Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/09012f-b4f6-4df7-b562-010cf2dd40af/1/zrpZMENfAUAwTSIQ4aEswVER8lA.roa
File: zrpZMENfAUAwTSIQ4aEswVER8lA.roa (raw, json)
Hash identifier: cUtIN2nd+ZEj+egcLwkvTde+FVwIjAz1t/NomxRKwtU=
Subject key identifier: CE:BA:59:30:43:5F:01:40:30:4D:22:10:E1:A1:2C:C1:51:11:F2:50
Certificate issuer: /CN=1778cfc09a363a73cc8dda362a2c9e8223d7dad6
Certificate serial: 0188E30F06881C13277DCA3C5957A1C12F90
Authority key identifier: 17:78:CF:C0:9A:36:3A:73:CC:8D:DA:36:2A:2C:9E:82:23:D7:DA:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3jPwJo2OnPMjdo2KiyegiPX2tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/09012f-b4f6-4df7-b562-010cf2dd40af/1/zrpZMENfAUAwTSIQ4aEswVER8lA.roa
Signing time: Thu 22 Jun 2023 12:23:12 +0000
ROA not before: Thu 22 Jun 2023 12:23:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60664
IP address blocks: 157.97.76.0/23 maxlen: 23
157.97.78.0/23 maxlen: 23
153.92.160.0/24 maxlen: 24
153.92.162.0/24 maxlen: 24
153.92.161.0/24 maxlen: 24
153.92.164.0/24 maxlen: 24
153.92.163.0/24 maxlen: 24
153.92.165.0/24 maxlen: 24
153.92.166.0/24 maxlen: 24
153.92.167.0/24 maxlen: 24
153.92.169.0/24 maxlen: 24
153.92.168.0/24 maxlen: 24
153.92.170.0/24 maxlen: 24
153.92.172.0/24 maxlen: 24
153.92.171.0/24 maxlen: 24
153.92.175.0/24 maxlen: 24
153.92.174.0/24 maxlen: 24
153.92.173.0/24 maxlen: 24
157.180.192.0/24 maxlen: 24
157.180.194.0/24 maxlen: 24
157.180.193.0/24 maxlen: 24
157.180.195.0/24 maxlen: 24
157.180.197.0/24 maxlen: 24
157.180.196.0/24 maxlen: 24
157.180.196.0/23 maxlen: 23
157.180.198.0/23 maxlen: 23
157.180.198.0/24 maxlen: 24
157.180.199.0/24 maxlen: 24
145.14.130.0/24 maxlen: 24
153.92.124.0/24 maxlen: 24
158.220.64.0/21 maxlen: 24
153.92.64.0/24 maxlen: 24
153.92.66.0/24 maxlen: 24
153.92.65.0/24 maxlen: 24
153.92.68.0/24 maxlen: 24
153.92.67.0/24 maxlen: 24
153.92.70.0/24 maxlen: 24
153.92.69.0/24 maxlen: 24
153.92.71.0/24 maxlen: 24
147.75.144.0/20 maxlen: 24
185.74.64.0/24 maxlen: 24
185.74.64.0/23 maxlen: 23
185.74.65.0/24 maxlen: 24
185.74.67.0/24 maxlen: 24
185.74.66.0/23 maxlen: 23
185.74.66.0/24 maxlen: 24
185.27.181.0/24 maxlen: 24
185.27.183.0/24 maxlen: 24
185.27.182.0/23 maxlen: 23
185.27.182.0/24 maxlen: 24
185.27.180.0/24 maxlen: 24
185.27.180.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e3:0f:06:88:1c:13:27:7d:ca:3c:59:57:a1:c1:2f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1778cfc09a363a73cc8dda362a2c9e8223d7dad6
Validity
Not Before: Jun 22 12:23:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ceba5930435f0140304d2210e1a12cc15111f250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f3:cf:3a:c8:83:76:81:7c:7d:ee:6f:dc:66:
f3:ab:ac:ce:73:85:b1:82:f4:b2:3b:b5:7d:a9:d1:
42:aa:71:0f:e8:e7:86:61:6d:ba:c5:7e:69:9d:37:
a7:a3:ec:f6:08:d1:7e:e8:0b:f2:82:f7:a4:8b:49:
34:ad:87:c8:ef:86:a1:eb:7a:e0:10:13:e3:78:b0:
d3:10:da:3c:da:51:ec:ce:79:4c:0a:dc:5b:f3:00:
c8:8f:59:ca:13:6f:9b:b2:d8:7e:e5:d5:f6:25:b5:
c8:3b:6d:c7:04:9b:fd:ea:b7:87:ad:5d:41:ad:a4:
65:34:12:4f:72:7c:c7:51:b3:1e:14:81:96:6e:16:
f7:24:94:00:ce:7c:4d:d9:4e:8f:10:83:cc:90:9b:
bf:fc:b5:59:8f:8f:62:8b:6b:58:71:f0:6a:74:16:
d6:a2:64:ae:fd:81:62:6a:06:4c:98:56:b1:99:6b:
c6:f5:21:0a:81:20:cd:48:78:b1:42:e3:ae:0e:4a:
81:30:de:bf:b2:32:dc:a0:a7:52:f5:00:bf:7a:98:
19:0d:44:8b:96:53:47:9b:ae:c7:07:dc:65:87:a5:
da:3d:8d:af:17:a6:b8:e1:89:5c:3f:a4:75:de:b0:
94:26:8d:23:41:a6:35:35:61:b8:fc:16:d0:19:e0:
18:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:BA:59:30:43:5F:01:40:30:4D:22:10:E1:A1:2C:C1:51:11:F2:50
X509v3 Authority Key Identifier:
keyid:17:78:CF:C0:9A:36:3A:73:CC:8D:DA:36:2A:2C:9E:82:23:D7:DA:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3jPwJo2OnPMjdo2KiyegiPX2tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/09012f-b4f6-4df7-b562-010cf2dd40af/1/zrpZMENfAUAwTSIQ4aEswVER8lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/09012f-b4f6-4df7-b562-010cf2dd40af/1/F3jPwJo2OnPMjdo2KiyegiPX2tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.14.130.0/24
147.75.144.0/20
153.92.64.0/21
153.92.124.0/24
153.92.160.0/20
157.97.76.0/22
157.180.192.0/21
158.220.64.0/21
185.27.180.0/22
185.74.64.0/22
Signature Algorithm: sha256WithRSAEncryption
46:02:e3:d5:4c:52:29:fd:93:11:71:ac:87:27:fa:6e:cb:be:
c3:6c:17:51:e5:61:a4:bd:a1:3b:39:f1:63:00:3c:a2:b9:66:
cd:25:c2:bd:fb:dc:2c:f2:6b:cf:32:41:73:92:2c:b7:82:79:
4f:3a:09:a3:1d:76:05:b8:3f:be:44:b2:71:8f:80:45:0f:50:
35:c3:36:62:b2:52:c9:dc:38:17:f1:f2:dc:95:ba:34:32:4a:
0b:ec:30:11:99:96:a2:75:76:61:cf:79:ea:01:d6:ea:c6:ef:
d8:22:70:90:b2:07:8c:3c:8c:ee:e1:a9:ce:38:4d:73:67:e2:
56:72:c9:9a:84:03:02:e8:06:a1:11:16:ad:f6:71:55:d1:11:
d3:f4:53:b9:45:5e:f4:a0:2b:95:85:6f:32:af:6a:ec:0f:5f:
dd:9e:ca:22:06:d3:ce:7a:fa:8f:3c:d8:4d:10:2d:9d:0e:70:
fc:86:af:73:27:a0:d5:2c:73:7d:35:4f:78:e9:ac:a6:16:3f:
18:e8:01:06:2d:6b:2a:b3:76:e6:8a:e9:c5:bf:ab:5f:76:97:
0f:db:7e:b2:9c:d9:ae:cf:63:18:65:47:d5:b8:c4:f1:c2:67:
82:02:9a:a2:94:e1:16:d0:89:1f:8f:48:3e:64:78:c4:37:e9:
ab:81:a6:7b
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgISAYjjDwaIHBMnfco8WVehwS+QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NzhjZmMwOWEzNjNhNzNjYzhkZGEzNjJhMmM5ZTgyMjNk
N2RhZDYwHhcNMjMwNjIyMTIyMzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWJhNTkzMDQzNWYwMTQwMzA0ZDIyMTBlMWExMmNjMTUxMTFmMjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfPPOsiDdoF8fe5v3Gbzq6zOc4Wx
gvSyO7V9qdFCqnEP6OeGYW26xX5pnTeno+z2CNF+6Avygveki0k0rYfI74ah63rg
EBPjeLDTENo82lHsznlMCtxb8wDIj1nKE2+bsth+5dX2JbXIO23HBJv96reHrV1B
raRlNBJPcnzHUbMeFIGWbhb3JJQAznxN2U6PEIPMkJu//LVZj49ii2tYcfBqdBbW
omSu/YFiagZMmFaxmWvG9SEKgSDNSHixQuOuDkqBMN6/sjLcoKdS9QC/epgZDUSL
llNHm67HB9xlh6XaPY2vF6a44YlcP6R13rCUJo0jQaY1NWG4/BbQGeAYGwIDAQAB
o4ICPzCCAjswHQYDVR0OBBYEFM66WTBDXwFAME0iEOGhLMFREfJQMB8GA1UdIwQY
MBaAFBd4z8CaNjpzzI3aNiosnoIj19rWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjNqUHdKbzJPblBNamRvMktpeWVnaVBYMnRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8wOTAxMmYtYjRmNi00ZGY3LWI1NjIt
MDEwY2YyZGQ0MGFmLzEvenJwWk1FTmZBVUF3VFNJUTRhRXN3VkVSOGxBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy8wOTAxMmYtYjRmNi00ZGY3LWI1NjItMDEwY2YyZGQ0MGFm
LzEvRjNqUHdKbzJPblBNamRvMktpeWVnaVBYMnRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQAkQ6CAwQE
k0uQAwQDmVxAAwQAmVx8AwQEmVygAwQCnWFMAwQDnbTAAwQDntxAAwQCuRu0AwQC
uUpAMA0GCSqGSIb3DQEBCwUAA4IBAQBGAuPVTFIp/ZMRcayHJ/puy77DbBdR5WGk
vaE7OfFjADyiuWbNJcK9+9ws8mvPMkFzkiy3gnlPOgmjHXYFuD++RLJxj4BFD1A1
wzZislLJ3DgX8fLclbo0MkoL7DARmZaidXZhz3nqAdbqxu/YInCQsgeMPIzu4anO
OE1zZ+JWcsmahAMC6AahERat9nFV0RHT9FO5RV70oCuVhW8yr2rsD1/dnsoiBtPO
evqPPNhNEC2dDnD8hq9zJ6DVLHN9NU946aymFj8Y6AEGLWsqs3bmiunFv6tfdpcP
236ynNmuz2MYZUfVuMTxwmeCApqilOEW0Ikfj0g+ZHjEN+mrgaZ7
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:17 2024 by rpki-client on console-ams.rpki-client.org