Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/9KZLZTMxXUZ5J1op5uKwHHoSHUc.roa
File: 9KZLZTMxXUZ5J1op5uKwHHoSHUc.roa (raw, json)
Hash identifier: nbNsBizpaE0tfZUoRsSc7dPgi56nA/mdgpHkFAHSmsM=
Subject key identifier: F4:A6:4B:65:33:31:5D:46:79:27:5A:29:E6:E2:B0:1C:7A:12:1D:47
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01883DFC4C0CAC878B7208CE86888503AD19
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/9KZLZTMxXUZ5J1op5uKwHHoSHUc.roa
Signing time: Sun 21 May 2023 11:05:24 +0000
ROA not before: Sun 21 May 2023 11:05:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59441
IP address blocks: 62.60.128.0/21 maxlen: 24
213.176.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 12:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:3d:fc:4c:0c:ac:87:8b:72:08:ce:86:88:85:03:ad:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: May 21 11:05:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4a64b6533315d4679275a29e6e2b01c7a121d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5f:2f:21:c9:a2:8f:b9:76:22:ad:88:77:91:
0d:ff:f2:c8:a1:a9:50:22:ab:e0:68:ec:83:68:f5:
cd:05:64:7b:3e:9c:17:e1:a5:6d:af:c3:13:b3:c9:
10:97:82:56:09:cd:ea:fa:d9:64:40:8b:46:ee:18:
97:10:5d:fa:61:bf:d8:4a:c1:43:18:e9:98:62:83:
4a:af:b8:a4:f0:29:80:eb:aa:85:06:bd:3e:4d:11:
7e:d4:60:a1:17:ca:21:00:a4:ff:77:d6:ef:21:ad:
7a:c1:ec:2f:de:48:16:8d:8d:8b:a8:da:cd:2d:d8:
ae:30:e4:8d:c7:a2:e4:01:99:9c:8e:f2:aa:4a:cd:
43:3b:77:54:b0:84:91:62:b1:78:d2:4a:64:39:79:
cc:e3:02:f3:ca:f8:5e:30:1f:c8:16:5e:ed:78:a0:
06:02:a9:ff:1c:cf:db:f2:fc:25:11:82:af:dc:76:
4f:db:98:8b:2e:72:ea:8d:55:0d:71:74:07:ad:0e:
3e:e9:4b:63:2a:a9:7f:7f:9e:a1:4f:28:22:7c:10:
a5:bc:dc:75:f4:1e:e8:f4:72:92:c3:d8:d1:9d:67:
f3:49:99:c7:a7:29:6c:34:56:51:7b:31:60:09:fd:
fd:5c:47:56:b7:96:ee:90:50:a8:0c:63:dd:1a:60:
9f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A6:4B:65:33:31:5D:46:79:27:5A:29:E6:E2:B0:1C:7A:12:1D:47
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/9KZLZTMxXUZ5J1op5uKwHHoSHUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.128.0/21
213.176.28.0/22
Signature Algorithm: sha256WithRSAEncryption
63:32:3d:59:a0:61:10:ee:13:a6:93:6e:af:59:76:29:7b:34:
5b:9f:05:0f:06:a0:cf:b9:b6:75:cc:33:e9:7f:ed:56:12:a4:
a3:48:7f:90:13:b8:ba:e0:c2:5d:b6:3b:8d:d1:23:9b:43:6b:
b3:58:9c:49:be:f4:a3:fe:82:9d:a3:7b:a3:90:2e:7d:04:1e:
4b:67:fc:92:70:e2:6b:55:93:ea:2e:72:e6:0d:e8:03:ed:39:
71:ca:11:c1:08:47:1c:ca:f0:6a:e6:0b:d7:2f:c1:dd:45:b3:
4b:56:0f:29:67:dc:3b:25:2c:9d:f5:a7:6d:d2:31:5c:38:93:
64:5a:5b:82:a5:d5:15:03:75:c9:ac:a4:b3:89:85:c3:cd:ea:
8b:75:31:b0:a8:c1:14:20:b8:d5:f6:98:06:12:4a:23:53:7e:
db:dd:cc:54:47:c2:8b:89:4a:6f:8e:47:2f:11:d2:1b:9b:b6:
24:4b:29:10:f2:05:b4:76:1b:f3:e8:b0:c9:e2:34:65:62:b4:
68:3b:e5:d2:ea:96:78:ca:5f:44:34:cb:b0:17:3d:da:c3:12:
99:70:f7:60:43:16:ef:83:f4:45:e2:9f:73:5e:02:79:92:3c:
bf:bd:00:3d:92:9f:f2:1f:1a:32:44:50:c9:7f:9e:be:1e:5b:
89:9f:e7:c1
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYg9/EwMrIeLcgjOhoiFA60ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjMwNTIxMTEwNTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNGE2NGI2NTMzMzE1ZDQ2NzkyNzVhMjllNmUyYjAxYzdhMTIxZDQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr18vIcmij7l2Iq2Id5EN//LIoalQ
IqvgaOyDaPXNBWR7PpwX4aVtr8MTs8kQl4JWCc3q+tlkQItG7hiXEF36Yb/YSsFD
GOmYYoNKr7ik8CmA66qFBr0+TRF+1GChF8ohAKT/d9bvIa16wewv3kgWjY2LqNrN
LdiuMOSNx6LkAZmcjvKqSs1DO3dUsISRYrF40kpkOXnM4wLzyvheMB/IFl7teKAG
Aqn/HM/b8vwlEYKv3HZP25iLLnLqjVUNcXQHrQ4+6UtjKql/f56hTygifBClvNx1
9B7o9HKSw9jRnWfzSZnHpylsNFZRezFgCf39XEdWt5bukFCoDGPdGmCf6QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFPSmS2UzMV1GeSdaKebisBx6Eh1HMB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvOUtaTFpUTXhYVVo1SjFvcDV1S3dISG9TSFVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDPjyAAwQC
1bAcMA0GCSqGSIb3DQEBCwUAA4IBAQBjMj1ZoGEQ7hOmk26vWXYpezRbnwUPBqDP
ubZ1zDPpf+1WEqSjSH+QE7i64MJdtjuN0SObQ2uzWJxJvvSj/oKdo3ujkC59BB5L
Z/yScOJrVZPqLnLmDegD7TlxyhHBCEccyvBq5gvXL8HdRbNLVg8pZ9w7JSyd9adt
0jFcOJNkWluCpdUVA3XJrKSziYXDzeqLdTGwqMEUILjV9pgGEkojU37b3cxUR8KL
iUpvjkcvEdIbm7YkSykQ8gW0dhvz6LDJ4jRlYrRoO+XS6pZ4yl9ENMuwFz3awxKZ
cPdgQxbvg/RF4p9zXgJ5kjy/vQA9kp/yHxoyRFDJf56+HluJn+fB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org