Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ZKy_kJ392IVLAmZKP_pUdLytL7E.roa
File: ZKy_kJ392IVLAmZKP_pUdLytL7E.roa (raw, json)
Hash identifier: yquLiU/Uv12WZU9YHDzsYMCyuKD3m3xMu+ORjWv4tqg=
Subject key identifier: 64:AC:BF:90:9D:FD:D8:85:4B:02:66:4A:3F:FA:54:74:BC:AD:2F:B1
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018B4371B3ACFE5175FEDDCEF26A2C274B44
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ZKy_kJ392IVLAmZKP_pUdLytL7E.roa
Signing time: Wed 18 Oct 2023 15:40:06 +0000
ROA not before: Wed 18 Oct 2023 15:40:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45049
IP address blocks: 194.28.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Nov 2023 10:46:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:43:71:b3:ac:fe:51:75:fe:dd:ce:f2:6a:2c:27:4b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Oct 18 15:40:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64acbf909dfdd8854b02664a3ffa5474bcad2fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ec:ff:49:86:7d:6e:e8:66:90:e7:ec:03:07:
68:4f:c5:53:3e:fd:dc:10:3f:34:0d:d8:f1:51:61:
86:83:10:6f:98:11:31:ed:70:b8:85:b4:ff:86:be:
f7:c9:6e:54:86:29:2d:cb:bc:31:eb:45:df:6e:de:
8b:0b:38:02:01:8f:4e:2d:77:98:df:66:09:28:ce:
4c:6d:16:f0:94:fc:0d:d2:57:12:10:e1:5a:d3:16:
ef:4d:44:b4:2f:87:3b:3b:9c:c1:44:ef:36:be:3b:
0e:a0:c2:69:da:e5:8c:35:84:ff:bc:a5:83:c3:c6:
4e:b2:3b:be:c3:d2:c5:8d:cc:ca:0a:28:86:e1:42:
8f:49:88:3a:75:64:17:6e:15:e9:a5:1a:a4:1b:2d:
9a:06:cd:0c:52:71:40:78:a5:62:e0:c0:ed:3b:7b:
21:db:06:37:36:f3:da:92:7a:bc:73:58:73:71:7d:
b3:a3:eb:bb:72:15:c7:1a:82:77:32:8b:a8:e6:12:
c6:79:3f:11:4e:c3:56:de:21:ff:8b:e5:c8:7b:d7:
1b:6f:41:01:56:4f:60:ba:0e:e8:96:f5:27:50:b8:
b3:12:05:60:a5:11:04:1e:df:f2:da:65:aa:a2:fa:
4c:bc:ed:3b:93:33:e7:89:ee:2a:af:11:38:cb:f5:
bd:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AC:BF:90:9D:FD:D8:85:4B:02:66:4A:3F:FA:54:74:BC:AD:2F:B1
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ZKy_kJ392IVLAmZKP_pUdLytL7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.97.0/24
Signature Algorithm: sha256WithRSAEncryption
76:86:41:13:fe:e6:c0:2e:f8:47:b6:f4:75:e8:27:6f:6a:a1:
da:cf:01:33:5d:76:6c:c9:df:fb:8e:91:2c:08:9c:94:51:c3:
22:12:74:02:b4:56:27:8b:f4:13:bb:83:95:f8:d8:70:ce:33:
4d:97:4b:7a:08:ab:d8:97:70:0f:2e:87:c4:cf:eb:06:66:86:
65:73:8a:51:92:f3:f3:08:4f:63:2b:df:14:81:bd:c5:cd:e7:
5d:d6:87:07:4f:ac:da:fe:a3:2e:c5:0a:51:6b:59:6b:12:5d:
d9:e5:72:96:f2:09:62:41:e8:7b:88:44:71:4d:08:8f:7a:4f:
b5:2b:24:05:79:44:9e:1a:95:96:2c:8b:6e:72:03:0c:13:43:
59:35:7f:78:f6:be:d8:20:9d:a2:b0:09:6e:87:fd:39:ea:17:
03:eb:69:53:a8:aa:7f:49:dd:7e:e2:96:03:e5:cc:ee:4c:96:
6a:bf:fc:1c:48:cd:4e:3a:fc:91:c7:9b:b4:ca:93:22:74:45:
69:82:d7:f0:0e:2c:fc:37:9d:74:d1:f6:1f:a5:af:06:cc:13:
c0:1d:04:71:4d:86:f7:e1:43:9e:cf:f1:52:54:46:77:f7:f3:
61:0b:5c:26:98:db:b1:dd:5c:bc:66:a2:7b:f7:12:7c:7d:77:
be:b4:64:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtDcbOs/lF1/t3O8mosJ0tEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMxMDE4MTU0MDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGFjYmY5MDlkZmRkODg1NGIwMjY2NGEzZmZhNTQ3NGJjYWQyZmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuz/SYZ9buhmkOfsAwdoT8VTPv3c
ED80DdjxUWGGgxBvmBEx7XC4hbT/hr73yW5Uhikty7wx60Xfbt6LCzgCAY9OLXeY
32YJKM5MbRbwlPwN0lcSEOFa0xbvTUS0L4c7O5zBRO82vjsOoMJp2uWMNYT/vKWD
w8ZOsju+w9LFjczKCiiG4UKPSYg6dWQXbhXppRqkGy2aBs0MUnFAeKVi4MDtO3sh
2wY3NvPaknq8c1hzcX2zo+u7chXHGoJ3Mouo5hLGeT8RTsNW3iH/i+XIe9cbb0EB
Vk9gug7olvUnULizEgVgpREEHt/y2mWqovpMvO07kzPnie4qrxE4y/W9zwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGSsv5Cd/diFSwJmSj/6VHS8rS+xMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvWkt5X2tKMzkySVZMQW1aS1BfcFVkTHl0TDdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwhxhMA0G
CSqGSIb3DQEBCwUAA4IBAQB2hkET/ubALvhHtvR16CdvaqHazwEzXXZsyd/7jpEs
CJyUUcMiEnQCtFYni/QTu4OV+NhwzjNNl0t6CKvYl3APLofEz+sGZoZlc4pRkvPz
CE9jK98Ugb3Fzedd1ocHT6za/qMuxQpRa1lrEl3Z5XKW8gliQeh7iERxTQiPek+1
KyQFeUSeGpWWLItucgMME0NZNX949r7YIJ2isAluh/056hcD62lTqKp/Sd1+4pYD
5czuTJZqv/wcSM1OOvyRx5u0ypMidEVpgtfwDiz8N5100fYfpa8GzBPAHQRxTYb3
4UOez/FSVEZ39/NhC1wmmNux3Vy8ZqJ79xJ8fXe+tGSc
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org