Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/zaB_keC4WLRdTBFC2wfWfgduJNA.roa
File: zaB_keC4WLRdTBFC2wfWfgduJNA.roa (raw, json)
Hash identifier: UY5fcN8GA3BrqcyFUM4Ghx7c8/VnmEjaIYK8rDty87Q=
Subject key identifier: CD:A0:7F:91:E0:B8:58:B4:5D:4C:11:42:DB:07:D6:7E:07:6E:24:D0
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01894A269B68B85D4C4366E0BE4417ABEA1F
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/zaB_keC4WLRdTBFC2wfWfgduJNA.roa
Signing time: Wed 12 Jul 2023 12:49:51 +0000
ROA not before: Wed 12 Jul 2023 12:49:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 87.248.130.0/24 maxlen: 24
87.248.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 17:08:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4a:26:9b:68:b8:5d:4c:43:66:e0:be:44:17:ab:ea:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jul 12 12:49:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cda07f91e0b858b45d4c1142db07d67e076e24d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:20:75:ec:7b:96:1f:89:bd:73:77:79:10:39:
be:c0:27:fa:3b:80:79:76:1b:36:c5:83:28:13:cb:
0a:cd:10:27:94:f1:af:e4:58:1e:2f:4c:ff:cf:7e:
f0:5a:07:16:0e:f3:e3:01:f6:fe:45:60:1f:50:fb:
83:cd:a0:0e:49:ff:76:7b:3b:c8:04:12:89:e7:86:
e5:6a:e0:db:e4:3d:57:fd:24:17:4f:d5:34:e9:0f:
db:1d:6f:42:eb:db:1a:17:65:3a:63:d4:ff:38:e6:
ab:59:d0:fd:0f:52:29:83:ab:07:b9:ae:2c:31:d1:
72:e0:71:a1:ce:ef:a8:97:17:6e:c8:89:5d:b6:0b:
10:94:fb:20:e8:ec:02:c0:ed:21:38:03:47:48:dd:
c7:80:e0:64:4c:84:5c:bb:5d:0c:04:07:7c:86:2c:
d1:bd:64:ca:74:3f:ae:24:03:13:ad:39:14:4c:2e:
d6:06:82:ff:25:9f:fc:c6:e9:31:17:04:4c:0c:5a:
8b:60:63:80:dc:1d:c6:f0:eb:c9:0b:e7:9b:9e:a0:
43:15:74:c6:c4:2f:f3:59:a0:7a:ff:43:dc:68:be:
1c:ed:90:9c:9e:77:ac:7a:73:06:61:08:df:5f:f6:
30:b1:91:52:8a:36:60:a1:f4:78:f6:e4:17:be:26:
1f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A0:7F:91:E0:B8:58:B4:5D:4C:11:42:DB:07:D6:7E:07:6E:24:D0
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/zaB_keC4WLRdTBFC2wfWfgduJNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.130.0/24
87.248.148.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:67:54:53:22:f0:aa:7a:60:60:f4:f5:54:3e:ee:0e:f7:29:
1c:7a:8f:33:25:0e:69:8d:6c:9d:4b:c3:1b:6d:ab:7c:74:72:
b4:12:1f:69:cd:d7:27:89:e1:6b:aa:47:cd:51:9e:1e:d1:2f:
47:d1:c0:12:68:7f:32:3b:85:6a:83:bc:e9:a6:62:c3:4a:2a:
20:dd:dd:33:59:1c:dc:6b:e3:65:cc:19:d2:33:80:e8:df:73:
d5:40:ae:61:8a:05:a7:f2:18:58:51:e0:77:04:6a:05:ca:13:
d5:f6:e0:6c:97:f1:e9:8d:8b:c5:90:db:2e:56:a6:65:b9:94:
ba:64:2e:07:76:c9:64:35:97:d3:ed:c1:f5:02:fd:30:5a:df:
7a:d1:d1:d9:eb:d4:66:18:45:41:f5:2a:34:54:66:4d:19:b8:
7f:2b:86:ba:68:3c:d6:ea:fd:b8:31:ae:f8:d6:6f:25:3e:74:
48:84:7a:b8:f8:99:03:9d:e3:48:18:b8:c1:0a:2d:5e:0e:61:
80:f0:35:1c:70:eb:01:49:93:40:42:24:5f:2e:1d:94:06:7e:
2a:67:21:9c:90:69:cb:b4:08:ac:a6:55:a1:f7:38:7d:24:5b:
ef:c8:ef:06:9e:b0:b4:93:d6:a1:73:ee:86:b6:82:ba:db:6e:
13:e3:a3:ed
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYlKJptouF1MQ2bgvkQXq+ofMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZjYxZmM3YzBhYjQxY2UxNTRlN2JjYjA4ZWY5NjIzNTFh
NDY3ODQwHhcNMjMwNzEyMTI0OTUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZGEwN2Y5MWUwYjg1OGI0NWQ0YzExNDJkYjA3ZDY3ZTA3NmUyNGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniB17HuWH4m9c3d5EDm+wCf6O4B5
dhs2xYMoE8sKzRAnlPGv5FgeL0z/z37wWgcWDvPjAfb+RWAfUPuDzaAOSf92ezvI
BBKJ54blauDb5D1X/SQXT9U06Q/bHW9C69saF2U6Y9T/OOarWdD9D1Ipg6sHua4s
MdFy4HGhzu+olxduyIldtgsQlPsg6OwCwO0hOANHSN3HgOBkTIRcu10MBAd8hizR
vWTKdD+uJAMTrTkUTC7WBoL/JZ/8xukxFwRMDFqLYGOA3B3G8OvJC+ebnqBDFXTG
xC/zWaB6/0PcaL4c7ZCcnnesenMGYQjfX/YwsZFSijZgofR49uQXviYf7wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFM2gf5HguFi0XUwRQtsH1n4HbiTQMB8GA1UdIwQY
MBaAFHf2H8fAq0HOFU57ywjvliNRpGeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjkt
ZWRjOWQwMmZhZjU0LzEvemFCX2tlQzRXTFJkVEJGQzJ3ZldmZ2R1Sk5BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjktZWRjOWQwMmZhZjU0
LzEvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAV/iCAwQA
V/iUMA0GCSqGSIb3DQEBCwUAA4IBAQC0Z1RTIvCqemBg9PVUPu4O9ykceo8zJQ5p
jWydS8Mbbat8dHK0Eh9pzdcnieFrqkfNUZ4e0S9H0cASaH8yO4Vqg7zppmLDSiog
3d0zWRzca+NlzBnSM4Do33PVQK5higWn8hhYUeB3BGoFyhPV9uBsl/HpjYvFkNsu
VqZluZS6ZC4HdslkNZfT7cH1Av0wWt960dHZ69RmGEVB9So0VGZNGbh/K4a6aDzW
6v24Ma741m8lPnRIhHq4+JkDneNIGLjBCi1eDmGA8DUccOsBSZNAQiRfLh2UBn4q
ZyGckGnLtAisplWh9zh9JFvvyO8GnrC0k9ahc+6GtoK6224T46Pt
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:27 2024 by rpki-client on console-ams.rpki-client.org