Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/a46e3a-a8c6-4597-9281-9d24b40f8f72/1/rzSJu777yxlv-NL2XDIAkMpScO8.roa
File: rzSJu777yxlv-NL2XDIAkMpScO8.roa (raw, json)
Hash identifier: SeKo4IgLC6bT02NtJxkasBB1U1ryQYfiUUQfZ4owMJk=
Subject key identifier: AF:34:89:BB:BE:FB:CB:19:6F:F8:D2:F6:5C:32:00:90:CA:52:70:EF
Certificate issuer: /CN=c92ca71838ae33ccecc5f10ab54ec3fc71bfbb82
Certificate serial: 018943D22068D3A36566DE41C29ACC084DE8
Authority key identifier: C9:2C:A7:18:38:AE:33:CC:EC:C5:F1:0A:B5:4E:C3:FC:71:BF:BB:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ySynGDiuM8zsxfEKtU7D_HG_u4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/a46e3a-a8c6-4597-9281-9d24b40f8f72/1/rzSJu777yxlv-NL2XDIAkMpScO8.roa
Signing time: Tue 11 Jul 2023 07:19:51 +0000
ROA not before: Tue 11 Jul 2023 07:19:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208496
IP address blocks: 81.25.72.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:43:d2:20:68:d3:a3:65:66:de:41:c2:9a:cc:08:4d:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c92ca71838ae33ccecc5f10ab54ec3fc71bfbb82
Validity
Not Before: Jul 11 07:19:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af3489bbbefbcb196ff8d2f65c320090ca5270ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:64:d5:9a:8f:62:b8:50:bf:a0:c4:4a:8a:86:
d2:07:30:89:fc:66:94:bc:75:77:3d:e3:9c:3a:e9:
f9:41:8d:10:70:22:ba:34:e7:c3:81:79:12:4c:a7:
67:02:06:d5:21:cc:4f:1a:4b:08:cd:a5:24:38:0c:
59:08:8f:f9:48:8c:fe:31:f5:1f:7c:29:0a:86:90:
6b:f4:02:73:45:57:22:35:8a:c8:07:47:52:cf:db:
52:b1:99:0c:71:d1:07:7d:15:98:bb:ea:5a:c7:04:
5c:c8:98:ec:be:f5:4f:7c:0b:c8:c1:91:3a:84:a7:
0a:63:e3:56:2a:3f:c6:69:03:60:6f:ee:3a:ec:e2:
2e:75:27:da:44:fc:cc:b8:20:f3:c5:f9:a5:e3:a6:
61:1c:d4:5e:bc:73:fe:55:a7:bb:69:55:7a:4b:cd:
72:be:a2:78:b7:ba:fe:9e:91:a2:3e:50:b1:bc:c1:
25:0a:63:36:be:ac:f6:49:da:4a:86:a2:f0:53:2c:
15:62:cc:e2:38:0b:b9:83:df:76:3a:d2:21:39:dd:
20:e9:97:6a:20:68:19:0c:d7:56:e3:11:12:9a:5b:
9b:e2:29:e3:4a:b1:44:be:08:67:2f:49:f4:fc:38:
46:6b:73:b8:86:dd:04:53:bb:f9:06:eb:46:72:38:
d5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:34:89:BB:BE:FB:CB:19:6F:F8:D2:F6:5C:32:00:90:CA:52:70:EF
X509v3 Authority Key Identifier:
keyid:C9:2C:A7:18:38:AE:33:CC:EC:C5:F1:0A:B5:4E:C3:FC:71:BF:BB:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ySynGDiuM8zsxfEKtU7D_HG_u4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a46e3a-a8c6-4597-9281-9d24b40f8f72/1/rzSJu777yxlv-NL2XDIAkMpScO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a46e3a-a8c6-4597-9281-9d24b40f8f72/1/ySynGDiuM8zsxfEKtU7D_HG_u4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.25.72.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:b9:c9:19:d3:fe:f9:95:2c:81:1d:39:26:f5:4f:7c:c5:da:
c9:cc:ed:84:ef:21:60:ca:02:22:64:0a:09:45:f8:9b:bb:90:
36:ae:35:bd:cb:1c:4e:98:5d:11:c1:99:a5:af:f5:ca:b6:32:
78:8a:4f:b2:8d:70:08:bf:e6:56:d1:e5:15:07:75:e9:67:5b:
9f:d3:c6:24:f1:28:f3:a9:05:99:23:0a:f1:b4:cd:d7:13:1c:
30:24:b4:eb:6d:34:92:24:76:a1:19:ed:c0:f3:21:d1:8d:2e:
75:39:a4:69:59:19:26:46:89:a1:20:82:cb:70:4d:9b:58:de:
c7:6b:ca:14:7b:62:ca:ad:ec:dd:58:eb:2d:41:42:9b:7a:5c:
77:b6:8e:f0:73:ed:ca:37:0b:61:9d:a1:ed:c1:0a:75:2d:45:
0a:34:43:f5:35:2e:a4:bd:18:1e:2d:62:6e:3e:27:d6:1d:9e:
84:68:f8:8f:55:5c:75:9f:01:fb:34:43:1b:ad:c1:cb:9d:49:
b2:f1:dd:12:0d:d0:46:0f:1b:3a:2b:64:8a:cd:60:16:6c:b2:
4e:89:55:b2:4f:d9:35:72:c9:20:20:29:79:28:39:95:75:24:
c2:f7:58:51:f0:f0:6f:49:41:4f:18:76:2a:b4:ba:c8:4d:4a:
59:7c:4d:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlD0iBo06NlZt5BwprMCE3oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MmNhNzE4MzhhZTMzY2NlY2M1ZjEwYWI1NGVjM2ZjNzFi
ZmJiODIwHhcNMjMwNzExMDcxOTUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjM0ODliYmJlZmJjYjE5NmZmOGQyZjY1YzMyMDA5MGNhNTI3MGVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWTVmo9iuFC/oMRKiobSBzCJ/GaU
vHV3PeOcOun5QY0QcCK6NOfDgXkSTKdnAgbVIcxPGksIzaUkOAxZCI/5SIz+MfUf
fCkKhpBr9AJzRVciNYrIB0dSz9tSsZkMcdEHfRWYu+paxwRcyJjsvvVPfAvIwZE6
hKcKY+NWKj/GaQNgb+467OIudSfaRPzMuCDzxfml46ZhHNRevHP+Vae7aVV6S81y
vqJ4t7r+npGiPlCxvMElCmM2vqz2SdpKhqLwUywVYsziOAu5g992OtIhOd0g6Zdq
IGgZDNdW4xESmlub4injSrFEvghnL0n0/DhGa3O4ht0EU7v5ButGcjjVvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK80ibu++8sZb/jS9lwyAJDKUnDvMB8GA1UdIwQY
MBaAFMkspxg4rjPM7MXxCrVOw/xxv7uCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVN5bkdEaXVNOHpzeGZFS3RVN0RfSEdfdTRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9hNDZlM2EtYThjNi00NTk3LTkyODEt
OWQyNGI0MGY4ZjcyLzEvcnpTSnU3Nzd5eGx2LU5MMlhESUFrTXBTY084LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9hNDZlM2EtYThjNi00NTk3LTkyODEtOWQyNGI0MGY4Zjcy
LzEveVN5bkdEaXVNOHpzeGZFS3RVN0RfSEdfdTRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCURlIMA0G
CSqGSIb3DQEBCwUAA4IBAQA9uckZ0/75lSyBHTkm9U98xdrJzO2E7yFgygIiZAoJ
Rfibu5A2rjW9yxxOmF0RwZmlr/XKtjJ4ik+yjXAIv+ZW0eUVB3XpZ1uf08Yk8Sjz
qQWZIwrxtM3XExwwJLTrbTSSJHahGe3A8yHRjS51OaRpWRkmRomhIILLcE2bWN7H
a8oUe2LKrezdWOstQUKbelx3to7wc+3KNwthnaHtwQp1LUUKNEP1NS6kvRgeLWJu
PifWHZ6EaPiPVVx1nwH7NEMbrcHLnUmy8d0SDdBGDxs6K2SKzWAWbLJOiVWyT9k1
cskgICl5KDmVdSTC91hR8PBvSUFPGHYqtLrITUpZfE2H
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:43 2024 by rpki-client on console-ams.rpki-client.org