIBg3vF3uqztNSEPS
0TEKH5sQ+mQKH5d287IyI/VLQepNCYmzzAZhFuhKwu5a8k/7TH5vALJf5pARV75m
kE6fG3dhS6aXvdf7iLEFynAKclhzB3au6/udz1iSurmF/kj6c3Lr6pY76sXDWZaJ
4SJP2w9zTEGtN2rQ8RkOSkYM27gtY9wFy2DNTEvnH21qHJMijLZnByIeqXbBr2im
dGez/iBQ9jIFWPiyyu3kRevljiTKyP+ykuMd3IljpvFNdNUkZBlkfb2wvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM+crKr/t2GQdl7+H7rY/qOZxJ81MB8GA1UdIwQY
MBaAFLrMHZmgbL5A3Mcd3C8Yh5EPfdkfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXN3ZG1hQnN2a0RjeHgzY0x4aUhrUTk5MlI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8wNTUxYTctYzJhNi00ZGYzLWI4ZDAt
MDBiMDJiZWI4YjgzLzEvejV5c3F2LTNZWkIyWHY0ZnV0ai1vNW5FbnpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My8wNTUxYTctYzJhNi00ZGYzLWI4ZDAtMDBiMDJiZWI4Yjgz
LzEvdXN3ZG1hQnN2a0RjeHgzY0x4aUhrUTk5MlI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXHZgMA0G
CSqGSIb3DQEBCwUAA4IBAQAAmgHUPPk4v97ZslD6cJBRwerV+1fJPS0MCq1UuBsL
pvPWAKEjsYmS1/vlbGcz6pkjBCaPUGJMFIS07tZx662QOVoCA4QWQGLrM2JuEil/
8MyOzf6WDg24p0o7BXH9Senf3Dr9IuB7u363fxUxEo/eJ0GX3i76kEqQ3W0YIuI2
izrIF7C2j8/wnLKKvi9zvjCVJ4MuXP2CL61pRXxmb3RuLthJcJIZgAjHn1LKXzXb
80w7Tx2dxLssH71muaRWgF0m9eA1Fwv0DFSXOX6H8kvChBiqcoGr7VJh/7xH9ZvG
bs1OmnKBFqT/Zi7i4Ih1aG7A5yJJ4SpezPcOv6mNgR4L
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:52 2024 by rpki-client on console-ams.rpki-client.org