Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZQftp7nlBwSJa1jaXDwBbsj-Nbs.roa
File: ZQftp7nlBwSJa1jaXDwBbsj-Nbs.roa (raw, json)
Hash identifier: jLJhqKTqkkpK+pfbJUQrRhj5vQAQcu9B6X7ogsSQSPc=
Subject key identifier: 65:07:ED:A7:B9:E5:07:04:89:6B:58:DA:5C:3C:01:6E:C8:FE:35:BB
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709575AC62A1962208487BB29D46D47A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZQftp7nlBwSJa1jaXDwBbsj-Nbs.roa
Signing time: Mon 02 Jan 2023 03:45:21 +0000
ROA not before: Mon 02 Jan 2023 03:45:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61308
IP address blocks: 93.170.200.0/21 maxlen: 24
93.171.192.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:75:ac:62:a1:96:22:08:48:7b:b2:9d:46:d4:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6507eda7b9e50704896b58da5c3c016ec8fe35bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:41:66:4c:60:d7:a7:a8:1c:6e:17:c0:18:19:
99:8f:b7:6c:c6:af:fe:a5:07:68:a5:7e:23:ac:b6:
20:17:bc:3c:e0:3d:12:63:42:6f:e9:a0:52:15:f7:
ad:53:40:31:2c:3f:ae:11:c4:c2:20:36:4a:76:fb:
24:2e:f6:a3:fe:26:fa:ff:a9:9d:c6:02:c0:f2:af:
b0:5a:fc:aa:30:9f:d7:6b:6a:df:a0:ed:fd:04:cb:
4d:b5:2a:37:48:a7:5b:57:db:b6:ea:88:0f:13:f5:
58:f0:d2:d3:22:65:3a:fe:7a:2f:05:ec:64:6e:71:
cc:0d:d3:c4:03:8d:43:01:4d:92:33:76:6a:5b:5d:
18:4c:9c:60:c6:20:e5:50:d7:c9:70:6e:00:ad:89:
32:27:c1:2c:90:f3:24:90:ac:ae:19:9e:52:33:1d:
24:b9:4b:b6:2b:c6:d8:21:e4:3a:dc:73:df:d4:e0:
94:10:4e:f8:12:0d:ea:b4:76:e6:d5:4b:a1:2b:9c:
7b:ec:3d:dd:b8:e6:60:68:dc:a3:48:da:06:12:e9:
3e:cd:fb:10:5a:1c:46:a7:15:01:16:f4:0f:8e:b4:
3f:aa:84:0c:9b:8b:ad:3c:83:e8:d1:b2:37:30:0b:
05:d9:9a:c0:bd:5f:f4:1a:b8:08:b1:97:e7:36:53:
4f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:07:ED:A7:B9:E5:07:04:89:6B:58:DA:5C:3C:01:6E:C8:FE:35:BB
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZQftp7nlBwSJa1jaXDwBbsj-Nbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.200.0/21
93.171.192.0/21
Signature Algorithm: sha256WithRSAEncryption
85:69:b3:9c:1b:97:92:0b:45:b4:76:3b:77:81:1c:93:b9:06:
82:8a:51:9b:a4:66:07:79:58:eb:7e:f5:a9:38:8a:0b:c2:1f:
7c:e1:d3:32:ac:7a:04:16:b0:db:46:0c:78:31:5f:f6:f9:65:
7b:49:32:6a:06:20:72:bf:75:c1:d8:17:93:5c:9d:3a:31:95:
8e:5c:02:90:7d:c0:60:af:f6:2f:20:81:7b:0d:46:fd:6c:4e:
e5:12:0e:e4:2c:7e:45:25:fa:49:a4:74:d0:40:e0:f2:8d:33:
14:ab:71:02:49:c3:45:c2:d8:3c:62:37:6b:3c:fe:39:07:24:
a0:3b:cf:69:da:4c:74:a7:69:5d:45:b2:0b:50:56:76:d2:8f:
a6:f6:4a:35:7f:65:1b:31:a0:fa:a3:7b:df:c1:75:a9:46:0a:
08:c2:65:88:66:dc:72:b6:ac:a3:00:ab:f6:bb:59:05:bf:f6:
63:26:6f:68:12:26:41:9e:cb:88:96:a4:64:67:2d:9a:91:96:
a4:04:88:e9:0b:6d:77:1e:0a:4a:91:6f:e3:d5:16:3e:90:7f:
8a:e1:83:8f:ce:b8:bf:64:69:f9:a1:46:a7:ab:dd:4c:68:ff:
80:04:4d:78:16:08:d9:b9:83:bc:e2:9c:c2:20:8a:6a:75:2e:
78:ed:e3:3d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVwlXWsYqGWIghIe7KdRtR6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTAyMDM0NTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTA3ZWRhN2I5ZTUwNzA0ODk2YjU4ZGE1YzNjMDE2ZWM4ZmUzNWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskFmTGDXp6gcbhfAGBmZj7dsxq/+
pQdopX4jrLYgF7w84D0SY0Jv6aBSFfetU0AxLD+uEcTCIDZKdvskLvaj/ib6/6md
xgLA8q+wWvyqMJ/Xa2rfoO39BMtNtSo3SKdbV9u26ogPE/VY8NLTImU6/novBexk
bnHMDdPEA41DAU2SM3ZqW10YTJxgxiDlUNfJcG4ArYkyJ8EskPMkkKyuGZ5SMx0k
uUu2K8bYIeQ63HPf1OCUEE74Eg3qtHbm1UuhK5x77D3duOZgaNyjSNoGEuk+zfsQ
WhxGpxUBFvQPjrQ/qoQMm4utPIPo0bI3MAsF2ZrAvV/0GrgIsZfnNlNPrQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGUH7ae55QcEiWtY2lw8AW7I/jW7MB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvWlFmdHA3bmxCd1NKYTFqYVhEd0Jic2otTmJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDXarIAwQD
XavAMA0GCSqGSIb3DQEBCwUAA4IBAQCFabOcG5eSC0W0djt3gRyTuQaCilGbpGYH
eVjrfvWpOIoLwh984dMyrHoEFrDbRgx4MV/2+WV7STJqBiByv3XB2BeTXJ06MZWO
XAKQfcBgr/YvIIF7DUb9bE7lEg7kLH5FJfpJpHTQQODyjTMUq3ECScNFwtg8Yjdr
PP45BySgO89p2kx0p2ldRbILUFZ20o+m9ko1f2UbMaD6o3vfwXWpRgoIwmWIZtxy
tqyjAKv2u1kFv/ZjJm9oEiZBnsuIlqRkZy2akZakBIjpC213HgpKkW/j1RY+kH+K
4YOPzri/ZGn5oUanq91MaP+ABE14FgjZuYO84pzCIIpqdS547eM9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:51 2024 by rpki-client on console-ams.rpki-client.org