Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/ZJQp3jx1nH4Wsp3Hmu9YQaRhGOk.roa
File: ZJQp3jx1nH4Wsp3Hmu9YQaRhGOk.roa (raw, json)
Hash identifier: QM/Sl4ln854HvyWT3ciAlzk5pGSXwM1HrPkl/XVGzzU=
Subject key identifier: 64:94:29:DE:3C:75:9C:7E:16:B2:9D:C7:9A:EF:58:41:A4:61:18:E9
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F02520DEAED5271739E0716353805BC
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/ZJQp3jx1nH4Wsp3Hmu9YQaRhGOk.roa
Signing time: Sun 01 Jan 2023 20:25:00 +0000
ROA not before: Sun 01 Jan 2023 20:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207485
IP address blocks: 159.148.50.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:52:0d:ea:ed:52:71:73:9e:07:16:35:38:05:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=649429de3c759c7e16b29dc79aef5841a46118e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:01:43:ce:37:5a:17:be:e1:78:1b:71:8d:c6:
44:ed:07:cd:31:80:cf:a7:af:70:e5:0c:e8:ee:ae:
6f:79:56:e9:75:ac:73:fb:9a:2b:14:8c:17:11:83:
b9:79:47:7c:2d:a1:27:da:1d:90:24:f8:bc:47:9c:
af:28:51:68:f4:cc:69:45:53:ad:3e:51:70:7d:b7:
b6:73:2c:5f:2d:6c:04:68:6a:e7:57:9b:e0:8a:46:
d5:81:27:7d:d7:e9:0a:6f:0f:03:5b:99:71:68:29:
e6:c2:13:9e:4e:53:4b:40:a2:53:93:10:bf:0d:53:
bc:6e:f7:9d:33:4a:29:4b:42:c8:31:68:e5:ec:59:
e2:04:0c:f2:38:e1:a9:19:31:49:21:7e:e6:ea:7e:
48:93:c0:bc:32:ae:50:be:81:c3:85:f8:b8:b5:7f:
49:d8:e9:1d:58:1c:73:e0:f1:46:ff:cc:bd:f5:b1:
c7:86:ad:67:84:08:92:e9:0a:9c:89:9e:61:01:d5:
6b:8e:bd:9d:de:cc:93:8c:a4:7d:9d:8e:d1:9c:b1:
12:e9:6e:40:97:fc:7c:94:56:83:6f:9a:48:9d:2a:
29:67:1a:77:f2:be:43:75:45:fa:b0:b9:ce:d0:a9:
49:7a:ab:7e:d6:c3:b5:56:1a:b1:cb:0d:e9:c7:d5:
79:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:94:29:DE:3C:75:9C:7E:16:B2:9D:C7:9A:EF:58:41:A4:61:18:E9
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/ZJQp3jx1nH4Wsp3Hmu9YQaRhGOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.50.0/24
Signature Algorithm: sha256WithRSAEncryption
80:6c:35:30:aa:90:56:6e:02:8d:5e:a3:95:e6:8c:a1:d1:39:
58:63:c8:f3:fe:e3:1a:af:5b:d1:21:5e:3c:8c:ac:51:3a:2a:
c6:5e:40:92:fb:03:80:7b:f8:b7:83:b8:f7:a0:23:3a:87:38:
9b:fc:3c:dd:b2:ad:03:85:fa:cb:36:1d:03:f7:57:d9:55:72:
97:e7:81:19:06:0d:c3:25:c6:81:6f:81:20:93:aa:3f:4f:6f:
55:bf:51:b9:d8:a5:c2:5a:7c:62:da:fa:ef:a3:b4:e6:49:09:
79:ff:7c:09:31:da:f3:8b:c7:21:bb:18:7b:24:74:e1:e3:1b:
12:76:7e:5f:d8:7e:91:28:a4:15:f6:91:98:be:e1:6e:d8:d1:
04:e6:47:2c:15:ea:77:e8:f1:19:f8:8c:72:ef:f4:01:7e:e4:
4d:43:00:51:84:6b:b6:92:b6:3b:5f:0f:84:06:64:e1:91:8d:
bd:2f:f8:c2:62:e6:f4:0f:96:33:45:0a:a6:e6:79:ae:60:8a:
be:c7:6a:9d:4a:72:1c:7a:26:bb:07:a4:80:51:95:77:6d:95:
be:77:e0:57:f5:86:26:0e:04:9f:8c:e7:76:d0:9f:e0:cc:27:
6e:5f:15:3a:fe:c5:ab:60:83:c1:cb:59:bd:a3:2e:8c:ec:da:
c1:9c:9e:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvAlIN6u1ScXOeBxY1OAW8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm
YzQxZWMwHhcNMjMwMTAxMjAyNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDk0MjlkZTNjNzU5YzdlMTZiMjlkYzc5YWVmNTg0MWE0NjExOGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgwFDzjdaF77heBtxjcZE7QfNMYDP
p69w5Qzo7q5veVbpdaxz+5orFIwXEYO5eUd8LaEn2h2QJPi8R5yvKFFo9MxpRVOt
PlFwfbe2cyxfLWwEaGrnV5vgikbVgSd91+kKbw8DW5lxaCnmwhOeTlNLQKJTkxC/
DVO8bvedM0opS0LIMWjl7FniBAzyOOGpGTFJIX7m6n5Ik8C8Mq5QvoHDhfi4tX9J
2OkdWBxz4PFG/8y99bHHhq1nhAiS6QqciZ5hAdVrjr2d3syTjKR9nY7RnLES6W5A
l/x8lFaDb5pInSopZxp38r5DdUX6sLnO0KlJeqt+1sO1Vhqxyw3px9V59QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGSUKd48dZx+FrKdx5rvWEGkYRjpMB8GA1UdIwQY
MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt
NTU1NGQ2ZTE2ODZmLzEvWkpRcDNqeDFuSDRXc3AzSG11OVlRYVJoR09rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm
LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAn5QyMA0G
CSqGSIb3DQEBCwUAA4IBAQCAbDUwqpBWbgKNXqOV5oyh0TlYY8jz/uMar1vRIV48
jKxROirGXkCS+wOAe/i3g7j3oCM6hzib/Dzdsq0DhfrLNh0D91fZVXKX54EZBg3D
JcaBb4Egk6o/T29Vv1G52KXCWnxi2vrvo7TmSQl5/3wJMdrzi8chuxh7JHTh4xsS
dn5f2H6RKKQV9pGYvuFu2NEE5kcsFep36PEZ+Ixy7/QBfuRNQwBRhGu2krY7Xw+E
BmThkY29L/jCYub0D5YzRQqm5nmuYIq+x2qdSnIceia7B6SAUZV3bZW+d+BX9YYm
DgSfjOd20J/gzCduXxU6/sWrYIPBy1m9oy6M7NrBnJ6b
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:48 2024 by rpki-client on console-ams.rpki-client.org