Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zYCBZf8tSUWbnZqFDDZfjToXw-Y.roa
File: zYCBZf8tSUWbnZqFDDZfjToXw-Y.roa (raw, json)
Hash identifier: 2yliX3Ibh3s2JIDbwSFOZDMZcKvDRPuN2ntKxHdeC+Q=
Subject key identifier: CD:80:81:65:FF:2D:49:45:9B:9D:9A:85:0C:36:5F:8D:3A:17:C3:E6
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709511C54C1D2C9C950B85337F5E29AF
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zYCBZf8tSUWbnZqFDDZfjToXw-Y.roa
Signing time: Mon 02 Jan 2023 03:44:55 +0000
ROA not before: Mon 02 Jan 2023 03:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35325
IP address blocks: 93.170.40.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:11:c5:4c:1d:2c:9c:95:0b:85:33:7f:5e:29:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd808165ff2d49459b9d9a850c365f8d3a17c3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:7f:45:82:eb:48:e2:1a:d4:bf:13:21:e1:94:
39:68:5f:92:a0:93:1d:a9:fb:27:fc:86:58:f1:08:
66:2e:89:67:1c:73:fe:26:bf:90:cf:5a:32:f2:71:
3e:a7:3e:57:07:ef:95:0a:a4:46:16:f1:32:86:f1:
43:7c:c6:d3:68:c2:14:cc:b6:5f:7d:3e:b7:92:9a:
47:3b:27:9f:d6:ab:db:b6:ce:96:b4:8c:36:54:6f:
5c:45:37:8d:52:56:70:e8:22:83:f3:4d:14:fd:9b:
12:4c:3c:5c:97:f4:13:99:a3:1c:d6:fc:3b:e3:20:
aa:f3:8b:ca:fd:d6:54:7f:e9:0e:d5:48:1c:62:12:
35:6a:6e:4f:4c:b7:10:7e:ed:fd:dc:98:2b:44:a3:
01:f0:7f:3a:3f:28:b0:b0:c2:bf:37:63:5b:4a:98:
07:aa:44:8e:1a:5b:da:80:55:d1:bd:ae:3b:8f:d4:
60:39:ba:55:92:a4:5b:dc:ab:58:00:e8:6c:5c:3f:
7a:1c:bf:03:45:42:66:b2:c6:4c:25:12:ad:89:bf:
ba:b1:a0:f6:b4:3e:df:cc:20:3b:05:f4:98:2e:06:
f6:26:a7:f4:dd:f0:98:08:00:2c:4f:a0:fc:8d:87:
60:d9:b3:14:aa:69:22:7e:51:b5:02:13:f9:47:d7:
11:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:80:81:65:FF:2D:49:45:9B:9D:9A:85:0C:36:5F:8D:3A:17:C3:E6
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zYCBZf8tSUWbnZqFDDZfjToXw-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.40.0/22
Signature Algorithm: sha256WithRSAEncryption
72:3e:42:1b:b9:79:56:4b:04:ee:6b:33:da:49:10:d2:58:64:
af:6b:77:a7:a2:f4:60:3c:76:27:f7:6c:eb:50:48:09:13:aa:
54:09:65:9d:38:9b:d3:27:af:c7:7d:8a:e6:30:74:a2:7c:17:
76:d5:7e:e6:40:00:8c:95:c3:ad:4a:d5:86:bf:3d:ca:59:93:
5e:8e:e1:cf:6f:e1:fb:c9:12:fb:98:eb:b0:b0:f8:b6:22:aa:
6e:f3:4a:26:4f:8d:48:8f:95:d6:9f:87:45:a6:93:29:8a:26:
45:e1:1c:c2:08:46:30:66:60:9d:1b:62:a1:e0:b3:bc:ce:c2:
19:3a:50:2b:53:8b:07:07:8d:70:d4:65:e0:ab:9f:fe:49:ec:
81:77:0d:f7:2e:1d:b1:a6:d8:45:f9:64:78:0a:d5:b5:53:c2:
74:b2:8f:9b:28:3e:30:22:97:6c:e5:3c:ac:01:ea:a3:b8:bb:
8f:1e:04:01:d5:07:2d:5d:ec:f5:f5:30:e6:1a:71:f7:5b:6d:
16:2e:52:94:bb:ad:73:09:a3:ea:b6:98:b4:df:0d:a4:6f:f8:
a3:c9:1f:f7:58:6a:72:67:6c:92:e6:d4:54:1e:c9:8c:99:f8:
e4:56:0c:34:e7:0e:7f:f5:06:18:62:5b:d2:3e:79:5a:1a:5b:
0c:a7:91:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlRHFTB0snJULhTN/XimvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTAyMDM0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDgwODE2NWZmMmQ0OTQ1OWI5ZDlhODUwYzM2NWY4ZDNhMTdjM2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhn9FgutI4hrUvxMh4ZQ5aF+SoJMd
qfsn/IZY8QhmLolnHHP+Jr+Qz1oy8nE+pz5XB++VCqRGFvEyhvFDfMbTaMIUzLZf
fT63kppHOyef1qvbts6WtIw2VG9cRTeNUlZw6CKD800U/ZsSTDxcl/QTmaMc1vw7
4yCq84vK/dZUf+kO1UgcYhI1am5PTLcQfu393JgrRKMB8H86PyiwsMK/N2NbSpgH
qkSOGlvagFXRva47j9RgObpVkqRb3KtYAOhsXD96HL8DRUJmssZMJRKtib+6saD2
tD7fzCA7BfSYLgb2Jqf03fCYCAAsT6D8jYdg2bMUqmkiflG1AhP5R9cROwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM2AgWX/LUlFm52ahQw2X406F8PmMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvellDQlpmOHRTVVdiblpxRkREWmZqVG9Ydy1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXaooMA0G
CSqGSIb3DQEBCwUAA4IBAQByPkIbuXlWSwTuazPaSRDSWGSva3enovRgPHYn92zr
UEgJE6pUCWWdOJvTJ6/HfYrmMHSifBd21X7mQACMlcOtStWGvz3KWZNejuHPb+H7
yRL7mOuwsPi2Iqpu80omT41Ij5XWn4dFppMpiiZF4RzCCEYwZmCdG2Kh4LO8zsIZ
OlArU4sHB41w1GXgq5/+SeyBdw33Lh2xpthF+WR4CtW1U8J0so+bKD4wIpds5Tys
AeqjuLuPHgQB1QctXez19TDmGnH3W20WLlKUu61zCaPqtpi03w2kb/ijyR/3WGpy
Z2yS5tRUHsmMmfjkVgw05w5/9QYYYlvSPnlaGlsMp5Es
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:32 2024 by rpki-client on console-fra.rpki-client.org