Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/ZXJA7rMQAC4xuv3ubpvUmuIStvI.roa
File: ZXJA7rMQAC4xuv3ubpvUmuIStvI.roa (raw, json)
Hash identifier: A41BIwaoZMS7XrSl/CpM206VdQbQ4F6tBEunlRxi+cE=
Subject key identifier: 65:72:40:EE:B3:10:00:2E:31:BA:FD:EE:6E:9B:D4:9A:E2:12:B6:F2
Certificate issuer: /CN=44131ee936a6fa42ff3af0a6ae86c2c6653dd573
Certificate serial: 01856EA69CD0ECE7238FBAB31250DD1E1234
Authority key identifier: 44:13:1E:E9:36:A6:FA:42:FF:3A:F0:A6:AE:86:C2:C6:65:3D:D5:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RBMe6Tam-kL_OvCmrobCxmU91XM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/ZXJA7rMQAC4xuv3ubpvUmuIStvI.roa
Signing time: Sun 01 Jan 2023 18:44:50 +0000
ROA not before: Sun 01 Jan 2023 18:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60906
IP address blocks: 193.23.16.0/23 maxlen: 23
193.23.16.0/22 maxlen: 22
193.23.18.0/23 maxlen: 23
2a0f:5680:3::/48 maxlen: 48
2a0f:5680:1::/48 maxlen: 48
2a0f:5680::/32 maxlen: 32
2a0f:5680::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:9c:d0:ec:e7:23:8f:ba:b3:12:50:dd:1e:12:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44131ee936a6fa42ff3af0a6ae86c2c6653dd573
Validity
Not Before: Jan 1 18:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=657240eeb310002e31bafdee6e9bd49ae212b6f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7c:e5:63:59:91:a0:d7:f4:c4:81:83:0a:e5:
03:ae:6d:d6:81:aa:8b:c8:f5:a1:44:12:f9:b1:b0:
90:6a:cc:d4:fa:44:af:87:cd:8f:8a:06:b1:f2:09:
71:8f:4a:ad:52:34:e0:82:af:82:ee:6b:cf:ab:37:
fa:85:f9:6f:f2:67:27:2f:38:95:31:e6:fe:bc:c6:
43:9f:bd:c4:19:53:85:6b:43:99:44:05:18:37:57:
db:e2:6b:78:bf:84:4d:1a:5e:a0:72:9a:ed:31:fe:
8b:f6:6f:84:af:3d:08:60:48:95:ae:c0:52:3c:6e:
cd:58:68:6b:02:b6:89:ed:22:d4:ec:1c:e0:29:25:
0f:79:83:e4:b0:9f:2c:6b:ad:13:f8:3f:66:f1:ff:
ec:d2:9d:10:dd:41:11:2a:f6:22:48:d7:b0:d1:b3:
bf:c0:84:c0:be:16:f1:e8:57:07:ec:5d:07:9b:6e:
84:37:d1:4c:d8:82:9d:55:b9:4d:30:b4:1d:a7:fa:
70:5a:90:9f:96:51:d6:a2:6c:29:42:9d:0d:c4:3b:
05:e6:a8:11:ca:ee:5f:2b:2a:67:14:82:ab:a6:65:
51:5b:57:dc:d5:37:ac:d6:57:e3:bb:a6:2e:ba:0a:
31:34:09:af:bf:f1:43:65:27:7a:79:9e:c7:f9:dc:
c0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:72:40:EE:B3:10:00:2E:31:BA:FD:EE:6E:9B:D4:9A:E2:12:B6:F2
X509v3 Authority Key Identifier:
keyid:44:13:1E:E9:36:A6:FA:42:FF:3A:F0:A6:AE:86:C2:C6:65:3D:D5:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RBMe6Tam-kL_OvCmrobCxmU91XM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/ZXJA7rMQAC4xuv3ubpvUmuIStvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/RBMe6Tam-kL_OvCmrobCxmU91XM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.16.0/22
IPv6:
2a0f:5680::/32
Signature Algorithm: sha256WithRSAEncryption
53:c5:8c:10:49:c5:2d:c8:9d:5c:4a:72:b1:27:d6:8c:cb:8d:
9d:ab:b8:44:74:b7:50:b0:c1:00:79:3c:2b:90:52:0e:eb:fd:
5b:b3:4f:80:ad:4a:77:01:b9:dd:3d:98:12:dc:0f:ac:51:39:
64:a0:2c:74:ed:97:21:59:99:23:3c:a8:b6:6e:79:af:0d:d9:
8a:cb:3f:79:3a:2d:8f:78:a8:a8:58:f7:a9:c0:0b:83:12:fa:
ac:d8:6c:6a:a4:d6:1f:1b:4c:e8:57:82:6e:1d:ef:b9:cc:8e:
48:06:b0:41:28:09:8e:e9:3f:24:3f:5d:34:b5:17:a4:ea:c8:
ab:fc:21:6f:3d:fa:f9:44:39:23:b4:16:a4:26:67:24:8f:e4:
9c:59:9e:7e:77:84:5d:46:d4:29:62:2a:b5:48:e1:5e:03:dc:
6a:73:f3:39:e6:49:d3:8e:2b:d7:9c:59:5f:d0:54:4f:c2:91:
e7:62:da:b0:ea:b7:75:92:6f:65:37:01:bd:e1:0d:c3:22:7b:
86:b0:33:64:30:61:d6:b7:ab:a8:b0:38:01:dd:e3:78:69:5d:
2a:71:28:b4:8e:67:e0:8c:1f:98:88:36:e3:d8:29:9d:94:b3:
c3:2d:8e:05:a2:dc:94:b5:73:a6:7b:97:e3:60:e6:1d:05:a3:
7d:d5:e8:9d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVuppzQ7Ocjj7qzElDdHhI0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0MTMxZWU5MzZhNmZhNDJmZjNhZjBhNmFlODZjMmM2NjUz
ZGQ1NzMwHhcNMjMwMTAxMTg0NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTcyNDBlZWIzMTAwMDJlMzFiYWZkZWU2ZTliZDQ5YWUyMTJiNmYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiHzlY1mRoNf0xIGDCuUDrm3WgaqL
yPWhRBL5sbCQaszU+kSvh82Pigax8glxj0qtUjTggq+C7mvPqzf6hflv8mcnLziV
Meb+vMZDn73EGVOFa0OZRAUYN1fb4mt4v4RNGl6gcprtMf6L9m+Erz0IYEiVrsBS
PG7NWGhrAraJ7SLU7BzgKSUPeYPksJ8sa60T+D9m8f/s0p0Q3UERKvYiSNew0bO/
wITAvhbx6FcH7F0Hm26EN9FM2IKdVblNMLQdp/pwWpCfllHWomwpQp0NxDsF5qgR
yu5fKypnFIKrpmVRW1fc1Tes1lfju6YuugoxNAmvv/FDZSd6eZ7H+dzAcwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGVyQO6zEAAuMbr97m6b1JriErbyMB8GA1UdIwQY
MBaAFEQTHuk2pvpC/zrwpq6GwsZlPdVzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkJNZTZUYW0ta0xfT3ZDbXJvYkN4bVU5MVhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC8xZDQ0ZjItMTcwNi00YmYxLWI3MWQt
NzRjYTM2NDAyYTg1LzEvWlhKQTdyTVFBQzR4dXYzdWJwdlVtdUlTdHZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC8xZDQ0ZjItMTcwNi00YmYxLWI3MWQtNzRjYTM2NDAyYTg1
LzEvUkJNZTZUYW0ta0xfT3ZDbXJvYkN4bVU5MVhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwRcQMA0E
AgACMAcDBQAqD1aAMA0GCSqGSIb3DQEBCwUAA4IBAQBTxYwQScUtyJ1cSnKxJ9aM
y42dq7hEdLdQsMEAeTwrkFIO6/1bs0+ArUp3AbndPZgS3A+sUTlkoCx07ZchWZkj
PKi2bnmvDdmKyz95Oi2PeKioWPepwAuDEvqs2GxqpNYfG0zoV4JuHe+5zI5IBrBB
KAmO6T8kP100tRek6sir/CFvPfr5RDkjtBakJmckj+ScWZ5+d4RdRtQpYiq1SOFe
A9xqc/M55knTjivXnFlf0FRPwpHnYtqw6rd1km9lNwG94Q3DInuGsDNkMGHWt6uo
sDgB3eN4aV0qcSi0jmfgjB+YiDbj2CmdlLPDLY4FotyUtXOme5fjYOYdBaN91eid
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:02 2024 by rpki-client on console-ams.rpki-client.org