Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ZR2LaDzFwvXmJeYuqnwIPAa9498.roa
File: ZR2LaDzFwvXmJeYuqnwIPAa9498.roa (raw, json)
Hash identifier: +vREg6wDN0VEuiEr3Sl2AL5PocUKWm3Dk+YIn8RE9QQ=
Subject key identifier: 65:1D:8B:68:3C:C5:C2:F5:E6:25:E6:2E:AA:7C:08:3C:06:BD:E3:DF
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0187E1ECC515F3C015FAE587526269D10667
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ZR2LaDzFwvXmJeYuqnwIPAa9498.roa
Signing time: Wed 03 May 2023 14:03:23 +0000
ROA not before: Wed 03 May 2023 14:03:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200627
IP address blocks: 212.193.98.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:ec:c5:15:f3:c0:15:fa:e5:87:52:62:69:d1:06:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: May 3 14:03:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=651d8b683cc5c2f5e625e62eaa7c083c06bde3df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b5:1d:e7:7f:29:77:3d:5c:52:0f:7e:1a:96:
76:65:42:0e:74:51:d4:14:e4:47:ea:0f:0b:a1:3b:
27:bd:25:63:fd:5b:aa:b5:eb:90:7c:a5:1c:69:4b:
68:b9:71:84:3a:79:a7:51:23:54:da:ce:13:3a:f9:
98:f9:a1:0f:66:b9:2c:52:55:bf:27:ae:66:82:11:
0d:c3:b5:3b:82:e7:19:5c:17:ab:3f:b7:8b:b6:b7:
ee:ab:3b:71:a4:ff:1f:96:21:a5:34:7b:54:69:35:
bf:9c:48:85:75:39:14:91:e3:cb:02:d0:b3:77:53:
32:cb:cb:d8:9b:6f:26:95:b3:83:fa:ea:ce:69:fb:
69:a1:c5:3a:f8:1c:d7:69:c4:55:02:ad:c4:fa:d7:
b7:66:91:73:aa:22:45:8a:0c:72:cf:c5:8a:53:63:
0f:0b:16:61:24:9d:5d:7f:7f:bc:2c:45:90:3d:46:
e3:fb:51:32:24:d5:be:cd:ac:b0:de:80:d6:54:b6:
1f:a4:d7:a1:9a:aa:af:67:b0:a0:e2:ff:a1:1f:23:
d6:9b:a7:75:2e:4e:cf:58:fc:7c:ae:f0:34:52:28:
af:fc:c5:9b:07:d1:bf:46:a2:ce:7e:f0:9c:2d:2c:
6a:af:12:d4:ee:d6:40:0c:8d:fe:08:17:e1:25:2e:
59:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1D:8B:68:3C:C5:C2:F5:E6:25:E6:2E:AA:7C:08:3C:06:BD:E3:DF
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ZR2LaDzFwvXmJeYuqnwIPAa9498.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.98.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:9f:ea:de:8a:de:d7:a2:ff:04:da:6e:51:88:17:17:d0:fa:
73:0b:03:7c:9f:d6:e3:55:6e:7e:16:7d:b3:a1:de:98:1f:6b:
1a:15:89:38:dc:39:cf:68:1b:2a:b5:e8:9b:47:65:e7:bf:38:
fd:f4:a0:6f:5e:7a:3d:84:fe:4b:90:47:ce:a0:fc:40:f1:57:
46:37:b4:1c:47:8c:97:52:f3:41:76:54:b7:7f:35:36:42:23:
8a:45:3f:c7:a4:ee:ef:c6:c6:ea:66:3a:df:88:07:c6:15:84:
9d:29:65:04:c9:19:16:53:55:d6:8f:8f:4b:2b:da:92:12:13:
eb:ed:a4:95:92:0b:7f:aa:13:ee:9b:bd:93:1b:31:d6:77:d3:
32:ca:8b:e3:78:c8:5b:60:64:ff:0a:10:8a:30:79:c6:b7:c6:
db:5e:68:b5:af:8c:29:db:ca:cc:4e:c9:df:41:85:43:37:fe:
5e:5e:5b:2e:06:c9:03:4e:2c:8b:e6:16:51:94:76:07:63:20:
ee:e8:45:79:23:8c:03:28:20:38:fd:df:a9:5d:92:6d:b2:4b:
58:43:25:b9:80:38:e8:c5:c6:fa:44:42:07:ea:e5:7a:5c:44:
47:10:ad:3c:0c:1b:b6:5e:4c:82:3e:7a:3c:d2:76:24:59:62:
2b:44:c1:99
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfh7MUV88AV+uWHUmJp0QZnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjMwNTAzMTQwMzIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTFkOGI2ODNjYzVjMmY1ZTYyNWU2MmVhYTdjMDgzYzA2YmRlM2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgLUd538pdz1cUg9+GpZ2ZUIOdFHU
FORH6g8LoTsnvSVj/VuqteuQfKUcaUtouXGEOnmnUSNU2s4TOvmY+aEPZrksUlW/
J65mghENw7U7gucZXBerP7eLtrfuqztxpP8fliGlNHtUaTW/nEiFdTkUkePLAtCz
d1Myy8vYm28mlbOD+urOaftpocU6+BzXacRVAq3E+te3ZpFzqiJFigxyz8WKU2MP
CxZhJJ1df3+8LEWQPUbj+1EyJNW+zayw3oDWVLYfpNehmqqvZ7Cg4v+hHyPWm6d1
Lk7PWPx8rvA0Uiiv/MWbB9G/RqLOfvCcLSxqrxLU7tZADI3+CBfhJS5ZXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGUdi2g8xcL15iXmLqp8CDwGvePfMB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvWlIyTGFEekZ3dlhtSmVZdXFud0lQQWE5NDk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1MFiMA0G
CSqGSIb3DQEBCwUAA4IBAQBbn+reit7Xov8E2m5RiBcX0PpzCwN8n9bjVW5+Fn2z
od6YH2saFYk43DnPaBsqteibR2Xnvzj99KBvXno9hP5LkEfOoPxA8VdGN7QcR4yX
UvNBdlS3fzU2QiOKRT/HpO7vxsbqZjrfiAfGFYSdKWUEyRkWU1XWj49LK9qSEhPr
7aSVkgt/qhPum72TGzHWd9MyyovjeMhbYGT/ChCKMHnGt8bbXmi1r4wp28rMTsnf
QYVDN/5eXlsuBskDTiyL5hZRlHYHYyDu6EV5I4wDKCA4/d+pXZJtsktYQyW5gDjo
xcb6REIH6uV6XERHEK08DBu2XkyCPno80nYkWWIrRMGZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org