Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/zd_-aRMiBcrKiSZ8qYucyknuP7A.roa
File: zd_-aRMiBcrKiSZ8qYucyknuP7A.roa (raw, json)
Hash identifier: hWhpDhKR7zcrw/zGDFXJm9P7mQ0ERY11PxiM5I/T1Rg=
Subject key identifier: CD:DF:FE:69:13:22:05:CA:CA:89:26:7C:A9:8B:9C:CA:49:EE:3F:B0
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01887B41D6C25194816DC16AC3994E6C22AF
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/zd_-aRMiBcrKiSZ8qYucyknuP7A.roa
Signing time: Fri 02 Jun 2023 08:38:12 +0000
ROA not before: Fri 02 Jun 2023 08:38:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202676
IP address blocks: 185.71.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7b:41:d6:c2:51:94:81:6d:c1:6a:c3:99:4e:6c:22:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 2 08:38:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cddffe69132205caca89267ca98b9cca49ee3fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2b:2a:ea:bf:b5:49:fa:16:e3:20:03:25:00:
35:5e:a4:63:9c:53:fa:1d:08:e7:6b:f1:18:a0:0e:
fe:21:48:5b:fd:de:db:dd:51:cb:71:74:e5:0a:17:
bd:e7:56:2f:4a:21:46:a8:6f:67:dc:68:85:31:89:
a2:db:38:9f:ef:5b:dd:72:af:48:bc:92:33:43:0a:
47:dd:07:09:0c:5e:d2:44:d7:d6:db:ec:01:de:c2:
5f:60:b2:e9:83:cc:ac:d6:6d:83:af:2e:f8:1a:fd:
d4:45:90:9f:01:f5:07:30:7a:da:b6:c8:4e:b6:46:
00:82:cc:1a:d0:57:6e:4e:8b:ca:3f:98:e2:24:a2:
de:4f:74:f2:68:eb:9d:11:f8:70:34:51:c9:ed:65:
eb:97:41:04:8a:22:6d:e5:40:07:d5:40:2c:55:d6:
26:3f:ee:30:c8:74:a6:25:6d:0a:2a:f5:5a:af:76:
eb:82:8f:ed:ef:de:0f:2c:9f:a2:e3:27:0a:9c:49:
20:c2:bf:84:a9:46:d9:20:a9:78:1c:77:4e:54:62:
3a:8d:37:a1:1c:bf:3a:79:d4:2b:ef:6c:8c:d6:35:
1c:f6:03:5a:f8:a4:08:d4:fd:32:cc:ae:ca:57:4f:
d7:e6:ca:c4:39:e5:d0:50:26:0e:ef:a4:13:33:51:
57:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:DF:FE:69:13:22:05:CA:CA:89:26:7C:A9:8B:9C:CA:49:EE:3F:B0
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/zd_-aRMiBcrKiSZ8qYucyknuP7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.29.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:82:cc:95:1a:74:1c:4d:66:0b:c9:f8:05:64:70:0e:ba:32:
f2:60:27:16:c2:0d:fb:2b:f7:9c:0b:59:fb:88:24:43:13:d1:
13:33:65:53:09:ba:30:e8:89:d8:f9:40:96:97:44:28:c9:98:
0c:eb:29:87:70:3e:4e:e7:95:fb:4f:ba:b6:c7:90:83:78:94:
03:80:11:97:07:a0:c7:79:b1:f8:d2:53:63:06:d7:2a:9a:6f:
cb:fc:02:24:26:2b:27:e2:9b:34:39:fe:0c:48:c5:e6:38:0c:
13:cd:25:61:c6:bd:12:23:30:26:a3:7b:60:9a:57:e3:4b:d1:
c2:9f:ec:c4:f6:75:48:af:b6:a9:cd:be:a3:a5:ca:fb:9f:93:
8e:2f:ee:c3:c7:6f:3f:d7:69:36:e4:1c:e0:09:57:42:ce:05:
28:58:57:d8:4d:de:ae:d9:62:ff:90:8c:19:0f:96:c1:3a:ca:
53:40:6f:d6:95:3b:d8:1e:74:e3:2d:14:d2:c3:6c:3e:f7:27:
ed:34:02:3f:96:43:08:29:74:97:be:54:0c:51:df:89:57:60:
4f:ea:4f:ef:e8:ec:0c:59:a3:4b:ee:f8:15:51:71:5b:3a:36:
a5:b6:ba:73:cb:1d:2f:b6:5e:70:44:2c:58:59:5d:ca:e8:9f:
0b:22:43:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYh7QdbCUZSBbcFqw5lObCKvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjMwNjAyMDgzODEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZGRmZmU2OTEzMjIwNWNhY2E4OTI2N2NhOThiOWNjYTQ5ZWUzZmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiCsq6r+1SfoW4yADJQA1XqRjnFP6
HQjna/EYoA7+IUhb/d7b3VHLcXTlChe951YvSiFGqG9n3GiFMYmi2zif71vdcq9I
vJIzQwpH3QcJDF7SRNfW2+wB3sJfYLLpg8ys1m2Dry74Gv3URZCfAfUHMHratshO
tkYAgswa0FduTovKP5jiJKLeT3TyaOudEfhwNFHJ7WXrl0EEiiJt5UAH1UAsVdYm
P+4wyHSmJW0KKvVar3brgo/t794PLJ+i4ycKnEkgwr+EqUbZIKl4HHdOVGI6jTeh
HL86edQr72yM1jUc9gNa+KQI1P0yzK7KV0/X5srEOeXQUCYO76QTM1FXAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM3f/mkTIgXKyokmfKmLnMpJ7j+wMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvemRfLWFSTWlCY3JLaVNaOHFZdWN5a251UDdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUcdMA0G
CSqGSIb3DQEBCwUAA4IBAQC4gsyVGnQcTWYLyfgFZHAOujLyYCcWwg37K/ecC1n7
iCRDE9ETM2VTCbow6InY+UCWl0QoyZgM6ymHcD5O55X7T7q2x5CDeJQDgBGXB6DH
ebH40lNjBtcqmm/L/AIkJisn4ps0Of4MSMXmOAwTzSVhxr0SIzAmo3tgmlfjS9HC
n+zE9nVIr7apzb6jpcr7n5OOL+7Dx28/12k25BzgCVdCzgUoWFfYTd6u2WL/kIwZ
D5bBOspTQG/WlTvYHnTjLRTSw2w+9yftNAI/lkMIKXSXvlQMUd+JV2BP6k/v6OwM
WaNL7vgVUXFbOjaltrpzyx0vtl5wRCxYWV3K6J8LIkMc
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:47 2024 by rpki-client on console-fra.rpki-client.org