Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/zp6--zlOFSLHgQzu3RLVZcZaoSU.roa
File: zp6--zlOFSLHgQzu3RLVZcZaoSU.roa (raw, json)
Hash identifier: IGoF6gsMS4j3f3cx52rHpH7GBzWo/YCz2Uuot79pSck=
Subject key identifier: CE:9E:BE:FB:39:4E:15:22:C7:81:0C:EE:DD:12:D5:65:C6:5A:A1:25
Certificate issuer: /CN=5847f1f4f6bcb2a4758ac8a997bc108000e418d1
Certificate serial: 018CC94E513A5D65313E3E7E52A9211ED956
Authority key identifier: 58:47:F1:F4:F6:BC:B2:A4:75:8A:C8:A9:97:BC:10:80:00:E4:18:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WEfx9Pa8sqR1isipl7wQgADkGNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/zp6--zlOFSLHgQzu3RLVZcZaoSU.roa
Signing time: Tue 02 Jan 2024 08:33:22 +0000
ROA not before: Tue 02 Jan 2024 08:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16246
IP address blocks: 91.222.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 22:45:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:51:3a:5d:65:31:3e:3e:7e:52:a9:21:1e:d9:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5847f1f4f6bcb2a4758ac8a997bc108000e418d1
Validity
Not Before: Jan 2 08:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce9ebefb394e1522c7810ceedd12d565c65aa125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:73:ee:2c:7b:ad:93:2a:d7:64:18:43:d8:45:
2c:33:e6:a3:43:66:78:ca:08:b1:4c:cc:08:47:79:
3d:01:6f:43:73:51:4f:54:0a:03:d7:9b:a5:74:c1:
ee:aa:77:93:a8:15:cf:ce:da:9d:4e:cd:05:df:5b:
df:6d:ed:0d:96:aa:44:c0:16:90:62:35:f1:22:3c:
9e:ac:e0:c8:32:d3:bb:27:17:d3:0f:76:67:4c:f2:
e1:45:e7:ee:3f:eb:d4:9c:1c:09:7c:19:79:35:47:
e9:a8:c5:ff:37:e9:7b:45:86:96:75:ee:22:e1:60:
72:a0:be:55:69:91:65:71:b4:f0:99:53:18:8b:90:
29:a5:94:25:32:60:a1:67:2b:19:e3:90:48:fe:b5:
33:b6:f0:2d:ce:16:d5:9a:c6:0b:0c:0b:64:1a:3e:
17:1f:2d:dd:1c:18:1b:dd:89:15:94:53:54:f6:1d:
29:c4:83:93:5f:50:ef:e3:42:dc:32:8c:bf:b6:2e:
a3:7f:82:8d:d4:f0:18:74:00:95:61:d3:48:89:46:
b8:63:9b:a2:f1:28:0a:f7:83:a5:27:01:25:8e:63:
fb:2f:c5:aa:b2:63:94:d7:0d:d5:6e:b7:21:47:a2:
18:6b:99:43:0b:c1:80:07:78:bc:c8:3f:1a:bf:f9:
9c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9E:BE:FB:39:4E:15:22:C7:81:0C:EE:DD:12:D5:65:C6:5A:A1:25
X509v3 Authority Key Identifier:
keyid:58:47:F1:F4:F6:BC:B2:A4:75:8A:C8:A9:97:BC:10:80:00:E4:18:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WEfx9Pa8sqR1isipl7wQgADkGNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/zp6--zlOFSLHgQzu3RLVZcZaoSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/WEfx9Pa8sqR1isipl7wQgADkGNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.52.0/24
Signature Algorithm: sha256WithRSAEncryption
87:58:9c:60:d2:93:23:3f:4c:0d:24:cc:ae:9d:ed:25:ff:9f:
b1:cd:a2:4b:94:b7:be:fc:e7:90:85:c0:97:fb:55:50:6d:a0:
c3:11:3f:dc:fa:c5:70:9b:0a:41:58:1a:45:b2:2a:ba:6c:19:
22:98:93:ee:73:c8:9d:39:7a:f1:c6:a5:ad:c9:1c:b8:08:07:
2d:aa:de:ea:f4:1b:4d:d1:53:6a:da:51:18:39:c2:9c:19:f9:
b6:36:bc:f8:88:56:44:0c:82:9f:27:c5:ec:11:85:5b:3b:37:
62:7c:54:c5:d6:02:1d:22:1d:eb:b9:70:a0:7f:f4:34:ae:a7:
d3:c1:18:b7:a3:1a:0f:62:76:0b:c1:91:2d:7b:8c:84:67:f5:
db:61:c5:59:84:60:90:fe:cb:95:56:49:bf:38:6c:02:1d:7c:
e0:a6:c6:25:66:0b:31:8d:75:5b:da:e9:66:4f:92:24:1b:32:
ef:75:01:cf:98:64:48:04:49:54:9b:50:58:45:be:52:5e:33:
ee:80:0b:79:c1:52:36:fe:52:2f:ce:a4:85:07:b6:3c:9e:78:
d6:89:4a:dd:66:67:60:0f:e0:6e:a6:42:16:f8:2d:76:58:65:
7b:b1:cb:43:1b:c5:3a:8d:7f:1b:89:cc:1a:5c:f8:c5:60:97:
fa:66:13:58
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTlE6XWUxPj5+UqkhHtlWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4NDdmMWY0ZjZiY2IyYTQ3NThhYzhhOTk3YmMxMDgwMDBl
NDE4ZDEwHhcNMjQwMTAyMDgzMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTllYmVmYjM5NGUxNTIyYzc4MTBjZWVkZDEyZDU2NWM2NWFhMTI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHPuLHutkyrXZBhD2EUsM+ajQ2Z4
ygixTMwIR3k9AW9Dc1FPVAoD15uldMHuqneTqBXPztqdTs0F31vfbe0NlqpEwBaQ
YjXxIjyerODIMtO7JxfTD3ZnTPLhRefuP+vUnBwJfBl5NUfpqMX/N+l7RYaWde4i
4WByoL5VaZFlcbTwmVMYi5AppZQlMmChZysZ45BI/rUztvAtzhbVmsYLDAtkGj4X
Hy3dHBgb3YkVlFNU9h0pxIOTX1Dv40LcMoy/ti6jf4KN1PAYdACVYdNIiUa4Y5ui
8SgK94OlJwEljmP7L8WqsmOU1w3VbrchR6IYa5lDC8GAB3i8yD8av/mcpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM6evvs5ThUix4EM7t0S1WXGWqElMB8GA1UdIwQY
MBaAFFhH8fT2vLKkdYrIqZe8EIAA5BjRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0VmeDlQYThzcVIxaXNpcGw3d1FnQURrR05FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8zODAwNmYtZmJmYy00OGFhLTg1ZWYt
MDY1YmMyOGMyYTUyLzEvenA2LS16bE9GU0xIZ1F6dTNSTFZaY1phb1NVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8zODAwNmYtZmJmYy00OGFhLTg1ZWYtMDY1YmMyOGMyYTUy
LzEvV0VmeDlQYThzcVIxaXNpcGw3d1FnQURrR05FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW940MA0G
CSqGSIb3DQEBCwUAA4IBAQCHWJxg0pMjP0wNJMyune0l/5+xzaJLlLe+/OeQhcCX
+1VQbaDDET/c+sVwmwpBWBpFsiq6bBkimJPuc8idOXrxxqWtyRy4CActqt7q9BtN
0VNq2lEYOcKcGfm2Nrz4iFZEDIKfJ8XsEYVbOzdifFTF1gIdIh3ruXCgf/Q0rqfT
wRi3oxoPYnYLwZEte4yEZ/XbYcVZhGCQ/suVVkm/OGwCHXzgpsYlZgsxjXVb2ulm
T5IkGzLvdQHPmGRIBElUm1BYRb5SXjPugAt5wVI2/lIvzqSFB7Y8nnjWiUrdZmdg
D+BupkIW+C12WGV7sctDG8U6jX8bicwaXPjFYJf6ZhNY
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:16 2025 by rpki-client