Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/9b16f3-0100-4964-9ec9-e5ec2cc647aa/1/ZSpy_hQWd0-pvML4rhx9jD63Hts.roa
File: ZSpy_hQWd0-pvML4rhx9jD63Hts.roa (raw, json)
Hash identifier: nUvrzMbmcMAZpVHNdD6XsuDt89q5RKF+1XvP1PGgNt4=
Subject key identifier: 65:2A:72:FE:14:16:77:4F:A9:BC:C2:F8:AE:1C:7D:8C:3E:B7:1E:DB
Certificate issuer: /CN=9b47ee1f17c987debb2c020d8b5f2d8bdadbeb77
Certificate serial: 018572280DECD73878C55DE599E08B74EA6C
Authority key identifier: 9B:47:EE:1F:17:C9:87:DE:BB:2C:02:0D:8B:5F:2D:8B:DA:DB:EB:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m0fuHxfJh967LAINi18ti9rb63c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/9b16f3-0100-4964-9ec9-e5ec2cc647aa/1/ZSpy_hQWd0-pvML4rhx9jD63Hts.roa
Signing time: Mon 02 Jan 2023 11:05:05 +0000
ROA not before: Mon 02 Jan 2023 11:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 217.8.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:0d:ec:d7:38:78:c5:5d:e5:99:e0:8b:74:ea:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b47ee1f17c987debb2c020d8b5f2d8bdadbeb77
Validity
Not Before: Jan 2 11:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=652a72fe1416774fa9bcc2f8ae1c7d8c3eb71edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:36:7c:75:75:ca:54:ef:de:14:2b:58:7e:06:
fb:49:f7:86:ed:bf:b4:db:2e:b4:a6:2f:b7:e1:ce:
c6:73:53:97:a3:2e:ad:03:73:3c:bb:c8:1a:06:71:
93:b9:2c:32:50:9c:25:21:58:a1:83:c9:bd:4a:f9:
5d:3c:77:07:49:d5:18:2d:1e:8a:b1:d3:41:df:ba:
a0:57:39:21:cd:0e:f5:3e:8b:1e:db:a4:82:7d:d8:
06:d8:4b:38:16:57:20:14:ed:dc:d0:45:97:de:ac:
43:33:3b:99:a7:99:cf:8f:a1:c5:ef:82:28:2e:9c:
9b:8b:a2:ca:d1:e3:6b:2d:60:c3:36:8d:21:0b:ea:
73:84:49:85:c3:a6:d8:3b:15:22:a3:e7:f3:39:11:
f0:6d:80:96:ef:b9:b1:78:54:ff:be:58:f7:47:51:
f3:ab:03:4d:68:71:99:76:60:89:eb:1d:b3:13:e6:
1f:7b:fa:e7:be:69:75:3f:72:63:24:cf:70:df:c0:
37:13:f9:42:01:14:66:7f:7e:19:d1:7e:bc:ce:d5:
ad:1c:82:8c:33:cc:e8:8c:bb:43:43:4f:18:de:7e:
79:3f:f0:b9:48:b9:ca:86:ff:11:d0:88:52:6a:01:
48:21:3f:0e:a1:3f:6f:26:5e:5c:90:8a:32:f4:32:
97:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:2A:72:FE:14:16:77:4F:A9:BC:C2:F8:AE:1C:7D:8C:3E:B7:1E:DB
X509v3 Authority Key Identifier:
keyid:9B:47:EE:1F:17:C9:87:DE:BB:2C:02:0D:8B:5F:2D:8B:DA:DB:EB:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m0fuHxfJh967LAINi18ti9rb63c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/9b16f3-0100-4964-9ec9-e5ec2cc647aa/1/ZSpy_hQWd0-pvML4rhx9jD63Hts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/9b16f3-0100-4964-9ec9-e5ec2cc647aa/1/m0fuHxfJh967LAINi18ti9rb63c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.8.118.0/24
Signature Algorithm: sha256WithRSAEncryption
79:51:d0:6a:ce:cf:3b:58:e6:09:31:ba:d2:d0:48:c4:7d:77:
86:a5:7f:dc:ab:4f:e6:34:2f:af:fd:e0:f8:9d:b7:e3:a8:d4:
cf:a6:c0:5d:ff:c5:d5:e5:c1:4a:d4:d2:38:3e:cc:e2:b1:82:
b3:1d:10:f2:7e:1b:ad:ce:dc:fc:8d:9e:f7:e3:af:08:90:89:
30:28:89:a7:41:05:b6:00:bf:d5:77:03:ca:a3:e1:2f:eb:50:
f4:09:bb:ae:b1:4c:8e:b5:a3:06:dd:61:74:e1:bc:9c:aa:00:
7d:0e:21:0d:7a:05:39:0e:15:31:bd:87:47:d8:ce:82:be:a3:
88:9a:d1:e0:b3:7f:fd:f7:92:67:64:d5:1c:c7:4c:3f:83:9d:
7e:b2:f6:28:9b:5e:02:2b:4a:99:10:ae:fd:3c:da:cc:24:65:
ad:1b:fa:56:70:07:d2:eb:88:84:7c:79:3d:88:0a:43:0e:3c:
ce:fd:a8:5f:7b:b8:af:be:e1:a2:ab:8a:f0:fe:c4:b9:a7:5d:
62:2f:10:a1:59:4e:37:fd:91:7c:80:40:d4:76:b1:57:c9:1a:
c3:36:97:e9:9c:e1:86:8a:00:85:60:21:56:35:99:27:da:65:
a2:af:36:35:d3:72:92:ba:a0:6a:a7:64:63:31:31:8f:80:aa:
b4:86:d0:25
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyKA3s1zh4xV3lmeCLdOpsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliNDdlZTFmMTdjOTg3ZGViYjJjMDIwZDhiNWYyZDhiZGFk
YmViNzcwHhcNMjMwMTAyMTEwNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTJhNzJmZTE0MTY3NzRmYTliY2MyZjhhZTFjN2Q4YzNlYjcxZWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjZ8dXXKVO/eFCtYfgb7SfeG7b+0
2y60pi+34c7Gc1OXoy6tA3M8u8gaBnGTuSwyUJwlIVihg8m9SvldPHcHSdUYLR6K
sdNB37qgVzkhzQ71Pose26SCfdgG2Es4FlcgFO3c0EWX3qxDMzuZp5nPj6HF74Io
Lpybi6LK0eNrLWDDNo0hC+pzhEmFw6bYOxUio+fzORHwbYCW77mxeFT/vlj3R1Hz
qwNNaHGZdmCJ6x2zE+Yfe/rnvml1P3JjJM9w38A3E/lCARRmf34Z0X68ztWtHIKM
M8zojLtDQ08Y3n55P/C5SLnKhv8R0IhSagFIIT8OoT9vJl5ckIoy9DKX2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGUqcv4UFndPqbzC+K4cfYw+tx7bMB8GA1UdIwQY
MBaAFJtH7h8XyYfeuywCDYtfLYva2+t3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTBmdUh4ZkpoOTY3TEFJTmkxOHRpOXJiNjNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS85YjE2ZjMtMDEwMC00OTY0LTllYzkt
ZTVlYzJjYzY0N2FhLzEvWlNweV9oUVdkMC1wdk1MNHJoeDlqRDYzSHRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS85YjE2ZjMtMDEwMC00OTY0LTllYzktZTVlYzJjYzY0N2Fh
LzEvbTBmdUh4ZkpoOTY3TEFJTmkxOHRpOXJiNjNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2Qh2MA0G
CSqGSIb3DQEBCwUAA4IBAQB5UdBqzs87WOYJMbrS0EjEfXeGpX/cq0/mNC+v/eD4
nbfjqNTPpsBd/8XV5cFK1NI4PszisYKzHRDyfhutztz8jZ73468IkIkwKImnQQW2
AL/VdwPKo+Ev61D0CbuusUyOtaMG3WF04bycqgB9DiENegU5DhUxvYdH2M6CvqOI
mtHgs3/995JnZNUcx0w/g51+svYom14CK0qZEK79PNrMJGWtG/pWcAfS64iEfHk9
iApDDjzO/ahfe7ivvuGiq4rw/sS5p11iLxChWU43/ZF8gEDUdrFXyRrDNpfpnOGG
igCFYCFWNZkn2mWirzY103KSuqBqp2RjMTGPgKq0htAl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:34 2024 by rpki-client on console-ams.rpki-client.org