Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ZbQhHTL7VwPPO07ouCQUNRorDd0.roa
File: ZbQhHTL7VwPPO07ouCQUNRorDd0.roa (raw, json)
Hash identifier: CF1D7CRW4I1Sb1v1FNoUXMfT5USAQwhiefuahNSfmv8=
Subject key identifier: 65:B4:21:1D:32:FB:57:03:CF:3B:4E:E8:B8:24:14:35:1A:2B:0D:DD
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FD8DF04FD4EFF0580B0AA9C1373D8
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ZbQhHTL7VwPPO07ouCQUNRorDd0.roa
Signing time: Mon 02 Jan 2023 17:38:04 +0000
ROA not before: Mon 02 Jan 2023 17:38:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9332
IP address blocks: 185.227.71.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:d8:df:04:fd:4e:ff:05:80:b0:aa:9c:13:73:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65b4211d32fb5703cf3b4ee8b82414351a2b0ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:db:b1:47:f3:6a:e1:16:34:87:1e:6c:5b:84:
86:b8:32:e4:94:65:10:4f:f2:da:11:4b:d5:71:df:
0c:dc:45:e8:9c:3b:f3:fe:a2:ba:04:35:39:b3:9e:
ef:db:b7:06:58:d3:7d:6c:1b:c3:d9:9a:8d:95:b0:
34:4d:73:c1:c8:7b:07:04:20:ef:d3:11:f8:96:95:
e3:16:ff:37:d2:64:a2:82:be:7a:48:92:88:7e:b8:
39:74:dc:be:71:6f:4b:ae:64:0a:6d:5d:52:2e:9f:
a0:3b:57:3b:cb:c2:7d:5e:e3:54:c2:ff:90:6a:d5:
ef:39:24:e6:11:67:e6:c0:5d:c1:3d:33:20:aa:cc:
65:7b:a1:a4:73:b0:65:80:2e:2d:78:86:c6:1a:c5:
18:8a:f5:47:45:68:cc:4d:9d:af:1b:16:38:ab:a2:
b3:9c:b5:f8:04:83:7f:c6:a3:75:31:00:7c:28:28:
e3:fd:50:95:53:fa:3b:64:df:12:18:25:7e:55:e4:
e9:ff:d1:b3:a3:f3:63:87:36:c3:4f:86:74:7b:19:
8f:36:14:e2:a1:c7:9c:ef:a9:f2:aa:c0:a8:ce:75:
44:d1:9b:e9:59:7e:0f:c5:40:da:0d:35:23:43:d9:
70:69:49:75:4d:bd:23:59:03:ea:2d:a6:7e:b5:12:
31:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B4:21:1D:32:FB:57:03:CF:3B:4E:E8:B8:24:14:35:1A:2B:0D:DD
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ZbQhHTL7VwPPO07ouCQUNRorDd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.71.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:e0:6c:9b:41:b5:d2:89:4e:67:e3:08:8b:4d:b2:61:e1:ab:
50:47:4a:49:16:11:59:c0:d9:6e:12:2b:29:b5:8f:10:f5:9f:
74:5d:dc:63:9a:a7:6f:ae:dc:e5:a4:6a:f7:83:d0:3f:70:cf:
3d:a3:83:d9:c8:fa:db:e5:f4:d3:c6:96:e6:c6:71:c2:9d:41:
3c:e7:79:9b:e7:1c:c1:f2:55:4d:4a:9f:4b:20:89:7d:d8:a3:
66:06:cf:65:24:00:af:85:12:7a:d5:8f:e0:2a:c2:e2:e3:13:
f9:93:78:0f:68:7b:6c:c0:16:3f:c7:f5:9d:bc:b1:2a:8e:03:
e1:2b:b6:97:7d:2d:57:09:b9:c7:bc:f1:40:ad:c9:30:51:10:
ad:e0:a0:3c:9b:7e:a1:cc:dc:91:a0:07:92:a3:17:f6:3f:1c:
43:c3:5a:d2:85:3c:f9:cf:3b:5a:a5:f1:f1:eb:6b:ec:b4:c7:
91:aa:1d:0b:1c:5b:06:6b:57:b4:4c:fb:e8:88:ea:c3:b8:db:
99:c7:b7:fa:7e:18:99:58:c1:26:45:4b:0c:1f:88:a1:d0:0a:
14:a0:09:7f:af:d1:6f:b0:40:7b:a6:6b:d2:06:a9:2f:15:09:
b1:2e:37:00:55:70:58:41:da:84:6a:99:5f:57:89:f7:fe:bc:
ab:d7:67:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzj9jfBP1O/wWAsKqcE3PYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMwMTAyMTczODA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NWI0MjExZDMyZmI1NzAzY2YzYjRlZThiODI0MTQzNTFhMmIwZGRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9uxR/Nq4RY0hx5sW4SGuDLklGUQ
T/LaEUvVcd8M3EXonDvz/qK6BDU5s57v27cGWNN9bBvD2ZqNlbA0TXPByHsHBCDv
0xH4lpXjFv830mSigr56SJKIfrg5dNy+cW9LrmQKbV1SLp+gO1c7y8J9XuNUwv+Q
atXvOSTmEWfmwF3BPTMgqsxle6Gkc7BlgC4teIbGGsUYivVHRWjMTZ2vGxY4q6Kz
nLX4BIN/xqN1MQB8KCjj/VCVU/o7ZN8SGCV+VeTp/9Gzo/NjhzbDT4Z0exmPNhTi
ocec76nyqsCoznVE0ZvpWX4PxUDaDTUjQ9lwaUl1Tb0jWQPqLaZ+tRIxGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGW0IR0y+1cDzztO6LgkFDUaKw3dMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvWmJRaEhUTDdWd1BQTzA3b3VDUVVOUm9yRGQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueNHMA0G
CSqGSIb3DQEBCwUAA4IBAQBM4GybQbXSiU5n4wiLTbJh4atQR0pJFhFZwNluEisp
tY8Q9Z90XdxjmqdvrtzlpGr3g9A/cM89o4PZyPrb5fTTxpbmxnHCnUE853mb5xzB
8lVNSp9LIIl92KNmBs9lJACvhRJ61Y/gKsLi4xP5k3gPaHtswBY/x/WdvLEqjgPh
K7aXfS1XCbnHvPFArckwURCt4KA8m36hzNyRoAeSoxf2PxxDw1rShTz5zztapfHx
62vstMeRqh0LHFsGa1e0TPvoiOrDuNuZx7f6fhiZWMEmRUsMH4ih0AoUoAl/r9Fv
sEB7pmvSBqkvFQmxLjcAVXBYQdqEaplfV4n3/ryr12f4
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:27 2023 by rpki-client on console-ams.rpki-client.org