Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/ZK-F0clOX51PTiUq-8eCeJQPPrg.roa
File: ZK-F0clOX51PTiUq-8eCeJQPPrg.roa (raw, json)
Hash identifier: nvtCn3F9Vp8zifIkwSmaKr9Vxt3orJH7vu/gsOWpLpw=
Subject key identifier: 64:AF:85:D1:C9:4E:5F:9D:4F:4E:25:2A:FB:C7:82:78:94:0F:3E:B8
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018B6BF31A28B80264EFB8F65A099D408FE8
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/ZK-F0clOX51PTiUq-8eCeJQPPrg.roa
Signing time: Thu 26 Oct 2023 12:26:15 +0000
ROA not before: Thu 26 Oct 2023 12:26:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8484
IP address blocks: 91.240.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6b:f3:1a:28:b8:02:64:ef:b8:f6:5a:09:9d:40:8f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Oct 26 12:26:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64af85d1c94e5f9d4f4e252afbc78278940f3eb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:95:a8:0b:2f:af:92:69:f1:d7:42:4e:ff:83:
f2:6d:6d:48:2c:15:9f:46:d0:e8:1b:0a:1e:b1:06:
dd:84:05:5b:a0:b2:8f:04:6a:6e:74:d7:28:56:2c:
55:8d:5b:3d:7e:c4:38:c9:5b:5e:3e:70:26:b6:23:
94:24:df:df:ad:c6:27:34:bc:d0:a7:30:7d:12:86:
e6:87:93:60:38:bd:36:3a:e1:01:09:b2:26:8e:bd:
26:54:c6:67:03:2f:bb:28:96:dc:69:8f:b1:3f:e6:
70:82:52:1b:9d:5e:6d:39:7f:2e:a2:2a:f7:0d:b7:
6e:f4:56:50:ec:32:cb:86:23:3f:27:8a:bc:8a:4d:
4a:72:64:38:b3:ec:b7:f8:f0:33:24:a6:e6:cf:a4:
2a:c9:40:8c:bb:33:fe:3a:49:b5:89:b3:89:ca:60:
02:47:78:36:d0:b2:ad:6d:4e:2f:f0:b1:b5:07:fc:
1b:fa:5f:0e:03:60:50:b9:63:c1:d7:b4:9a:97:ca:
41:d5:5e:54:95:ba:f2:88:54:af:13:69:b4:02:76:
e3:51:21:ee:f2:0b:46:30:f8:39:ac:10:e9:80:80:
18:89:68:69:9e:9b:6d:0e:32:85:7d:eb:09:aa:3d:
c1:c4:ff:4c:74:5f:c1:3d:9d:0b:ba:4e:ae:d9:d6:
8e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AF:85:D1:C9:4E:5F:9D:4F:4E:25:2A:FB:C7:82:78:94:0F:3E:B8
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/ZK-F0clOX51PTiUq-8eCeJQPPrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.33.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:5b:b1:67:f2:84:de:2f:12:dd:87:53:6c:a7:d5:ac:f9:ae:
c0:fc:8e:57:85:c3:03:c0:86:cc:23:3b:8b:91:aa:eb:e6:53:
c6:4e:a1:f4:64:31:b2:ef:db:cb:46:73:94:08:43:2c:e2:e5:
ed:40:9c:6c:e9:17:4f:e2:8d:6c:24:21:5b:0d:db:42:21:dd:
0a:98:09:88:48:39:84:67:8f:40:0e:0f:b0:55:45:f0:74:28:
b3:9b:10:c6:2c:c1:b9:43:5a:67:73:7e:91:e1:a6:21:30:75:
13:e6:c6:40:55:f3:a2:0d:f3:fd:2c:a5:48:ee:10:13:e7:19:
f2:77:1c:81:c7:56:87:96:5b:bd:b3:da:08:ec:6d:c9:fb:aa:
a9:d4:2f:56:6e:80:7b:cf:ee:25:1f:87:ff:b5:3f:43:04:e0:
4b:57:a1:e7:67:aa:88:29:13:52:a2:2b:2d:8e:37:1b:0a:1f:
fd:52:89:42:b4:df:41:45:47:1c:95:ba:dd:60:67:97:95:30:
6b:83:03:4e:f1:3d:9c:14:84:b2:a0:6a:51:a4:26:fe:90:fa:
21:1d:18:40:51:43:9c:32:ff:a6:c7:8c:fd:fd:3a:0b:64:17:
1f:52:9d:db:4f:05:4f:f9:50:a5:28:3e:af:d8:64:5e:25:97:
2a:b9:51:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtr8xoouAJk77j2WgmdQI/oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjMxMDI2MTIyNjE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGFmODVkMWM5NGU1ZjlkNGY0ZTI1MmFmYmM3ODI3ODk0MGYzZWI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiZWoCy+vkmnx10JO/4PybW1ILBWf
RtDoGwoesQbdhAVboLKPBGpudNcoVixVjVs9fsQ4yVtePnAmtiOUJN/frcYnNLzQ
pzB9Eobmh5NgOL02OuEBCbImjr0mVMZnAy+7KJbcaY+xP+ZwglIbnV5tOX8uoir3
Dbdu9FZQ7DLLhiM/J4q8ik1KcmQ4s+y3+PAzJKbmz6QqyUCMuzP+Okm1ibOJymAC
R3g20LKtbU4v8LG1B/wb+l8OA2BQuWPB17Sal8pB1V5UlbryiFSvE2m0AnbjUSHu
8gtGMPg5rBDpgIAYiWhpnpttDjKFfesJqj3BxP9MdF/BPZ0Luk6u2daOsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGSvhdHJTl+dT04lKvvHgniUDz64MB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvWkstRjBjbE9YNTFQVGlVcS04ZUNlSlFQUHJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/AhMA0G
CSqGSIb3DQEBCwUAA4IBAQA9W7Fn8oTeLxLdh1Nsp9Ws+a7A/I5XhcMDwIbMIzuL
karr5lPGTqH0ZDGy79vLRnOUCEMs4uXtQJxs6RdP4o1sJCFbDdtCId0KmAmISDmE
Z49ADg+wVUXwdCizmxDGLMG5Q1pnc36R4aYhMHUT5sZAVfOiDfP9LKVI7hAT5xny
dxyBx1aHllu9s9oI7G3J+6qp1C9WboB7z+4lH4f/tT9DBOBLV6HnZ6qIKRNSoist
jjcbCh/9UolCtN9BRUcclbrdYGeXlTBrgwNO8T2cFISyoGpRpCb+kPohHRhAUUOc
Mv+mx4z9/ToLZBcfUp3bTwVP+VClKD6v2GReJZcquVHx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org