Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/c01f5b-6d28-441d-8c15-1fcdac6f0183/1/Zr2A13GjEM9ib6Li9c0IDnUi_sI.roa
File: Zr2A13GjEM9ib6Li9c0IDnUi_sI.roa (raw, json)
Hash identifier: XnLwEjrJDnfdEnOYbfq37ptveTs1agHXG5ER2O2cQYo=
Subject key identifier: 66:BD:80:D7:71:A3:10:CF:62:6F:A2:E2:F5:CD:08:0E:75:22:FE:C2
Certificate issuer: /CN=b32f015f6a2345345cb3daf230c25c8fae02305a
Certificate serial: 018D8036DCAC1B57C060599851C446AE4A1F
Authority key identifier: B3:2F:01:5F:6A:23:45:34:5C:B3:DA:F2:30:C2:5C:8F:AE:02:30:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sy8BX2ojRTRcs9ryMMJcj64CMFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/c01f5b-6d28-441d-8c15-1fcdac6f0183/1/Zr2A13GjEM9ib6Li9c0IDnUi_sI.roa
Signing time: Tue 06 Feb 2024 20:58:15 +0000
ROA not before: Tue 06 Feb 2024 20:58:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8866
IP address blocks: 195.177.248.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 07 Feb 2024 12:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:80:36:dc:ac:1b:57:c0:60:59:98:51:c4:46:ae:4a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32f015f6a2345345cb3daf230c25c8fae02305a
Validity
Not Before: Feb 6 20:58:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66bd80d771a310cf626fa2e2f5cd080e7522fec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:22:84:8b:cd:f9:a2:3c:f1:fc:eb:24:6e:93:
3b:52:fa:2b:d3:fa:d3:ff:bb:a5:63:f5:66:69:ca:
5f:ba:1e:40:b0:95:c4:d1:d1:df:4e:f1:84:48:42:
b1:42:1a:8b:b6:2a:ce:e3:cb:6a:4d:49:12:7b:17:
96:4e:79:1b:99:b4:0e:0f:de:ad:03:37:23:a6:ca:
96:e3:cd:1d:81:8f:6d:0f:b1:87:c6:e2:5a:32:6c:
fc:90:46:0b:d3:12:93:17:16:f6:f7:a2:a5:0c:87:
94:40:78:e7:09:f3:05:ea:48:6a:09:3e:2f:6f:ee:
52:a5:0b:df:91:fb:f5:27:c7:ca:b0:5e:4f:46:b6:
76:0b:65:8a:b5:88:7a:18:a2:62:de:85:c5:27:74:
a5:ee:2c:0f:5e:c8:b3:7b:d2:2d:8a:fe:41:a0:a5:
e1:c4:bf:db:cf:4e:6d:29:57:4f:f5:b0:30:53:80:
d0:92:93:02:cb:e8:85:88:3d:35:f4:26:37:0f:c2:
47:eb:df:2c:f3:e0:19:80:97:c9:df:22:8e:e8:02:
e9:1c:28:56:74:b1:01:3c:37:e4:68:f7:68:23:34:
93:75:1d:73:87:7c:e6:6d:b4:33:08:a7:79:34:6e:
c8:d1:27:da:49:e0:8f:11:c5:0d:fa:9e:3e:cd:5f:
a9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:BD:80:D7:71:A3:10:CF:62:6F:A2:E2:F5:CD:08:0E:75:22:FE:C2
X509v3 Authority Key Identifier:
keyid:B3:2F:01:5F:6A:23:45:34:5C:B3:DA:F2:30:C2:5C:8F:AE:02:30:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sy8BX2ojRTRcs9ryMMJcj64CMFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c01f5b-6d28-441d-8c15-1fcdac6f0183/1/Zr2A13GjEM9ib6Li9c0IDnUi_sI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c01f5b-6d28-441d-8c15-1fcdac6f0183/1/sy8BX2ojRTRcs9ryMMJcj64CMFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.248.0/23
Signature Algorithm: sha256WithRSAEncryption
64:f0:9c:4e:26:23:6c:ff:b1:7e:f4:ef:b4:18:bf:44:86:ec:
b9:3a:81:bc:13:06:01:71:55:6c:ee:06:7a:de:74:9a:fa:60:
2e:e6:7a:b1:2d:ed:47:e7:da:ba:33:80:c4:f1:e1:1d:35:99:
00:0c:a7:a2:b2:e9:84:26:aa:88:30:fa:2c:65:a6:1a:85:44:
5c:ed:af:12:a6:46:a5:81:4c:70:b6:95:05:a6:a2:e5:6c:a5:
ff:d1:a6:6a:25:49:a5:7c:ac:2f:f9:61:a9:3b:9d:b0:d8:46:
b5:b1:fd:36:c0:9f:5e:2c:8f:ac:d9:f5:94:9a:82:cd:de:28:
1b:dd:19:94:3f:c4:3f:c2:09:b1:66:88:55:4b:b8:5a:86:2d:
25:e4:0d:5a:5d:d1:78:e1:e8:af:82:62:f2:67:49:d3:34:5e:
78:c7:78:83:7d:c6:1e:11:c7:0b:4a:d6:65:b3:13:cc:32:bb:
a3:04:fc:df:89:f3:65:1d:8a:d2:86:e6:4e:93:db:28:e0:17:
30:de:1c:d9:19:08:e6:9d:bc:c0:7c:ad:cd:87:52:0c:99:d1:
43:48:eb:0e:28:61:d7:26:d5:bf:15:31:0f:ab:71:24:cd:41:
af:7a:38:b8:0a:a9:77:fc:44:fc:7b:44:0d:d3:c6:ad:d3:e7:
34:4b:f6:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2ANtysG1fAYFmYUcRGrkofMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMmYwMTVmNmEyMzQ1MzQ1Y2IzZGFmMjMwYzI1YzhmYWUw
MjMwNWEwHhcNMjQwMjA2MjA1ODE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NmJkODBkNzcxYTMxMGNmNjI2ZmEyZTJmNWNkMDgwZTc1MjJmZWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhyKEi835ojzx/OskbpM7Uvor0/rT
/7ulY/Vmacpfuh5AsJXE0dHfTvGESEKxQhqLtirO48tqTUkSexeWTnkbmbQOD96t
AzcjpsqW480dgY9tD7GHxuJaMmz8kEYL0xKTFxb296KlDIeUQHjnCfMF6khqCT4v
b+5SpQvfkfv1J8fKsF5PRrZ2C2WKtYh6GKJi3oXFJ3Sl7iwPXsize9Itiv5BoKXh
xL/bz05tKVdP9bAwU4DQkpMCy+iFiD019CY3D8JH698s8+AZgJfJ3yKO6ALpHChW
dLEBPDfkaPdoIzSTdR1zh3zmbbQzCKd5NG7I0SfaSeCPEcUN+p4+zV+pXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGa9gNdxoxDPYm+i4vXNCA51Iv7CMB8GA1UdIwQY
MBaAFLMvAV9qI0U0XLPa8jDCXI+uAjBaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3k4Qlgyb2pSVFJjczlyeU1NSmNqNjRDTUZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9jMDFmNWItNmQyOC00NDFkLThjMTUt
MWZjZGFjNmYwMTgzLzEvWnIyQTEzR2pFTTlpYjZMaTljMElEblVpX3NJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9jMDFmNWItNmQyOC00NDFkLThjMTUtMWZjZGFjNmYwMTgz
LzEvc3k4Qlgyb2pSVFJjczlyeU1NSmNqNjRDTUZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw7H4MA0G
CSqGSIb3DQEBCwUAA4IBAQBk8JxOJiNs/7F+9O+0GL9Ehuy5OoG8EwYBcVVs7gZ6
3nSa+mAu5nqxLe1H59q6M4DE8eEdNZkADKeisumEJqqIMPosZaYahURc7a8Spkal
gUxwtpUFpqLlbKX/0aZqJUmlfKwv+WGpO52w2Ea1sf02wJ9eLI+s2fWUmoLN3igb
3RmUP8Q/wgmxZohVS7hahi0l5A1aXdF44eivgmLyZ0nTNF54x3iDfcYeEccLStZl
sxPMMrujBPzfifNlHYrShuZOk9so4Bcw3hzZGQjmnbzAfK3Nh1IMmdFDSOsOKGHX
JtW/FTEPq3EkzUGveji4Cql3/ET8e0QN08at0+c0S/bD
-----END CERTIFICATE-----
Generated at Wed Feb 7 14:49:04 2024 by rpki-client on console-ams.rpki-client.org