Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/ZLnNmHfklh_jzLvaGJHtBaxinVc.roa
File: ZLnNmHfklh_jzLvaGJHtBaxinVc.roa (raw, json)
Hash identifier: fOcCffALct9oRUr658rp14LYyHUvQawOo2Ikn0YuB5E=
Subject key identifier: 64:B9:CD:98:77:E4:96:1F:E3:CC:BB:DA:18:91:ED:05:AC:62:9D:57
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 018E26D2738616B1D2BE79E544BD446A5CA1
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/ZLnNmHfklh_jzLvaGJHtBaxinVc.roa
Signing time: Sun 10 Mar 2024 05:25:10 +0000
ROA not before: Sun 10 Mar 2024 05:25:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.209.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 00:35:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:26:d2:73:86:16:b1:d2:be:79:e5:44:bd:44:6a:5c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Mar 10 05:25:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64b9cd9877e4961fe3ccbbda1891ed05ac629d57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a9:28:fa:b5:d2:b1:a9:bc:0d:6e:51:81:2c:
f7:50:42:05:63:3b:a8:0d:0f:8e:1c:aa:c6:8e:b0:
ed:f5:60:8f:71:b1:34:97:f8:89:47:43:a3:5b:c0:
30:16:aa:fe:bb:7e:3f:c2:00:51:0b:1f:67:a1:d3:
2c:12:3b:27:81:08:a8:23:13:7e:f4:5b:4a:c9:87:
04:78:d8:40:8b:2a:cd:6d:44:0c:04:23:d7:8d:ff:
0b:7f:7c:fc:14:1e:a7:be:f9:13:76:b3:da:11:2a:
d8:bf:83:c1:96:b4:c9:e9:aa:cd:10:9d:18:76:24:
8f:bd:01:eb:49:a3:83:c4:89:7a:df:98:35:c5:c7:
ad:be:29:f6:11:3a:b4:81:ea:93:31:a0:88:d9:1a:
22:e7:6e:67:f7:61:3e:43:70:98:36:2c:1c:54:30:
56:1e:16:c8:2b:2e:44:34:3a:2d:54:e2:06:b2:2c:
90:01:eb:d5:5c:e5:ed:f1:ed:c4:52:17:dc:8d:ba:
86:12:5e:52:72:94:b5:8b:65:54:77:fa:67:a7:e8:
06:83:8d:17:32:38:15:64:cb:fb:04:d6:91:14:fa:
c7:56:43:bf:4c:2c:94:40:7e:aa:31:0e:97:d8:87:
b1:6a:6d:6f:4c:22:b4:63:cc:40:e4:d4:39:2c:1d:
35:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B9:CD:98:77:E4:96:1F:E3:CC:BB:DA:18:91:ED:05:AC:62:9D:57
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/ZLnNmHfklh_jzLvaGJHtBaxinVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.132.0/22
Signature Algorithm: sha256WithRSAEncryption
27:a8:50:8b:26:0c:9d:46:72:f8:65:c2:35:a2:41:32:89:dd:
be:df:55:ed:21:04:68:5f:1b:29:b9:ff:9e:12:71:b2:b4:4e:
a7:73:ba:ea:6f:e0:d5:fb:d6:7c:f6:68:6a:30:b6:8f:c9:e1:
45:f5:73:c3:da:7e:d6:43:05:78:61:79:3b:86:26:6f:fe:28:
c3:73:5a:48:d7:0f:63:88:2c:3a:da:c0:65:fe:e5:d1:fd:38:
4f:c3:5f:60:29:0c:a1:a1:13:13:24:10:ac:61:58:19:e2:c0:
96:2d:0f:ac:de:1d:e1:17:6d:7b:39:c6:ee:29:9b:15:c3:92:
71:24:f6:c0:29:ed:88:b5:dd:0e:c7:ab:38:5b:00:92:c2:8a:
43:5b:a1:52:2a:87:d8:f9:72:25:44:56:f4:dd:3d:7c:e4:92:
26:94:9b:f5:88:2f:7d:6b:95:7a:66:b5:c3:43:4f:32:e1:46:
fa:a8:3a:fd:58:70:9b:db:e1:14:2c:ef:c4:75:aa:3e:53:d6:
32:a2:7e:b1:18:14:b4:9e:b6:24:c0:57:e0:2b:38:78:9d:dd:
08:b0:7a:55:28:37:bb:1b:18:d9:36:b4:d5:cf:7e:48:48:7a:
d5:1c:89:17:42:4f:c8:11:a6:c3:4f:ca:7d:b4:a4:2d:86:d2:
61:f4:59:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY4m0nOGFrHSvnnlRL1EalyhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5M2RhMjAxOTkwOWQ5ZmMzNzgyOWZkOWVjMjlkOTQ4ZWNm
ZjdjOTIwHhcNMjQwMzEwMDUyNTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGI5Y2Q5ODc3ZTQ5NjFmZTNjY2JiZGExODkxZWQwNWFjNjI5ZDU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6ko+rXSsam8DW5RgSz3UEIFYzuo
DQ+OHKrGjrDt9WCPcbE0l/iJR0OjW8AwFqr+u34/wgBRCx9nodMsEjsngQioIxN+
9FtKyYcEeNhAiyrNbUQMBCPXjf8Lf3z8FB6nvvkTdrPaESrYv4PBlrTJ6arNEJ0Y
diSPvQHrSaODxIl635g1xcetvin2ETq0geqTMaCI2Roi525n92E+Q3CYNiwcVDBW
HhbIKy5ENDotVOIGsiyQAevVXOXt8e3EUhfcjbqGEl5ScpS1i2VUd/pnp+gGg40X
MjgVZMv7BNaRFPrHVkO/TCyUQH6qMQ6X2Iexam1vTCK0Y8xA5NQ5LB01cwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGS5zZh35JYf48y72hiR7QWsYp1XMB8GA1UdIwQY
MBaAFNk9ogGZCdn8N4Kf2ewp2Ujs/3ySMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgt
ZjVhZGRkZGYxZWM1LzEvWkxuTm1IZmtsaF9qekx2YUdKSHRCYXhpblZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgtZjVhZGRkZGYxZWM1
LzEvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvNGEMA0G
CSqGSIb3DQEBCwUAA4IBAQAnqFCLJgydRnL4ZcI1okEyid2+31XtIQRoXxspuf+e
EnGytE6nc7rqb+DV+9Z89mhqMLaPyeFF9XPD2n7WQwV4YXk7hiZv/ijDc1pI1w9j
iCw62sBl/uXR/ThPw19gKQyhoRMTJBCsYVgZ4sCWLQ+s3h3hF217OcbuKZsVw5Jx
JPbAKe2Itd0Ox6s4WwCSwopDW6FSKofY+XIlRFb03T185JImlJv1iC99a5V6ZrXD
Q08y4Ub6qDr9WHCb2+EULO/Edao+U9Yyon6xGBS0nrYkwFfgKzh4nd0IsHpVKDe7
GxjZNrTVz35ISHrVHIkXQk/IEabDT8p9tKQthtJh9Fmm
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org