Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/ZVoIVGxyTjkm3C3SLdikwFx-UxE.roa
File: ZVoIVGxyTjkm3C3SLdikwFx-UxE.roa (raw, json)
Hash identifier: IaWAvAHulDhiyu3CLnVKEpp5MUhr6jJiAXDq+jN80qw=
Subject key identifier: 65:5A:08:54:6C:72:4E:39:26:DC:2D:D2:2D:D8:A4:C0:5C:7E:53:11
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01889B9BB1F0EA092ABF98829CEABE28BEC6
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/ZVoIVGxyTjkm3C3SLdikwFx-UxE.roa
Signing time: Thu 08 Jun 2023 15:24:12 +0000
ROA not before: Thu 08 Jun 2023 15:24:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.199.212.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Jun 2023 22:54:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9b:9b:b1:f0:ea:09:2a:bf:98:82:9c:ea:be:28:be:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 8 15:24:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=655a08546c724e3926dc2dd22dd8a4c05c7e5311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8a:9f:24:a8:5b:4c:ed:1a:19:59:c7:21:37:
81:2c:03:2d:cc:fe:70:b2:1d:fb:b0:5a:d5:55:cb:
55:5b:d3:df:b7:fb:7f:8e:6e:dd:76:a8:cb:1f:c3:
0b:9e:df:48:b0:bb:1d:d1:48:c4:3e:44:78:6d:7d:
74:5f:10:67:fe:c0:44:55:f5:ea:63:00:88:3a:94:
9f:15:c5:7b:6e:84:dc:a7:1b:a9:5a:07:a6:27:89:
b3:77:64:50:b1:b3:f9:48:69:db:e0:d5:63:4c:60:
bc:70:d4:3f:4b:40:40:7c:2d:44:b5:7d:5a:bd:9c:
1e:52:41:28:98:39:99:d3:5b:d9:8f:35:b6:c5:ac:
d6:35:f6:18:e7:14:52:89:d0:a0:dd:03:3c:5b:47:
b1:5f:ec:e4:34:0e:14:0f:8e:50:e4:fe:4d:49:e7:
e0:20:5c:f6:ef:76:73:19:63:6d:a0:92:1e:4e:1d:
fd:c6:56:30:d2:30:e7:13:39:bd:a3:85:95:74:a0:
f9:41:7a:8e:6f:cb:3d:a7:97:e1:c0:6b:35:75:1c:
c9:d5:1c:ee:f9:66:92:84:ad:a8:d6:88:37:5e:f0:
2a:9c:5d:3d:88:c3:bf:83:c0:8e:a3:61:80:db:3f:
62:78:c3:b0:8e:4e:4a:bb:46:c1:78:40:b1:33:f9:
8b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:5A:08:54:6C:72:4E:39:26:DC:2D:D2:2D:D8:A4:C0:5C:7E:53:11
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/ZVoIVGxyTjkm3C3SLdikwFx-UxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.212.0/24
194.146.93.0/24
Signature Algorithm: sha256WithRSAEncryption
43:16:33:3d:9a:05:c9:99:2f:06:1d:e8:cb:1b:4b:d7:88:eb:
ea:3a:d2:04:f5:20:7f:e9:90:98:97:8d:cc:e4:c4:f8:db:96:
91:b1:8f:ef:2b:0a:f2:f0:64:a7:65:95:0e:dc:10:1d:1c:f3:
47:17:61:7d:81:e3:e3:60:c1:c9:3b:fe:d0:16:05:7f:c9:38:
07:f2:6c:72:87:4e:07:5c:c0:15:5a:f8:e7:c1:76:27:94:ea:
16:e4:fa:90:cf:18:df:df:3d:3d:56:9b:18:9c:25:79:23:7e:
3b:bf:68:08:4e:a6:d0:56:1d:a2:ee:f4:37:c6:56:a0:95:66:
e3:72:95:3f:5e:10:64:de:10:67:ad:ae:77:c7:39:8c:d9:dd:
7b:51:60:57:41:ec:f2:a4:c2:30:2e:bd:e6:5b:b0:e8:4b:e3:
cf:9d:89:da:58:71:ca:33:08:2f:ea:69:2d:c0:42:79:54:db:
28:ac:29:85:41:16:67:8d:dc:56:43:90:48:ff:80:e8:c7:71:
ae:d1:a5:cc:db:a9:e1:c5:56:f7:0a:bf:61:b0:ef:ed:13:32:
9b:3b:8e:3f:75:06:dd:00:4b:1a:df:0c:37:f7:60:76:3e:0d:
08:38:47:de:15:a9:f4:fc:30:79:11:10:b7:6a:5b:db:6a:8f:
18:59:08:80
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYibm7Hw6gkqv5iCnOq+KL7GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMwNjA4MTUyNDEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTVhMDg1NDZjNzI0ZTM5MjZkYzJkZDIyZGQ4YTRjMDVjN2U1MzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYqfJKhbTO0aGVnHITeBLAMtzP5w
sh37sFrVVctVW9Pft/t/jm7ddqjLH8MLnt9IsLsd0UjEPkR4bX10XxBn/sBEVfXq
YwCIOpSfFcV7boTcpxupWgemJ4mzd2RQsbP5SGnb4NVjTGC8cNQ/S0BAfC1EtX1a
vZweUkEomDmZ01vZjzW2xazWNfYY5xRSidCg3QM8W0exX+zkNA4UD45Q5P5NSefg
IFz273ZzGWNtoJIeTh39xlYw0jDnEzm9o4WVdKD5QXqOb8s9p5fhwGs1dRzJ1Rzu
+WaShK2o1og3XvAqnF09iMO/g8COo2GA2z9ieMOwjk5Ku0bBeECxM/mLzQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGVaCFRsck45Jtwt0i3YpMBcflMRMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvWlZvSVZHeHlUamttM0MzU0xkaWt3RngtVXhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAucfUAwQA
wpJdMA0GCSqGSIb3DQEBCwUAA4IBAQBDFjM9mgXJmS8GHejLG0vXiOvqOtIE9SB/
6ZCYl43M5MT425aRsY/vKwry8GSnZZUO3BAdHPNHF2F9gePjYMHJO/7QFgV/yTgH
8mxyh04HXMAVWvjnwXYnlOoW5PqQzxjf3z09VpsYnCV5I347v2gITqbQVh2i7vQ3
xlaglWbjcpU/XhBk3hBnra53xzmM2d17UWBXQezypMIwLr3mW7DoS+PPnYnaWHHK
Mwgv6mktwEJ5VNsorCmFQRZnjdxWQ5BI/4Dox3Gu0aXM26nhxVb3Cr9hsO/tEzKb
O44/dQbdAEsa3ww392B2Pg0IOEfeFan0/DB5ERC3alvbao8YWQiA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org