Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/1-ZPs0t0uvFHUcMbeMcJ45MCUDuE.roa
File: 1-ZPs0t0uvFHUcMbeMcJ45MCUDuE.roa (raw, json)
Hash identifier: gkt1k1AJNahS79J90ZEeGzVwhL+FJ5QBkATEeRNP9Rs=
Subject key identifier: F9:93:EC:D2:DD:2E:BC:51:D4:70:C6:DE:31:C2:78:E4:C0:94:0E:E1
Certificate issuer: /CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Certificate serial: 01856FB124D92CB077DCC122E295C87FA569
Authority key identifier: 70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/1-ZPs0t0uvFHUcMbeMcJ45MCUDuE.roa
Signing time: Sun 01 Jan 2023 23:35:58 +0000
ROA not before: Sun 01 Jan 2023 23:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32181
IP address blocks: 193.203.28.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:24:d9:2c:b0:77:dc:c1:22:e2:95:c8:7f:a5:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Validity
Not Before: Jan 1 23:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f993ecd2dd2ebc51d470c6de31c278e4c0940ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6f:4e:2c:9a:ad:26:14:1c:33:23:18:c6:d9:
90:c8:57:b0:bc:02:9c:b0:ff:44:37:06:02:4c:79:
7c:a0:f0:e2:e7:56:0a:c0:51:6d:ae:8a:be:4c:bc:
0c:57:f4:b4:fa:e3:70:53:95:4b:7a:b5:eb:74:da:
a8:66:6a:d6:81:78:9e:09:ee:25:76:4e:02:2d:4e:
e4:4b:72:a4:82:71:25:32:87:e3:59:7a:6f:59:67:
6c:c7:85:06:60:8a:ec:bc:1a:ea:4f:d3:5e:19:a9:
26:81:77:18:03:cd:4d:46:87:9b:3c:b6:dd:62:a7:
8e:94:0c:87:8d:85:7c:64:49:53:2d:55:a8:5e:51:
af:b0:8b:59:0f:97:ad:be:80:3a:b3:4a:f3:d8:56:
4e:72:9b:0b:da:8f:87:73:07:3b:64:d2:e0:21:76:
2b:2b:96:dc:b2:85:fa:6b:68:ae:de:7f:e5:43:e4:
4c:d5:db:c5:4d:3e:43:71:a7:9b:db:97:55:1f:9c:
ce:ef:f8:5d:05:22:d9:79:f2:ad:63:24:0b:21:da:
94:7b:77:6f:5b:21:a5:0f:13:ac:38:a8:d0:d3:36:
d5:ae:c2:62:da:b0:e7:f3:a6:56:1f:e9:82:f7:d8:
44:61:55:92:44:2a:be:a9:0a:1a:0c:b5:da:0d:56:
c7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:93:EC:D2:DD:2E:BC:51:D4:70:C6:DE:31:C2:78:E4:C0:94:0E:E1
X509v3 Authority Key Identifier:
keyid:70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/1-ZPs0t0uvFHUcMbeMcJ45MCUDuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.28.0/22
Signature Algorithm: sha256WithRSAEncryption
42:cf:9b:d3:7a:f7:f4:a0:2f:0e:72:37:59:66:9b:00:b1:be:
f9:eb:0c:39:ed:84:15:8d:1e:fa:8f:6e:4e:95:4f:79:25:08:
e1:19:6d:0b:7b:0d:c5:2f:b1:70:02:f6:c6:95:6f:8c:6a:05:
23:c8:1c:3c:e2:f5:7d:cc:d1:ef:2e:e4:8d:73:04:61:4e:f4:
f3:0c:b5:13:3f:9c:02:5d:69:bb:09:df:a7:f9:ef:a9:44:10:
f3:5e:56:4e:97:eb:29:46:cb:2a:ad:04:e9:05:06:04:c5:e1:
41:01:db:77:b0:a9:00:90:f6:77:f6:11:a8:ea:de:8c:1b:42:
5d:28:be:ee:5e:4a:94:e7:81:b6:b6:e8:30:81:02:d8:48:f0:
a3:a3:1a:65:38:4c:46:1a:4b:1b:b2:5d:8c:74:d3:67:8c:d2:
40:f2:b0:11:c3:d5:1d:1a:2b:ae:0f:2e:35:5d:41:eb:e3:f7:
e1:f6:ca:e1:46:e0:62:e8:cf:75:ef:41:a5:ef:56:92:23:db:
63:0c:10:3f:66:4c:4c:86:2c:8c:51:49:85:e8:7e:39:54:29:
70:2f:97:30:c5:f7:d4:6e:e4:f9:7d:0f:4a:2b:1c:6f:6c:31:
18:61:56:0d:24:94:e0:a9:c9:5d:e2:b3:5d:18:35:56:0e:b3:
78:0b:5a:e1
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvsSTZLLB33MEi4pXIf6VpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwYjE5MGQ2Zjg5YTQzNGNjZTVjYjhjMGQ0YjM4YTE2Njlk
ZWZiNTkwHhcNMjMwMTAxMjMzNTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTkzZWNkMmRkMmViYzUxZDQ3MGM2ZGUzMWMyNzhlNGMwOTQwZWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl29OLJqtJhQcMyMYxtmQyFewvAKc
sP9ENwYCTHl8oPDi51YKwFFtroq+TLwMV/S0+uNwU5VLerXrdNqoZmrWgXieCe4l
dk4CLU7kS3KkgnElMofjWXpvWWdsx4UGYIrsvBrqT9NeGakmgXcYA81NRoebPLbd
YqeOlAyHjYV8ZElTLVWoXlGvsItZD5etvoA6s0rz2FZOcpsL2o+Hcwc7ZNLgIXYr
K5bcsoX6a2iu3n/lQ+RM1dvFTT5Dcaeb25dVH5zO7/hdBSLZefKtYyQLIdqUe3dv
WyGlDxOsOKjQ0zbVrsJi2rDn86ZWH+mC99hEYVWSRCq+qQoaDLXaDVbH/wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPmT7NLdLrxR1HDG3jHCeOTAlA7hMB8GA1UdIwQY
MBaAFHCxkNb4mkNMzly4wNSzihZp3vtZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0xHUTF2aWFRMHpPWExqQTFMT0tGbW5lLTFrLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yM2RjNjEtN2U5ZC00MGIzLTkxYjYt
NDZiZDdkNzk0ZmI2LzEvMS1aUHMwdDB1dkZIVWNNYmVNY0o0NU1DVUR1RS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMGQvMjNkYzYxLTdlOWQtNDBiMy05MWI2LTQ2YmQ3ZDc5NGZi
Ni8xL2NMR1ExdmlhUTB6T1hMakExTE9LRm1uZS0xay5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsHLHDAN
BgkqhkiG9w0BAQsFAAOCAQEAQs+b03r39KAvDnI3WWabALG++esMOe2EFY0e+o9u
TpVPeSUI4RltC3sNxS+xcAL2xpVvjGoFI8gcPOL1fczR7y7kjXMEYU708wy1Ez+c
Al1puwnfp/nvqUQQ815WTpfrKUbLKq0E6QUGBMXhQQHbd7CpAJD2d/YRqOrejBtC
XSi+7l5KlOeBtrboMIEC2Ejwo6MaZThMRhpLG7JdjHTTZ4zSQPKwEcPVHRorrg8u
NV1B6+P34fbK4UbgYujPde9Bpe9WkiPbYwwQP2ZMTIYsjFFJheh+OVQpcC+XMMX3
1G7k+X0PSiscb2wxGGFWDSSU4KnJXeKzXRg1Vg6zeAta4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:37 2024 by rpki-client on console-ams.rpki-client.org