Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/30523b-8b3c-46cb-abbc-e101477efb8a/1/ZTFVgpvf-SKkGaqN8np7THwYPG8.roa
File: ZTFVgpvf-SKkGaqN8np7THwYPG8.roa (raw, json)
Hash identifier: I/HQFO4Y2eG9lhz5OdNDD5pgd1+BPs2W4sskRRO3Wwc=
Subject key identifier: 65:31:55:82:9B:DF:F9:22:A4:19:AA:8D:F2:7A:7B:4C:7C:18:3C:6F
Certificate issuer: /CN=e3d5159882e77a67f797f8f8b996b62c4ebabc20
Certificate serial: 01857315F198D9C797D0AF49BDCF4EBC9F49
Authority key identifier: E3:D5:15:98:82:E7:7A:67:F7:97:F8:F8:B9:96:B6:2C:4E:BA:BC:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/49UVmILnemf3l_j4uZa2LE66vCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/30523b-8b3c-46cb-abbc-e101477efb8a/1/ZTFVgpvf-SKkGaqN8np7THwYPG8.roa
Signing time: Mon 02 Jan 2023 15:24:55 +0000
ROA not before: Mon 02 Jan 2023 15:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39306
IP address blocks: 193.37.138.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:f1:98:d9:c7:97:d0:af:49:bd:cf:4e:bc:9f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3d5159882e77a67f797f8f8b996b62c4ebabc20
Validity
Not Before: Jan 2 15:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=653155829bdff922a419aa8df27a7b4c7c183c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:5e:31:82:ab:a9:af:89:a0:91:7d:e3:99:07:
84:bc:b5:a9:96:cf:56:00:47:98:20:eb:50:77:cb:
89:a1:67:e2:27:13:cb:0e:6f:f0:a1:26:4d:5c:f7:
28:c2:5f:56:3e:ca:a7:92:56:d3:06:32:52:83:ab:
1d:2b:bc:12:95:f0:eb:02:26:79:62:5f:d6:56:63:
7a:d0:c3:9f:e6:22:bd:1f:51:84:37:9d:5e:8a:1f:
a0:bd:4b:86:46:36:76:75:a1:05:a7:52:c0:cc:d2:
2b:bc:b4:d0:0e:4d:cf:12:d0:7b:52:95:ae:b8:bc:
62:f8:aa:a2:71:25:f1:06:aa:24:e2:fe:8c:96:5e:
39:13:23:fd:e8:ca:c7:b4:ae:35:a9:1a:d6:1c:05:
2c:fe:d3:6e:3f:4a:ec:72:50:d5:5c:a7:4b:b5:11:
5e:31:15:e0:59:25:4e:f9:a9:05:1d:92:2c:19:76:
f7:92:40:a1:5d:0f:69:4c:2b:76:47:2b:f8:07:06:
a7:9a:b2:55:59:35:07:b6:36:a6:c2:3e:b9:ad:2d:
ba:f3:1b:ea:f2:ab:bc:4d:93:b3:10:97:8c:4b:69:
35:ee:66:c1:d2:cb:0d:f0:c6:c5:fa:db:3d:18:98:
34:c1:c9:fb:ed:82:84:3b:41:7c:d1:a7:7d:da:b7:
e9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:31:55:82:9B:DF:F9:22:A4:19:AA:8D:F2:7A:7B:4C:7C:18:3C:6F
X509v3 Authority Key Identifier:
keyid:E3:D5:15:98:82:E7:7A:67:F7:97:F8:F8:B9:96:B6:2C:4E:BA:BC:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/49UVmILnemf3l_j4uZa2LE66vCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/30523b-8b3c-46cb-abbc-e101477efb8a/1/ZTFVgpvf-SKkGaqN8np7THwYPG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/30523b-8b3c-46cb-abbc-e101477efb8a/1/49UVmILnemf3l_j4uZa2LE66vCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.138.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:54:3a:bc:8e:cb:2d:94:c2:82:02:9a:1a:eb:7a:fa:aa:93:
17:4d:5a:06:94:9e:0b:41:05:f6:95:fc:78:46:c0:3b:7a:d2:
8a:38:d9:ac:0e:83:b7:d6:17:5b:28:90:c9:74:54:84:e0:7f:
5e:50:c1:c0:00:45:f6:b4:1e:43:92:47:4d:64:88:2b:2a:73:
1d:60:67:6d:dc:7e:02:39:7a:14:b8:fb:bd:5b:f4:90:55:43:
b5:3e:2a:41:64:b8:ad:75:86:01:3a:66:6b:a6:70:93:f5:52:
d4:a1:0c:d5:95:ac:31:38:11:fa:94:34:21:54:ff:79:9c:74:
56:56:84:64:71:cc:b9:a5:03:4d:73:0b:25:51:de:99:4d:fa:
e2:86:f8:2e:83:81:77:e1:bf:a0:35:f0:44:4c:36:f7:9c:ef:
5d:05:f6:8e:4c:ed:e6:2b:dd:bb:db:3b:19:ba:82:31:59:e2:
9a:b0:ac:4e:c2:37:06:62:ab:dd:5e:34:0e:31:63:2a:a3:c3:
2b:65:48:04:48:53:1d:a0:db:a9:4a:9a:ca:dc:59:eb:22:1e:
96:fe:95:fd:46:b6:fe:d4:99:d1:2a:05:50:0a:3a:bd:fd:df:
83:59:5a:c7:19:c0:14:e5:01:cc:f3:2e:a0:1a:d9:ed:39:70:
82:a2:d1:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzFfGY2ceX0K9Jvc9OvJ9JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzZDUxNTk4ODJlNzdhNjdmNzk3ZjhmOGI5OTZiNjJjNGVi
YWJjMjAwHhcNMjMwMTAyMTUyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTMxNTU4MjliZGZmOTIyYTQxOWFhOGRmMjdhN2I0YzdjMTgzYzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjl4xgqupr4mgkX3jmQeEvLWpls9W
AEeYIOtQd8uJoWfiJxPLDm/woSZNXPcowl9WPsqnklbTBjJSg6sdK7wSlfDrAiZ5
Yl/WVmN60MOf5iK9H1GEN51eih+gvUuGRjZ2daEFp1LAzNIrvLTQDk3PEtB7UpWu
uLxi+KqicSXxBqok4v6Mll45EyP96MrHtK41qRrWHAUs/tNuP0rsclDVXKdLtRFe
MRXgWSVO+akFHZIsGXb3kkChXQ9pTCt2Ryv4BwanmrJVWTUHtjamwj65rS268xvq
8qu8TZOzEJeMS2k17mbB0ssN8MbF+ts9GJg0wcn77YKEO0F80ad92rfpIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGUxVYKb3/kipBmqjfJ6e0x8GDxvMB8GA1UdIwQY
MBaAFOPVFZiC53pn95f4+LmWtixOurwgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDlVVm1JTG5lbWYzbF9qNHVaYTJMRTY2dkNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS8zMDUyM2ItOGIzYy00NmNiLWFiYmMt
ZTEwMTQ3N2VmYjhhLzEvWlRGVmdwdmYtU0trR2FxTjhucDdUSHdZUEc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS8zMDUyM2ItOGIzYy00NmNiLWFiYmMtZTEwMTQ3N2VmYjhh
LzEvNDlVVm1JTG5lbWYzbF9qNHVaYTJMRTY2dkNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSWKMA0G
CSqGSIb3DQEBCwUAA4IBAQAdVDq8jsstlMKCApoa63r6qpMXTVoGlJ4LQQX2lfx4
RsA7etKKONmsDoO31hdbKJDJdFSE4H9eUMHAAEX2tB5DkkdNZIgrKnMdYGdt3H4C
OXoUuPu9W/SQVUO1PipBZLitdYYBOmZrpnCT9VLUoQzVlawxOBH6lDQhVP95nHRW
VoRkccy5pQNNcwslUd6ZTfrihvgug4F34b+gNfBETDb3nO9dBfaOTO3mK9272zsZ
uoIxWeKasKxOwjcGYqvdXjQOMWMqo8MrZUgESFMdoNupSprK3FnrIh6W/pX9Rrb+
1JnRKgVQCjq9/d+DWVrHGcAU5QHM8y6gGtntOXCCotE1
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:54 2024 by rpki-client on console-fra.rpki-client.org