Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/ZlitoJEmsG0ui_KqHRzRj1Th61Y.roa
File: ZlitoJEmsG0ui_KqHRzRj1Th61Y.roa (raw, json)
Hash identifier: Ms4MiFRYC60Yj5Mq9DL8ekYwUtuWORwehXhQDxqg9dI=
Subject key identifier: 66:58:AD:A0:91:26:B0:6D:2E:8B:F2:AA:1D:1C:D1:8F:54:E1:EB:56
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018CC795380C547B093F5EAC8AE91CF450F5
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/ZlitoJEmsG0ui_KqHRzRj1Th61Y.roa
Signing time: Tue 02 Jan 2024 00:31:34 +0000
ROA not before: Tue 02 Jan 2024 00:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210644
IP address blocks: 193.233.232.0/24 maxlen: 24
193.233.233.0/24 maxlen: 24
193.233.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Jan 2024 14:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:38:0c:54:7b:09:3f:5e:ac:8a:e9:1c:f4:50:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 2 00:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658ada09126b06d2e8bf2aa1d1cd18f54e1eb56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7f:3d:79:18:0c:75:6b:a5:d8:df:1e:9e:e2:
64:df:96:f2:a0:13:87:b0:07:2e:a5:25:47:a0:52:
8b:d9:e1:b7:42:b2:8a:51:0a:a5:ea:f9:2a:8b:59:
42:ed:d3:4e:7e:9f:58:b7:fa:60:4e:ca:e8:79:af:
50:b4:6b:44:2d:a7:61:ce:73:d4:c7:f8:e5:8d:e1:
53:0d:22:3b:9d:54:c8:fe:b7:99:47:db:50:03:70:
90:30:58:7e:9e:a4:05:7b:3d:57:91:29:65:2c:96:
60:12:5d:c0:c0:0f:cf:7d:8a:2f:ca:c6:7a:8e:72:
12:6d:f0:34:fd:31:50:fd:28:1a:1f:f8:e2:2a:c7:
51:d7:34:3b:88:10:99:43:03:df:d3:38:a8:1c:39:
49:a0:78:93:5b:a7:69:50:e1:f6:2f:a2:d5:0d:4b:
0a:17:0c:fc:77:4d:8b:18:58:ec:af:8c:91:4e:f4:
b7:74:7e:ca:c0:42:d3:3a:0c:cc:8b:e5:92:a1:f7:
b3:95:77:fe:19:7c:41:03:f3:73:73:1a:c9:11:c0:
06:18:db:b8:ea:cb:2e:09:8a:05:4f:74:7c:22:54:
f2:99:99:3a:6b:70:81:cc:46:98:b0:20:c0:3e:b8:
f1:95:7d:62:0f:a7:81:88:e4:25:13:62:2b:e4:06:
b4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:58:AD:A0:91:26:B0:6D:2E:8B:F2:AA:1D:1C:D1:8F:54:E1:EB:56
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/ZlitoJEmsG0ui_KqHRzRj1Th61Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.133.0/24
193.233.232.0/23
Signature Algorithm: sha256WithRSAEncryption
52:d4:70:d0:3f:96:1c:6a:e9:96:96:a0:6b:79:73:af:60:cd:
b1:29:79:64:bb:5f:11:05:be:77:64:e2:98:01:bb:36:21:ad:
a5:8f:be:c2:68:16:b4:e0:c2:be:78:04:5e:8c:16:0d:fa:dd:
a2:7e:07:b4:de:e8:46:ab:c7:34:ec:20:77:98:96:2a:58:7f:
99:03:f8:64:17:c5:3b:11:63:64:c0:b3:59:cd:56:3d:8f:d4:
38:3e:ac:ea:fe:7a:16:99:a5:4b:73:6f:64:bb:42:c2:6b:2d:
86:82:58:61:06:80:7b:d4:2a:74:80:50:c7:98:34:b2:f7:52:
62:27:15:cd:84:2f:9d:9e:f0:c5:c5:a9:a5:a4:a7:47:45:19:
cd:86:4f:c0:87:73:4c:17:b3:a8:30:27:5b:2c:4c:9e:11:7e:
22:39:84:d4:60:94:5e:2c:cb:6f:a2:77:08:d2:55:a9:70:03:
d6:e6:ed:e9:1a:b6:d1:c6:fb:6b:75:24:4f:c7:15:eb:ee:2f:
21:9f:a7:73:81:3c:83:8e:39:74:45:ed:6e:ee:4e:3a:b7:ef:
d1:ad:8c:41:fd:fd:99:19:ab:79:cf:6d:3b:26:3d:0c:f1:2b:
e2:3d:36:19:e4:fe:75:a5:46:32:5d:a2:ab:8c:75:7c:bc:f8:
50:7d:15:20
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzHlTgMVHsJP16siukc9FD1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjQwMTAyMDAzMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjU4YWRhMDkxMjZiMDZkMmU4YmYyYWExZDFjZDE4ZjU0ZTFlYjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAln89eRgMdWul2N8enuJk35byoBOH
sAcupSVHoFKL2eG3QrKKUQql6vkqi1lC7dNOfp9Yt/pgTsroea9QtGtELadhznPU
x/jljeFTDSI7nVTI/reZR9tQA3CQMFh+nqQFez1XkSllLJZgEl3AwA/PfYovysZ6
jnISbfA0/TFQ/SgaH/jiKsdR1zQ7iBCZQwPf0zioHDlJoHiTW6dpUOH2L6LVDUsK
Fwz8d02LGFjsr4yRTvS3dH7KwELTOgzMi+WSofezlXf+GXxBA/NzcxrJEcAGGNu4
6ssuCYoFT3R8IlTymZk6a3CBzEaYsCDAPrjxlX1iD6eBiOQlE2Ir5Aa04QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGZYraCRJrBtLovyqh0c0Y9U4etWMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvWmxpdG9KRW1zRzB1aV9LcUhSelJqMVRoNjFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwemFAwQB
wenoMA0GCSqGSIb3DQEBCwUAA4IBAQBS1HDQP5YcaumWlqBreXOvYM2xKXlku18R
Bb53ZOKYAbs2Ia2lj77CaBa04MK+eARejBYN+t2ifge03uhGq8c07CB3mJYqWH+Z
A/hkF8U7EWNkwLNZzVY9j9Q4Pqzq/noWmaVLc29ku0LCay2GglhhBoB71Cp0gFDH
mDSy91JiJxXNhC+dnvDFxamlpKdHRRnNhk/Ah3NMF7OoMCdbLEyeEX4iOYTUYJRe
LMtvoncI0lWpcAPW5u3pGrbRxvtrdSRPxxXr7i8hn6dzgTyDjjl0Re1u7k46t+/R
rYxB/f2ZGat5z207Jj0M8SviPTYZ5P51pUYyXaKrjHV8vPhQfRUg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org