Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZieTKBx0X62k1im3yIep9QJFIsQ.roa
File: ZieTKBx0X62k1im3yIep9QJFIsQ.roa (raw, json)
Hash identifier: o4oXtcC4wpPHR2p9K+Hvmp+Fjgbh3JWf6RE6Vl2vprI=
Subject key identifier: 66:27:93:28:1C:74:5F:AD:A4:D6:29:B7:C8:87:A9:F5:02:45:22:C4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018730CBB5904E26E775B00C519BC6047CD2
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZieTKBx0X62k1im3yIep9QJFIsQ.roa
Signing time: Thu 30 Mar 2023 04:34:29 +0000
ROA not before: Thu 30 Mar 2023 04:34:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 62.76.226.0/24 maxlen: 24
194.87.255.0/24 maxlen: 24
212.192.9.0/24 maxlen: 24
192.124.180.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:30:cb:b5:90:4e:26:e7:75:b0:0c:51:9b:c6:04:7c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 30 04:34:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=662793281c745fada4d629b7c887a9f5024522c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:79:3b:b4:36:3b:24:a3:66:0b:59:f2:a4:35:
4a:6b:66:89:8e:4c:ae:bf:94:fa:e9:ba:1f:4e:bc:
27:c7:bb:96:6a:70:fa:4d:d3:ed:18:79:9d:22:5c:
17:78:2f:5b:45:41:64:46:e3:72:19:2e:3b:16:17:
2d:3f:6e:4d:19:64:b9:db:41:0e:fc:30:a0:3e:15:
e7:00:34:93:00:6a:7b:db:1d:ed:ba:24:5a:61:2d:
88:3c:83:51:c8:02:af:8b:b1:88:d0:7e:ba:92:fc:
38:01:8b:78:43:32:a7:8f:33:e6:0a:f4:26:db:b8:
f7:a6:b6:b2:24:08:0d:50:08:74:44:eb:99:52:af:
b6:73:ff:53:60:a4:34:e3:36:99:c6:5d:32:2b:b9:
79:2a:25:08:97:96:8d:9c:17:2f:25:08:cb:70:b5:
8b:9b:cc:b9:cc:9f:b1:6d:da:e5:e1:60:f9:a5:b9:
97:a4:58:04:4a:e1:1e:64:ae:71:e6:26:9d:cc:41:
ce:2c:a3:80:c2:7f:0a:eb:7a:cf:05:86:f4:52:6d:
05:4f:ad:da:a4:ea:a6:2f:c5:d2:0a:13:eb:0e:58:
00:97:4c:f0:22:0b:21:e3:a2:8e:fa:1d:02:6e:3f:
69:be:5f:db:e6:08:ee:33:1b:5e:ef:2b:06:2a:bf:
79:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:27:93:28:1C:74:5F:AD:A4:D6:29:B7:C8:87:A9:F5:02:45:22:C4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZieTKBx0X62k1im3yIep9QJFIsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
192.124.180.0/24
193.124.90.0/24
193.124.200.0/24
194.87.255.0/24
212.192.9.0/24
Signature Algorithm: sha256WithRSAEncryption
83:ee:be:79:b6:8d:9e:e0:19:7b:9a:53:74:58:c1:5e:ba:57:
8f:75:da:c2:e2:c3:bb:97:64:f8:cf:31:62:f2:66:4f:b4:7e:
aa:67:48:8a:f1:eb:cb:60:98:6d:6c:a1:9e:26:53:0c:cb:1a:
88:5d:36:67:1d:63:5b:29:cc:12:62:e8:68:90:21:07:c4:e7:
1c:88:67:e2:21:6a:56:1b:00:c8:0b:49:9e:ce:80:2b:d9:16:
6a:0d:53:f9:cd:62:9f:c0:94:41:d7:69:b0:70:23:00:5f:e3:
b4:60:06:8b:37:93:0a:dd:04:ab:2a:17:fa:ce:d1:be:34:9d:
b3:8f:29:ff:94:78:34:44:e0:3c:30:da:dd:e7:84:0a:fe:ee:
e9:77:3c:fa:c1:77:12:29:a0:65:19:bb:35:ec:64:43:9f:7f:
7f:5d:58:04:7a:16:38:77:a7:75:85:73:8b:1f:18:e3:f1:bc:
b6:f2:f7:da:7a:d5:c9:ea:9b:d0:b2:89:ec:78:3f:e8:e3:47:
6a:a4:da:9f:05:34:5d:16:bd:eb:4e:d7:b9:a8:cc:bc:7e:1b:
7c:7b:c5:fe:88:dc:dc:4a:b9:75:3b:e4:33:e4:f5:8a:0b:a0:
24:9b:a9:14:ea:f7:2d:b6:fc:72:b2:f8:2b:ce:5a:ca:26:45:
3e:b8:66:8b
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYcwy7WQTibndbAMUZvGBHzSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMzMwMDQzNDI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjI3OTMyODFjNzQ1ZmFkYTRkNjI5YjdjODg3YTlmNTAyNDUyMmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi3k7tDY7JKNmC1nypDVKa2aJjkyu
v5T66bofTrwnx7uWanD6TdPtGHmdIlwXeC9bRUFkRuNyGS47FhctP25NGWS520EO
/DCgPhXnADSTAGp72x3tuiRaYS2IPINRyAKvi7GI0H66kvw4AYt4QzKnjzPmCvQm
27j3prayJAgNUAh0ROuZUq+2c/9TYKQ04zaZxl0yK7l5KiUIl5aNnBcvJQjLcLWL
m8y5zJ+xbdrl4WD5pbmXpFgESuEeZK5x5iadzEHOLKOAwn8K63rPBYb0Um0FT63a
pOqmL8XSChPrDlgAl0zwIgsh46KO+h0Cbj9pvl/b5gjuMxte7ysGKr95zQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFGYnkygcdF+tpNYpt8iHqfUCRSLEMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvWmllVEtCeDBYNjJrMWltM3lJZXA5UUpGSXNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAPkziAwQA
wHy0AwQAwXxaAwQAwXzIAwQAwlf/AwQA1MAJMA0GCSqGSIb3DQEBCwUAA4IBAQCD
7r55to2e4Bl7mlN0WMFeulePddrC4sO7l2T4zzFi8mZPtH6qZ0iK8evLYJhtbKGe
JlMMyxqIXTZnHWNbKcwSYuhokCEHxOcciGfiIWpWGwDIC0mezoAr2RZqDVP5zWKf
wJRB12mwcCMAX+O0YAaLN5MK3QSrKhf6ztG+NJ2zjyn/lHg0ROA8MNrd54QK/u7p
dzz6wXcSKaBlGbs17GRDn39/XVgEehY4d6d1hXOLHxjj8by28vfaetXJ6pvQsons
eD/o40dqpNqfBTRdFr3rTte5qMy8fht8e8X+iNzcSrl1O+Qz5PWKC6Akm6kU6vct
tvxysvgrzlrKJkU+uGaL
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:00 2023 by rpki-client on console-ams.rpki-client.org