Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ztpxjYt_aiRIkW-qMOrlIqalteI.roa
File: ztpxjYt_aiRIkW-qMOrlIqalteI.roa (raw, json)
Hash identifier: R8SJ22vNB1Ky1ytWbOADla0qc7DmHbEMp3t6L/YHQtA=
Subject key identifier: CE:DA:71:8D:8B:7F:6A:24:48:91:6F:AA:30:EA:E5:22:A6:A5:B5:E2
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018FF6C6131B6700EA0D37244B85550B963C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ztpxjYt_aiRIkW-qMOrlIqalteI.roa
Signing time: Sat 08 Jun 2024 07:35:27 +0000
ROA not before: Sat 08 Jun 2024 07:35:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56322
IP address blocks: 86.107.101.0/24 maxlen: 24
89.45.44.0/24 maxlen: 24
93.113.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jul 2024 10:19:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f6:c6:13:1b:67:00:ea:0d:37:24:4b:85:55:0b:96:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 8 07:35:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ceda718d8b7f6a2448916faa30eae522a6a5b5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:49:65:30:31:d3:aa:90:cb:3e:4d:84:1b:57:
45:cf:a7:35:ca:07:b4:1f:e2:41:18:d6:36:6f:ce:
f4:86:42:06:42:cd:08:7f:53:16:e2:17:ac:e9:f2:
f3:a3:d2:e1:2d:3a:52:b8:b4:98:09:bf:25:aa:59:
69:9a:f9:02:bb:19:bb:76:d9:10:38:14:41:2d:82:
c8:71:8a:25:9f:e7:8f:c2:bb:cb:aa:0e:25:42:b9:
d5:06:a9:63:c9:9a:db:6f:17:a0:87:5f:b6:4e:57:
19:dd:2b:0e:bd:15:5a:ea:08:75:b4:02:66:50:8c:
a4:c8:bf:b4:a6:1d:65:60:ab:58:5c:88:d6:aa:8b:
85:bc:7c:d4:a3:07:5d:56:93:42:45:5e:65:84:5a:
e7:ff:cf:4b:d8:7a:df:a1:81:52:48:9f:97:0b:c5:
9e:ea:bc:0e:c5:69:16:23:90:5f:63:c6:ed:3c:5a:
e1:ff:31:56:51:84:89:3e:d1:33:08:1c:95:9d:60:
f3:c4:06:21:62:66:87:ed:4b:c7:97:9d:53:78:56:
14:d0:6b:4b:00:2a:96:f0:30:9a:f0:7f:94:2e:90:
86:53:16:4a:ba:31:47:45:75:30:21:ff:ce:e7:34:
df:a4:8b:94:52:b4:2d:40:2b:cb:4e:a7:f5:8b:73:
69:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:DA:71:8D:8B:7F:6A:24:48:91:6F:AA:30:EA:E5:22:A6:A5:B5:E2
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ztpxjYt_aiRIkW-qMOrlIqalteI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.101.0/24
89.45.44.0/24
93.113.57.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:82:c9:56:5e:a6:48:76:d4:0b:2c:dc:7e:f3:dd:c0:98:52:
89:11:17:7f:15:db:66:92:e2:8c:44:47:12:c2:73:72:e0:78:
f1:ee:b4:e1:b6:6c:f8:4a:3f:9a:49:6d:cf:ad:20:ef:06:d9:
c3:58:e3:cf:0c:52:82:88:2f:29:2c:5c:17:c0:7b:24:b5:58:
49:eb:5b:a9:4b:b9:be:58:e0:86:33:63:76:39:c3:21:58:96:
34:5e:1f:f5:e8:a3:b6:93:c7:84:70:83:07:a8:0e:fa:33:e5:
0f:c7:02:22:6a:fe:24:b2:9d:f7:e3:8b:68:0d:73:f3:d0:e4:
74:df:93:4a:8c:7b:37:d8:fd:da:9d:07:0c:db:9e:88:09:c8:
c5:31:f2:ef:aa:cd:82:6d:40:15:5c:34:0e:39:cd:fe:4d:12:
62:09:f4:56:f4:b6:3c:bf:5d:00:5c:0d:83:da:7b:98:32:48:
47:5a:3e:b7:a4:2b:65:e3:06:94:6d:12:c5:e7:e8:1f:c2:21:
b2:c5:d3:72:78:d0:6f:d8:ab:5a:46:2f:43:d6:38:f1:20:47:
63:a5:9a:f3:16:fe:c3:97:20:2b:29:7e:ae:45:09:1c:7b:a2:
5d:41:c0:26:ac:4a:06:91:f6:15:e2:90:06:63:71:c7:ad:5d:
98:c5:51:6b
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY/2xhMbZwDqDTckS4VVC5Y8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwNjA4MDczNTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWRhNzE4ZDhiN2Y2YTI0NDg5MTZmYWEzMGVhZTUyMmE2YTViNWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0llMDHTqpDLPk2EG1dFz6c1yge0
H+JBGNY2b870hkIGQs0If1MW4hes6fLzo9LhLTpSuLSYCb8lqllpmvkCuxm7dtkQ
OBRBLYLIcYoln+ePwrvLqg4lQrnVBqljyZrbbxegh1+2TlcZ3SsOvRVa6gh1tAJm
UIykyL+0ph1lYKtYXIjWqouFvHzUowddVpNCRV5lhFrn/89L2HrfoYFSSJ+XC8We
6rwOxWkWI5BfY8btPFrh/zFWUYSJPtEzCByVnWDzxAYhYmaH7UvHl51TeFYU0GtL
ACqW8DCa8H+ULpCGUxZKujFHRXUwIf/O5zTfpIuUUrQtQCvLTqf1i3NpjwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFM7acY2Lf2okSJFvqjDq5SKmpbXiMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvenRweGpZdF9haVJJa1ctcU1PcmxJcWFsdGVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAVmtlAwQA
WS0sAwQAXXE5MA0GCSqGSIb3DQEBCwUAA4IBAQAdgslWXqZIdtQLLNx+893AmFKJ
ERd/FdtmkuKMREcSwnNy4Hjx7rThtmz4Sj+aSW3PrSDvBtnDWOPPDFKCiC8pLFwX
wHsktVhJ61upS7m+WOCGM2N2OcMhWJY0Xh/16KO2k8eEcIMHqA76M+UPxwIiav4k
sp3344toDXPz0OR035NKjHs32P3anQcM256ICcjFMfLvqs2CbUAVXDQOOc3+TRJi
CfRW9LY8v10AXA2D2nuYMkhHWj63pCtl4waUbRLF5+gfwiGyxdNyeNBv2KtaRi9D
1jjxIEdjpZrzFv7DlyArKX6uRQkce6JdQcAmrEoGkfYV4pAGY3HHrV2YxVFr
-----END CERTIFICATE-----
Generated at Tue Jul 2 11:42:57 2024 by rpki-client on console-fra.rpki-client.org