Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/zgJogtTQR9K60D37OwsLPSKQfNw.roa
File: zgJogtTQR9K60D37OwsLPSKQfNw.roa (raw, json)
Hash identifier: NNzO1YQX9w6ZlcXJLV1UVGF8bqdFD08dCQTU7BcrZr4=
Subject key identifier: CE:02:68:82:D4:D0:47:D2:BA:D0:3D:FB:3B:0B:0B:3D:22:90:7C:DC
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018FE861168AC4DBA7AFFA79217629FEE8B3
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/zgJogtTQR9K60D37OwsLPSKQfNw.roa
Signing time: Wed 05 Jun 2024 12:30:27 +0000
ROA not before: Wed 05 Jun 2024 12:30:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214788
IP address blocks: 85.120.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:61:16:8a:c4:db:a7:af:fa:79:21:76:29:fe:e8:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jun 5 12:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce026882d4d047d2bad03dfb3b0b0b3d22907cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5d:bf:66:76:58:bd:05:9b:6c:5c:74:ef:71:
70:d5:c2:9a:65:33:9f:0b:d5:df:c5:bb:e2:be:d6:
ce:ed:00:ab:e5:5d:ee:17:da:b0:a3:ef:b6:7a:8e:
95:66:37:fb:47:8c:bf:4c:a2:c5:fb:db:e7:cc:d8:
01:a0:9d:de:7b:51:97:27:fe:05:58:b8:2e:18:8e:
a2:34:d5:dd:49:32:8a:0d:9c:8f:2c:eb:de:8f:26:
16:0f:2d:22:f4:c1:10:a5:49:ed:10:d9:85:d8:dd:
dd:f2:54:be:4b:16:42:b5:36:ea:0c:3e:31:01:ea:
ef:c1:26:41:20:06:d6:20:03:16:a9:3b:38:1f:a7:
b5:51:e9:7e:31:e5:d8:53:d1:59:b8:1f:a8:2a:1f:
7e:6b:ce:4b:18:0c:4f:66:c4:a0:ce:08:db:c2:36:
51:31:42:18:f0:94:e2:5f:73:93:83:97:79:62:8a:
44:26:b9:ff:07:1a:e3:05:31:10:8c:04:31:32:1a:
43:de:17:05:4b:ac:fb:da:71:58:91:fe:65:e5:67:
e5:ee:a3:15:b6:83:8b:45:ce:bb:21:ad:fc:37:fd:
e9:38:5f:05:f9:1a:c3:0d:54:7b:a2:14:b5:dd:9a:
12:e9:81:59:3c:e2:78:84:ce:e4:ba:b0:c6:b3:e9:
eb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:02:68:82:D4:D0:47:D2:BA:D0:3D:FB:3B:0B:0B:3D:22:90:7C:DC
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/zgJogtTQR9K60D37OwsLPSKQfNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.14.0/24
Signature Algorithm: sha256WithRSAEncryption
84:3e:07:24:37:fa:e8:1e:35:2b:ff:48:af:a6:35:cd:f8:ee:
fc:71:3a:36:f1:77:e6:67:c2:35:41:79:6a:2f:02:23:88:01:
ef:ad:0b:60:fb:d2:4a:53:e8:b9:1b:51:a3:44:58:56:14:87:
e1:be:b4:20:3a:48:b7:90:7d:b6:c7:b3:8a:5b:e7:99:fa:3c:
b0:d0:82:7f:3f:a9:47:37:64:97:2d:d7:23:7e:eb:42:9b:11:
18:f9:2e:00:9b:c4:93:b3:18:ae:44:06:62:22:f1:87:e4:ec:
ab:20:12:20:b5:d3:ea:dc:38:3b:76:fd:3e:58:ad:b7:38:db:
13:c4:c4:9d:2a:c3:a9:06:0b:4c:08:68:6d:d8:b6:ed:e2:c0:
87:f5:60:91:3e:61:89:89:00:76:1f:c5:48:11:ef:20:96:2f:
bb:3f:7c:e5:fb:c7:c1:a9:29:f6:4e:4c:0f:2a:66:1d:ad:1f:
c5:dc:94:2d:e3:b4:b3:9d:9d:ac:af:30:0c:a6:ca:51:88:c0:
a6:19:4b:3c:45:e1:02:ac:ff:c9:6a:6e:a6:73:d9:e4:05:b8:
db:d2:80:f6:75:ce:25:18:a4:26:9e:99:9c:25:45:42:ed:bd:
2f:5a:a2:0f:1f:4a:b0:02:a8:22:8c:0e:41:6f:09:84:dd:74:
30:37:af:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY/oYRaKxNunr/p5IXYp/uizMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjQwNjA1MTIzMDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTAyNjg4MmQ0ZDA0N2QyYmFkMDNkZmIzYjBiMGIzZDIyOTA3Y2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV2/ZnZYvQWbbFx073Fw1cKaZTOf
C9XfxbvivtbO7QCr5V3uF9qwo++2eo6VZjf7R4y/TKLF+9vnzNgBoJ3ee1GXJ/4F
WLguGI6iNNXdSTKKDZyPLOvejyYWDy0i9MEQpUntENmF2N3d8lS+SxZCtTbqDD4x
AervwSZBIAbWIAMWqTs4H6e1Uel+MeXYU9FZuB+oKh9+a85LGAxPZsSgzgjbwjZR
MUIY8JTiX3OTg5d5YopEJrn/BxrjBTEQjAQxMhpD3hcFS6z72nFYkf5l5Wfl7qMV
toOLRc67Ia38N/3pOF8F+RrDDVR7ohS13ZoS6YFZPOJ4hM7kurDGs+nrwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM4CaILU0EfSutA9+zsLCz0ikHzcMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvemdKb2d0VFFSOUs2MEQzN093c0xQU0tRZk53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVXgOMA0G
CSqGSIb3DQEBCwUAA4IBAQCEPgckN/roHjUr/0ivpjXN+O78cTo28XfmZ8I1QXlq
LwIjiAHvrQtg+9JKU+i5G1GjRFhWFIfhvrQgOki3kH22x7OKW+eZ+jyw0IJ/P6lH
N2SXLdcjfutCmxEY+S4Am8STsxiuRAZiIvGH5OyrIBIgtdPq3Dg7dv0+WK23ONsT
xMSdKsOpBgtMCGht2Lbt4sCH9WCRPmGJiQB2H8VIEe8gli+7P3zl+8fBqSn2TkwP
KmYdrR/F3JQt47SznZ2srzAMpspRiMCmGUs8ReECrP/Jam6mc9nkBbjb0oD2dc4l
GKQmnpmcJUVC7b0vWqIPH0qwAqgijA5BbwmE3XQwN6+B
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:06 2025 by rpki-client