Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/zbBDJMF_mmZ5ae8FbDTHH_Mhdh0.roa
File: zbBDJMF_mmZ5ae8FbDTHH_Mhdh0.roa (raw, json)
Hash identifier: Reflz5P1B1BGljlJvEt0ocR4HUwuB21fMXVGJ60IbVI=
Subject key identifier: CD:B0:43:24:C1:7F:9A:66:79:69:EF:05:6C:34:C7:1F:F3:21:76:1D
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018D6B8ECA7E6EB9FC085909DA59F68558DC
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/zbBDJMF_mmZ5ae8FbDTHH_Mhdh0.roa
Signing time: Fri 02 Feb 2024 20:42:16 +0000
ROA not before: Fri 02 Feb 2024 20:42:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12302
IP address blocks: 80.96.134.0/23 maxlen: 23
81.181.32.0/21 maxlen: 21
81.181.40.0/22 maxlen: 22
81.181.45.0/24 maxlen: 24
81.181.46.0/23 maxlen: 23
193.226.3.0/24 maxlen: 24
193.226.30.0/24 maxlen: 24
193.226.42.0/23 maxlen: 23
193.226.47.0/24 maxlen: 24
193.226.58.0/24 maxlen: 24
193.226.83.0/24 maxlen: 24
193.226.100.0/24 maxlen: 24
193.226.105.0/24 maxlen: 24
193.230.129.0/24 maxlen: 24
193.230.174.0/24 maxlen: 24
193.230.177.0/24 maxlen: 24
193.230.193.0/24 maxlen: 24
193.230.202.0/24 maxlen: 24
193.230.203.0/24 maxlen: 24
193.230.240.0/24 maxlen: 24
193.230.247.0/24 maxlen: 24
193.231.82.0/24 maxlen: 24
193.231.120.0/24 maxlen: 24
193.231.121.0/24 maxlen: 24
193.231.126.0/24 maxlen: 24
193.231.180.0/22 maxlen: 24
193.231.208.0/20 maxlen: 24
193.231.255.0/24 maxlen: 24
194.102.87.0/24 maxlen: 24
194.102.90.0/24 maxlen: 24
217.156.10.0/24 maxlen: 24
217.156.34.0/24 maxlen: 24
217.156.43.0/24 maxlen: 24
217.156.63.0/24 maxlen: 24
217.156.73.0/24 maxlen: 24
217.156.98.0/24 maxlen: 24
217.156.110.0/24 maxlen: 24
217.156.116.0/24 maxlen: 24
217.156.117.0/24 maxlen: 24
217.156.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 20:51:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6b:8e:ca:7e:6e:b9:fc:08:59:09:da:59:f6:85:58:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Feb 2 20:42:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cdb04324c17f9a667969ef056c34c71ff321761d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:30:14:a3:de:43:09:6f:72:22:b8:d3:40:48:
5b:5f:32:95:45:58:0d:49:95:4f:a5:6b:33:19:a3:
ae:81:5a:c8:82:9d:ff:23:15:61:b2:30:38:c6:26:
56:c0:ad:23:73:4d:01:2c:09:1a:48:65:9d:f1:8d:
fa:13:31:cc:40:ed:1b:af:5f:c3:44:48:f2:88:18:
2a:8a:ab:fa:35:7c:0e:5b:66:59:24:54:31:49:a9:
1c:e8:95:77:b0:6d:2e:f0:11:9f:45:3f:41:a4:20:
d5:f0:ac:17:75:85:d3:cb:f1:0d:12:0f:dd:30:41:
4c:5e:5b:94:93:e7:cd:df:b7:a8:2d:c5:79:a3:bc:
59:f3:4c:78:41:df:d0:6b:97:31:fa:73:0e:2c:34:
f6:c7:ca:d8:2e:d4:62:4c:62:77:7b:ce:dd:94:41:
3f:5b:7a:a3:3c:90:ac:89:f5:4a:fe:79:98:37:c6:
e4:d4:68:da:74:4b:79:e8:5f:af:f0:8f:34:0c:e5:
97:a0:f6:4b:e9:46:56:ac:40:eb:89:f3:65:ca:14:
97:ce:70:f4:72:70:cd:9b:ba:ab:1b:a1:07:82:62:
8b:77:39:22:29:df:25:7c:c9:35:3d:ac:04:06:a1:
ad:0c:0d:5f:c6:b6:0b:ff:8f:51:7d:2b:36:d3:cc:
54:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B0:43:24:C1:7F:9A:66:79:69:EF:05:6C:34:C7:1F:F3:21:76:1D
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/zbBDJMF_mmZ5ae8FbDTHH_Mhdh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.134.0/23
81.181.32.0-81.181.43.255
81.181.45.0-81.181.47.255
193.226.3.0/24
193.226.30.0/24
193.226.42.0/23
193.226.47.0/24
193.226.58.0/24
193.226.83.0/24
193.226.100.0/24
193.226.105.0/24
193.230.129.0/24
193.230.174.0/24
193.230.177.0/24
193.230.193.0/24
193.230.202.0/23
193.230.240.0/24
193.230.247.0/24
193.231.82.0/24
193.231.120.0/23
193.231.126.0/24
193.231.180.0/22
193.231.208.0/20
193.231.255.0/24
194.102.87.0/24
194.102.90.0/24
217.156.10.0/24
217.156.34.0/24
217.156.43.0/24
217.156.63.0/24
217.156.73.0/24
217.156.98.0/24
217.156.110.0/24
217.156.116.0/23
217.156.120.0/24
Signature Algorithm: sha256WithRSAEncryption
01:ee:b9:2c:b2:49:e7:12:99:82:5e:7e:27:da:08:fa:a6:85:
24:7e:95:a3:b6:fd:6d:68:35:08:d5:e7:82:22:f1:27:ea:65:
85:5a:3e:45:88:66:09:60:16:e5:98:ef:7c:4a:61:41:e7:b2:
12:c0:66:89:bf:3d:4d:8e:36:4f:02:ce:63:bc:0d:f7:d1:d1:
6e:50:0c:e6:0c:76:00:4d:91:ef:bc:7c:5b:ae:a3:b8:6a:48:
d3:3d:21:ee:5a:53:8e:c0:ef:10:74:90:7e:a6:47:14:99:52:
ec:a2:54:37:2a:2a:13:8f:30:ed:f2:73:c9:73:21:29:f2:f8:
3e:3e:a3:0c:a9:67:0c:80:e3:7a:ba:4d:86:30:7d:2a:72:73:
4f:68:51:4a:fa:e8:77:ba:29:5c:d5:7b:1a:d9:ec:48:36:fa:
64:fb:c2:9c:ae:83:d9:0d:62:91:9a:26:50:7a:9d:33:30:76:
89:8c:e5:f2:34:b3:3e:04:7b:2a:a5:97:f1:1f:77:77:5e:9b:
8a:fb:9c:31:b5:85:52:83:e8:ac:84:43:10:4f:9d:d1:d9:05:
b7:2c:18:39:e4:a3:b5:be:cf:cc:20:f2:32:5f:f4:01:6e:d6:
b6:c7:05:c4:6b:68:03:13:b5:76:e6:f3:8a:d0:a7:3f:96:a5:
ea:67:6a:3d
-----BEGIN CERTIFICATE-----
MIIF3jCCBMagAwIBAgISAY1rjsp+brn8CFkJ2ln2hVjcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjQwMjAyMjA0MjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZGIwNDMyNGMxN2Y5YTY2Nzk2OWVmMDU2YzM0YzcxZmYzMjE3NjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgTAUo95DCW9yIrjTQEhbXzKVRVgN
SZVPpWszGaOugVrIgp3/IxVhsjA4xiZWwK0jc00BLAkaSGWd8Y36EzHMQO0br1/D
REjyiBgqiqv6NXwOW2ZZJFQxSakc6JV3sG0u8BGfRT9BpCDV8KwXdYXTy/ENEg/d
MEFMXluUk+fN37eoLcV5o7xZ80x4Qd/Qa5cx+nMOLDT2x8rYLtRiTGJ3e87dlEE/
W3qjPJCsifVK/nmYN8bk1GjadEt56F+v8I80DOWXoPZL6UZWrEDrifNlyhSXznD0
cnDNm7qrG6EHgmKLdzkiKd8lfMk1PawEBqGtDA1fxrYL/49RfSs208xU8wIDAQAB
o4IC6jCCAuYwHQYDVR0OBBYEFM2wQyTBf5pmeWnvBWw0xx/zIXYdMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvemJCREpNRl9tbVo1YWU4RmJEVEhIX01oZGgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH/BggrBgEFBQcBBwEB/wSB7zCB7DCB6QQCAAEwgeIDBAFQ
YIYwDAMEBVG1IAMEAlG1KDAMAwQAUbUtAwQEUbUgAwQAweIDAwQAweIeAwQBweIq
AwQAweIvAwQAweI6AwQAweJTAwQAweJkAwQAweJpAwQAweaBAwQAweauAwQAweax
AwQAwebBAwQBwebKAwQAwebwAwQAweb3AwQAwedSAwQBwed4AwQAwed+AwQCwee0
AwQEwefQAwQAwef/AwQAwmZXAwQAwmZaAwQA2ZwKAwQA2ZwiAwQA2ZwrAwQA2Zw/
AwQA2ZxJAwQA2ZxiAwQA2ZxuAwQB2Zx0AwQA2Zx4MA0GCSqGSIb3DQEBCwUAA4IB
AQAB7rkssknnEpmCXn4n2gj6poUkfpWjtv1taDUI1eeCIvEn6mWFWj5FiGYJYBbl
mO98SmFB57ISwGaJvz1NjjZPAs5jvA330dFuUAzmDHYATZHvvHxbrqO4akjTPSHu
WlOOwO8QdJB+pkcUmVLsolQ3KioTjzDt8nPJcyEp8vg+PqMMqWcMgON6uk2GMH0q
cnNPaFFK+uh3uilc1Xsa2exINvpk+8KcroPZDWKRmiZQep0zMHaJjOXyNLM+BHsq
pZfxH3d3XpuK+5wxtYVSg+ishEMQT53R2QW3LBg55KO1vs/MIPIyX/QBbta2xwXE
a2gDE7V25vOK0Kc/lqXqZ2o9
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:06 2024 by rpki-client on console-ams.rpki-client.org